{"report_id":"5cd3ab8e-c4e9-4c14-8d14-6b7594af6a2d","version":0,"status":"done","tags":[],"date":"2026-06-24T10:33:36Z","url":{"schema":"http","addr":"97ee7.catex.at/cnbcard?b=YTo0OntzOjU6ImxhYmVsIjtzOjI6IjQ5IjtzOjM6InVzciI7aToxNjE2O3M6NDoibm9wZCI7czoxNDoicnNzLnJlYWRsZXMuYXQiO3M6MToibyI7aToyMTM1O30=","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":0,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"final":{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"title":"Coinbase Card","dom":{"size":16488,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (11826)","md5":"27dac8921dc58862a88525b8567e63f0","sha1":"8816c3ebca2e4d0f53f77bd053ee448a11cff7f2","sha256":"82200ceb3d4d0a651f5b8d57dac0ed7327414b7c03b22f8bd97bdeb3feab5f38","sha512":"aba2f5b3a687c0d1b60fbd1b7832ce2eaed1665b95814c2757a60bd76d98f3b360a2858cb50db7c15d460b266b67b98bb26fbaad0fcade4a665125b74795cfd0","ssdeep":"192:YDXhMtH7JXeS7JXex/27xLsftT6eLvuzR9mzdsf5wsfSEzptdTlqBXx:YTqzhL7Q+cuzR9mzSbzAB","tlshash":"1072a65596a0107f7c5380e6d6e1f51df629a0c2ee3fc9aa7a8e4001bbd76f608d3604","dom_hash":"domhash3e53083b75807f41f586f20a7f8ad71c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"97ee7.catex.at/cnbcard?b=YTo0OntzOjU6ImxhYmVsIjtzOjI6IjQ5IjtzOjM6InVzciI7aToxNjE2O3M6NDoibm9wZCI7czoxNDoicnNzLnJlYWRsZXMuYXQiO3M6MToibyI7aToyMTM1O30=","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":0,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-29T10:33:36Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-24","alert":"Phishing Block","trigger":"97ee7.catex.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.tailwindcss.com","ip":{"addr":"104.26.2.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-07-20","domain_rank":117330,"first_seen":"2018-07-09T05:46:13Z","last_seen":"2026-06-22T07:56:40.593876Z","alert_count":0,"request_count":2,"received_data":408705,"sent_data":934,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]},{"fqdn":"images.ctfassets.net","ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2017-03-28","domain_rank":23334,"first_seen":"2017-09-20T16:27:05Z","last_seen":"2026-06-18T16:11:01.526338Z","alert_count":0,"request_count":1,"received_data":4330,"sent_data":623,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-06-21T22:41:40.060069Z","alert_count":0,"request_count":2,"received_data":260986,"sent_data":1100,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"97ee7.catex.at","ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-05-05T13:44:08.644902Z","last_seen":"2026-06-24T01:13:33.336266Z","alert_count":21,"request_count":7,"received_data":13341,"sent_data":4512,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Contentful","description":"Contentful is an API-first content management platform to create, manage and publish content on any digital channel.","website":"https://www.contentful.com","common_platform_enumeration":"","icon":"Contentful.svg","categories":["CMS"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"e022897e44a1cc87d6ce7ab1a801f1b1","sha1":"001908455423789645bcb3ac684869106d603cae","sha256":"a99227b9494cdcb959659253ecf5598345c65e8916ccf290fcf126b27fc7a378","sha512":"672d0a9a4900a0afec47c4317732a281b716df1facaf74a265d65149fdcb8be0ef092b3d397e9536ef2edd10631fc885c1263154d06df290090a824e940caed8","ssdeep":"","tlshash":"166000000f30c00c30030c30f30000000c003c03330030003c0c00c000c00c3003300f","size":16,"data":"","first_seen":"2023-03-08T02:22:14Z","last_seen":"2026-06-24T10:33:38.364429Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"9e52abe98490c49e36c860d6c544e76f","sha1":"227e0c1c93ef177b9b5cae8caab71c8806edf9c3","sha256":"aaf6260d477c1f8797bfeb01930777668615ba4e22398d419df8161224cfc198","sha512":"f03a3e03dbc8c4dce986eeb20fa4758babf982867878ba8d6952a1e9d168f2e94373f1c4823e9181e6ce5fc1f5eb6c0c7f6452dfdedc7ce917b49696ed2c75d4","ssdeep":"","tlshash":"f0d0a77190624210aaf762ca66a71300322089623c9cd556398d438d6f83e55c5ff1c8","size":239,"data":"","first_seen":"2026-06-08T02:38:13.012152Z","last_seen":"2026-06-24T10:33:38.365035Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/js/redirect.js","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ddab5bab2ef627aa264c508f02ef01dd","sha1":"c53d75cb9d49f35d0575f46160b420c5c3c39932","sha256":"9fc4de3632844cd0d933464afb34d27818101adb004e95f4a6f60e861a0eda42","sha512":"078c9637252226833459247bb53e50cfdf9c48b5c26a89b630a514d8c6ecee946ee67af11fb47414386ffe0e83e1f3794ff44aba549988b7fb8189b14c2e1dad","ssdeep":"96:oUqLN7nQBpOONysU/pqJyF23riCfgaDVxUQcu0:oHQBdIIY2/VA","tlshash":"1091b9cd60f798583acb64752c0f104a3d364257184ae8617fcea6a01f54a3ec3b7c9b","size":4463,"data":"","first_seen":"2026-04-04T19:40:21.535432Z","last_seen":"2026-06-25T02:08:10.182364Z","times_seen":59,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.2.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7a614b9a197e532c00d09a23b0996b5f","sha1":"1ff1738a40f3716e30e9031b181b0955ae578955","sha256":"176e894661aa9cdc9a5cba6c720044cbbf7b8bd80d1c9a142a7c24b1b6c50d15","sha512":"a67bc26f52d938358471be5671ff4b79e11af4e68b486aaf73a35a4c9bf3777aab51101af81563b4e5b7ba4b04dd8971fcfa9ee2c41fb10a0c1ee5604a99abd6","ssdeep":"12288:fpgrZxSAoNbJb0Wie75aUXGuyQZhK4O0s:RCVoNB0Wie75aUWmnO0s","tlshash":"e8844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","size":407279,"data":"","first_seen":"2025-07-28T16:58:08.903462Z","last_seen":"2026-06-25T17:35:50.944588Z","times_seen":41865,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/js/placeholder.js","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"250c05565f37c4d13d84e1f8d986ad8b","sha1":"d49c7ba14749612db7be7f7e35ba843abc300ba3","sha256":"dd6b787ac7959f74254fb0da4d1de07fb8c7c5310eebffbfec28b88ce2e610ee","sha512":"12bad130b1b26e2b901f9e5012073554f2ebedc9a8f1ab5321feffbc61d6a3d28d644f356786a0fac8b3a5d61d26878e52ff0fbb741fdd0ec9e4063bd4401b4a","ssdeep":"","tlshash":"59e086151314c52846b5c326a3756e08a87d817b6642c1823b3d061dfff1a9ee065df0","size":344,"data":"","first_seen":"2025-07-06T12:09:31.703338Z","last_seen":"2026-06-25T02:08:10.189415Z","times_seen":249,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"e022897e44a1cc87d6ce7ab1a801f1b1","sha1":"001908455423789645bcb3ac684869106d603cae","sha256":"a99227b9494cdcb959659253ecf5598345c65e8916ccf290fcf126b27fc7a378","sha512":"672d0a9a4900a0afec47c4317732a281b716df1facaf74a265d65149fdcb8be0ef092b3d397e9536ef2edd10631fc885c1263154d06df290090a824e940caed8","ssdeep":"","tlshash":"166000000f30c00c30030c30f30000000c003c03330030003c0c00c000c00c3003300f","size":16,"data":"","first_seen":"2023-03-08T02:22:14Z","last_seen":"2026-06-24T10:33:38.364429Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"9e52abe98490c49e36c860d6c544e76f","sha1":"227e0c1c93ef177b9b5cae8caab71c8806edf9c3","sha256":"aaf6260d477c1f8797bfeb01930777668615ba4e22398d419df8161224cfc198","sha512":"f03a3e03dbc8c4dce986eeb20fa4758babf982867878ba8d6952a1e9d168f2e94373f1c4823e9181e6ce5fc1f5eb6c0c7f6452dfdedc7ce917b49696ed2c75d4","ssdeep":"","tlshash":"f0d0a77190624210aaf762ca66a71300322089623c9cd556398d438d6f83e55c5ff1c8","size":239,"data":"","first_seen":"2026-06-08T02:38:13.012152Z","last_seen":"2026-06-24T10:33:38.365035Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"warn","text":"cdn.tailwindcss.com should not be used in production. To use Tailwind CSS in production, install it as a PostCSS plugin or use the Tailwind CLI: https://tailwindcss.com/docs/installation","filename":"https://cdn.tailwindcss.com/","line_number":0,"column_number":0},{"level":"log","text":"Element with class 'balance' not found.","filename":"https://97ee7.catex.at/cnbcard/js/redirect.js","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/favicon.ico","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:14.462Z","timestamp":1782297194462,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"catex.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 09 Apr 2026 01:12:40 GMT","end":"Wed, 08 Jul 2026 01:12:39 GMT"},"fingerprint":{"sha1":"A2:FC:2C:7F:A0:51:60:02:92:F8:8F:50:82:9B:BF:C0:8B:FC:64:01","sha256":"8F:C3:4B:7E:C9:B2:2C:48:A4:32:8B:99:3D:00:37:CD:BB:96:49:66:67:E1:FC:11:22:24:EE:10:56:F1:86:8C"}}},"request":{"raw":"GET /cnbcard/favicon.ico HTTP/1.1\r\nHost: 97ee7.catex.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://97ee7.catex.at/cnbcard/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A2%3A%2249%22%3Bs%3A3%3A%22usr%22%3Bi%3A1616%3Bs%3A4%3A%22nopd%22%3Bs%3A14%3A%22rss.readles.at%22%3Bs%3A1%3A%22o%22%3Bi%3A2135%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Wed, 24 Jun 2026 10:33:14 GMT\r\nContent-Type: image/vnd.microsoft.icon\r\nContent-Length: 1150\r\nConnection: keep-alive\r\nLast-Modified: Sun, 03 May 2026 06:20:28 GMT\r\nETag: \"47e-650e3cf771f97\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1150,"size_decoded":1402,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"1ca82eec639a786fc6356337e0f7be77","sha1":"45efda0075b04705e79f61caa616f3b1d1588c68","sha256":"90d32dc3c82462addda4a980562043cebd904dcb7c6c7f5390a623fce9f8ae49","sha512":"f2218eafed9aeb46ccf1d4b828dfbc00c83efb5eb6e46cd18a7e6c3e2deca1c7d5d028ec2b37d371986b748650e54dc3b57688f39dccba9408c7ff5441de49d8","ssdeep":"","tlshash":"fb21a2f9f5b0e949d8d98a350a62c8fe31792cb58d78701b3304f29f1e7896964427a4","first_seen":"2025-07-06T12:09:31.735504Z","last_seen":"2026-06-25T02:08:10.190044Z","times_seen":250,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-24","alert":"Phishing Block","trigger":"97ee7.catex.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/?b=YTo0OntzOjU6ImxhYmVsIjtzOjI6IjQ5IjtzOjM6InVzciI7aToxNjE2O3M6NDoibm9wZCI7czoxNDoicnNzLnJlYWRsZXMuYXQiO3M6MToibyI7aToyMTM1O30=","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-24T10:33:13.393Z","timestamp":1782297193393,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"catex.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 09 Apr 2026 01:12:40 GMT","end":"Wed, 08 Jul 2026 01:12:39 GMT"},"fingerprint":{"sha1":"A2:FC:2C:7F:A0:51:60:02:92:F8:8F:50:82:9B:BF:C0:8B:FC:64:01","sha256":"8F:C3:4B:7E:C9:B2:2C:48:A4:32:8B:99:3D:00:37:CD:BB:96:49:66:67:E1:FC:11:22:24:EE:10:56:F1:86:8C"}}},"request":{"raw":"GET /cnbcard/?b=YTo0OntzOjU6ImxhYmVsIjtzOjI6IjQ5IjtzOjM6InVzciI7aToxNjE2O3M6NDoibm9wZCI7czoxNDoicnNzLnJlYWRsZXMuYXQiO3M6MToibyI7aToyMTM1O30= HTTP/1.1\r\nHost: 97ee7.catex.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx\r\nDate: Wed, 24 Jun 2026 10:33:13 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 0\r\nConnection: keep-alive\r\nSet-Cookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A2%3A%2249%22%3Bs%3A3%3A%22usr%22%3Bi%3A1616%3Bs%3A4%3A%22nopd%22%3Bs%3A14%3A%22rss.readles.at%22%3Bs%3A1%3A%22o%22%3Bi%3A2135%3B%7D; expires=Sat, 25-Jul-2026 10:33:13 GMT; Max-Age=2678400; path=/; domain=97ee7.catex.at\r\nLocation: http://97ee7.catex.at/cnbcard/\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-25T17:14:34.064319Z","times_seen":16715339,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-24","alert":"Phishing Block","trigger":"97ee7.catex.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-24T10:33:13.449Z","timestamp":1782297193449,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"catex.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 09 Apr 2026 01:12:40 GMT","end":"Wed, 08 Jul 2026 01:12:39 GMT"},"fingerprint":{"sha1":"A2:FC:2C:7F:A0:51:60:02:92:F8:8F:50:82:9B:BF:C0:8B:FC:64:01","sha256":"8F:C3:4B:7E:C9:B2:2C:48:A4:32:8B:99:3D:00:37:CD:BB:96:49:66:67:E1:FC:11:22:24:EE:10:56:F1:86:8C"}}},"request":{"raw":"GET /cnbcard/ HTTP/1.1\r\nHost: 97ee7.catex.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A2%3A%2249%22%3Bs%3A3%3A%22usr%22%3Bi%3A1616%3Bs%3A4%3A%22nopd%22%3Bs%3A14%3A%22rss.readles.at%22%3Bs%3A1%3A%22o%22%3Bi%3A2135%3B%7D\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Wed, 24 Jun 2026 10:33:13 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 1948\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Contentful","description":"Contentful is an API-first content management platform to create, manage and publish content on any digital channel.","website":"https://www.contentful.com","common_platform_enumeration":"","icon":"Contentful.svg","categories":["CMS"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4836,"size_decoded":2152,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"c207eb2986170d1bf1b4291a02b19a38","sha1":"786f845cb2a4675e7f0da05fbcd7c0528a4e6fa1","sha256":"b41923eb7949fe50fa2ddae6dcf9147e845ffba8eff83ced6e5e45412b0c87ad","sha512":"7e8268fefabbaed97b5c0eeaa32c1d5128feb16161b7efe597732103942ffd1e69c4287cf42c562c9f2bbd2b14328177066d6d8e6cbd72d247a74c9466627efe","ssdeep":"48:t2xARH3JAhu837BK4DsAAAlBJkfDgPtHrZc2FQ4v9hmi+2swedT6WwBA9nx7B/0I:kxe+hj7fotJfUdzmCedTKAZDh","tlshash":"82a1746528c165b720b381a275b1e71eeb74a11be76bc85a32ec01833ff7e658c931c0","first_seen":"2026-04-10T13:17:37.355703Z","last_seen":"2026-06-24T10:33:38.359539Z","times_seen":43,"resource_available":true,"data":null}},"time_used":51,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-24","alert":"Phishing Block","trigger":"97ee7.catex.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/pform.js","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:13.745Z","timestamp":1782297193745,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"catex.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 09 Apr 2026 01:12:40 GMT","end":"Wed, 08 Jul 2026 01:12:39 GMT"},"fingerprint":{"sha1":"A2:FC:2C:7F:A0:51:60:02:92:F8:8F:50:82:9B:BF:C0:8B:FC:64:01","sha256":"8F:C3:4B:7E:C9:B2:2C:48:A4:32:8B:99:3D:00:37:CD:BB:96:49:66:67:E1:FC:11:22:24:EE:10:56:F1:86:8C"}}},"request":{"raw":"GET /cnbcard/pform.js HTTP/1.1\r\nHost: 97ee7.catex.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://97ee7.catex.at/cnbcard/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A2%3A%2249%22%3Bs%3A3%3A%22usr%22%3Bi%3A1616%3Bs%3A4%3A%22nopd%22%3Bs%3A14%3A%22rss.readles.at%22%3Bs%3A1%3A%22o%22%3Bi%3A2135%3B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Wed, 24 Jun 2026 10:33:13 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":395,"size_decoded":492,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"72cd5659c9e14b177fff9c3dc9cf54ab","sha1":"7f408a98f3d4e9a8994c41a453e648b5b84bdc82","sha256":"945dffdca2a683ca5f2ce012a83fa6ec9090dc3ea700b39ad825c7956ed9f183","sha512":"f0b5bbacb1e9a4ec25213a08a6ab57d81de44c43448dbb364b307a01dc0e9d89d395f524120cb1923a449e024b0481f0069c5902a104f07a483ef421f3327322","ssdeep":"","tlshash":"33e06a9f004773434412015039c01085534c22fa353691fc35c5e49b0198c7ecd7f7dc","first_seen":"2026-05-05T13:44:13.270792Z","last_seen":"2026-06-24T10:33:38.36019Z","times_seen":7,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":-1,"dns":0,"connect":33,"send":0,"wait":52,"receive":0,"ssl":59},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-24","alert":"Phishing Block","trigger":"97ee7.catex.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.2.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:13.952Z","timestamp":1782297193952,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 May 2026 14:31:45 GMT","end":"Mon, 17 Aug 2026 15:31:39 GMT"},"fingerprint":{"sha1":"B6:67:6F:5A:BE:B9:2A:B2:16:10:49:96:1E:1F:99:2B:44:AF:EA:A6","sha256":"63:A9:BF:FB:46:E0:B8:37:95:77:F3:63:84:AE:78:22:46:11:85:5E:DF:87:F6:4B:EF:F2:2E:24:D5:74:70:39"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://97ee7.catex.at/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\ndate: Wed, 24 Jun 2026 10:33:14 GMT\r\ncache-control: max-age=14400\r\nlocation: /3.4.17\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: fra1::iad1::qkwjk-1782296682968-6b44eb6e489a\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 510\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XpxwVZShmo%2Fb%2BcoDiXXtwcPyck9oHOZcGCxoVe1wJ3ZFKJ0hHS9BOllTeQdodbe1we6wql1X1p0FEUySgsPvqHOyfEDMKFJk332lHv5u4PFnPnRFvTe9f%2FgBWNljWi%2FFcjQrxEM%3D\"}]}\r\ncf-ray: a10b12b67c7c5688-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-25T17:14:34.064319Z","times_seen":16715339,"resource_available":true,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":4,"connect":6,"send":0,"wait":30,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/js/placeholder.js","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:13.958Z","timestamp":1782297193958,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"catex.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 09 Apr 2026 01:12:40 GMT","end":"Wed, 08 Jul 2026 01:12:39 GMT"},"fingerprint":{"sha1":"A2:FC:2C:7F:A0:51:60:02:92:F8:8F:50:82:9B:BF:C0:8B:FC:64:01","sha256":"8F:C3:4B:7E:C9:B2:2C:48:A4:32:8B:99:3D:00:37:CD:BB:96:49:66:67:E1:FC:11:22:24:EE:10:56:F1:86:8C"}}},"request":{"raw":"GET /cnbcard/js/placeholder.js HTTP/1.1\r\nHost: 97ee7.catex.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://97ee7.catex.at/cnbcard/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A2%3A%2249%22%3Bs%3A3%3A%22usr%22%3Bi%3A1616%3Bs%3A4%3A%22nopd%22%3Bs%3A14%3A%22rss.readles.at%22%3Bs%3A1%3A%22o%22%3Bi%3A2135%3B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Wed, 24 Jun 2026 10:33:13 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nLast-Modified: Sun, 03 May 2026 06:20:28 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69f6e92c-158\"\r\nExpires: Thu, 25 Jun 2026 10:33:13 GMT\r\nCache-Control: max-age=86400\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":344,"size_decoded":587,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"250c05565f37c4d13d84e1f8d986ad8b","sha1":"d49c7ba14749612db7be7f7e35ba843abc300ba3","sha256":"dd6b787ac7959f74254fb0da4d1de07fb8c7c5310eebffbfec28b88ce2e610ee","sha512":"12bad130b1b26e2b901f9e5012073554f2ebedc9a8f1ab5321feffbc61d6a3d28d644f356786a0fac8b3a5d61d26878e52ff0fbb741fdd0ec9e4063bd4401b4a","ssdeep":"","tlshash":"59e086151314c52846b5c326a3756e08a87d817b6642c1823b3d061dfff1a9ee065df0","first_seen":"2025-07-06T12:09:31.703338Z","last_seen":"2026-06-25T02:08:10.189415Z","times_seen":249,"resource_available":true,"data":null}},"time_used":65,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-24","alert":"Phishing Block","trigger":"97ee7.catex.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"images.ctfassets.net/q5ulk4bp65r7/3TBS4oVkD1ghowTqVQJlqj/2dfd4ea3b623a7c0d8deb2ff445dee9e/Consumer_Wordmark.svg","fqdn":"images.ctfassets.net","domain":"ctfassets.net","tld":"net"},"ip":{"addr":"108.157.229.6","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:13.972Z","timestamp":1782297193972,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images.ctfassets.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sat, 18 Oct 2025 00:00:00 GMT","end":"Sun, 15 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:39:C1:37:7A:6B:60:8A:D5:73:9E:D7:C4:F9:3A:11:9B:BD:94:2B","sha256":"AC:EA:37:10:54:C2:91:B5:04:B8:B4:CA:CD:35:48:4D:D0:92:78:F6:E2:8B:D9:57:78:20:D6:74:FE:14:16:A9"}}},"request":{"raw":"GET /q5ulk4bp65r7/3TBS4oVkD1ghowTqVQJlqj/2dfd4ea3b623a7c0d8deb2ff445dee9e/Consumer_Wordmark.svg HTTP/1.1\r\nHost: images.ctfassets.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://97ee7.catex.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 26 Mar 2021 14:21:17 GMT\r\nserver: Contentful Images API\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\ndate: Wed, 24 Jun 2026 02:07:49 GMT\r\ncache-control: max-age=31536000\r\netag: W/\"78b2915b21e673b15957e22970b36c40\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 fedd444eadd43dacc7e53f24b46bddf8.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: YouwdchmWebpyniBzaPLfXNejIROzsVBOhW_3FvCc1s43BgVil8WWw==\r\nage: 30326\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3788,"size_decoded":2259,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"78b2915b21e673b15957e22970b36c40","sha1":"d147dd4dde281e9c200ed77ecb29cdaf0f1377e6","sha256":"126270d27d1ac1a29b8d7d01238377840fe79b70212bd230adc6b2d9da82bf38","sha512":"f3fd78255d20692d0bfe2e1208637ac6798aac2b7a246e6eef77f3e5a5ee9422d2b34ccd005a943603872f90eef60d5078f579b5a03ded572165627e3cdbde58","ssdeep":"","tlshash":"bf7163d9a73440e8e268e2ddaf01d474ad52226be44dc9ccc31e6e18a353cdd6f224c7","first_seen":"2023-06-06T13:52:44Z","last_seen":"2026-06-25T02:08:10.180507Z","times_seen":1485,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":71,"dns":27,"connect":37,"send":0,"wait":14,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/3.4.17","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.2.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:14.045Z","timestamp":1782297194045,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 May 2026 14:31:45 GMT","end":"Mon, 17 Aug 2026 15:31:39 GMT"},"fingerprint":{"sha1":"B6:67:6F:5A:BE:B9:2A:B2:16:10:49:96:1E:1F:99:2B:44:AF:EA:A6","sha256":"63:A9:BF:FB:46:E0:B8:37:95:77:F3:63:84:AE:78:22:46:11:85:5E:DF:87:F6:4B:EF:F2:2E:24:D5:74:70:39"}}},"request":{"raw":"GET /3.4.17 HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://97ee7.catex.at/\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Wed, 24 Jun 2026 10:33:14 GMT\r\ncontent-type: text/javascript\r\ncache-control: max-age=31536000\r\ncontent-encoding: br\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: fra1::iad1::vhhlv-1778775055415-ee1be01c049f\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nage: 3522136\r\nlast-modified: Wed, 03 Jun 2026 02:11:42 GMT\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CYfIYO2hyDRZaOSeUFq0YG1Bu7CbjJN%2Fd4j%2BWqpqC6r8okqMxnWWRp%2FwipnF1X0Dc8jdLX5MEmsWw%2B00VVlSngLxRJXwSzrHnhObwendoYhNrAx8Xfgl1n3JxtSZznzeYNLx3Pg%3D\"}]}\r\ncf-ray: a10b12b6ccd45688-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":407279,"size_decoded":127119,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (52853)","md5":"7a614b9a197e532c00d09a23b0996b5f","sha1":"1ff1738a40f3716e30e9031b181b0955ae578955","sha256":"176e894661aa9cdc9a5cba6c720044cbbf7b8bd80d1c9a142a7c24b1b6c50d15","sha512":"a67bc26f52d938358471be5671ff4b79e11af4e68b486aaf73a35a4c9bf3777aab51101af81563b4e5b7ba4b04dd8971fcfa9ee2c41fb10a0c1ee5604a99abd6","ssdeep":"12288:fpgrZxSAoNbJb0Wie75aUXGuyQZhK4O0s:RCVoNB0Wie75aUWmnO0s","tlshash":"e8844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","first_seen":"2025-07-28T16:58:08.903462Z","last_seen":"2026-06-25T17:35:50.944588Z","times_seen":41865,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.0/webfonts/fa-solid-900.woff2","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:14.436Z","timestamp":1782297194436,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.5.0/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://97ee7.catex.at\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.0/css/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Wed, 24 Jun 2026 10:33:14 GMT\r\ncontent-type: application/octet-stream; charset=utf-8\r\nserver: cloudflare\r\npriority: u=5,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\nlast-modified: Tue, 28 Nov 2023 18:34:15 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 896\r\nexpires: Mon, 14 Jun 2027 10:33:14 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8MLemLCHUZ7H26TUS%2BQP0MYb5JWGEaK3CAuQ2spurv0JZHvAAINjxv2Q6UWNjehygfqGhsKOMVFHWyUOh7oAB3lw9DGuFyyPzq8Q3xO8o5SmhD1Xec6VI0Tw88amrErV2UhGCliv\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a10b12b93a431a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":156532,"size_decoded":157493,"mime_type":"application/octet-stream; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 156532, version 773.256","md5":"d465bccb9edf0873f021f66d4b09d89c","sha1":"214f3c71de28c682602aecd39e9ad2bba15f1b0c","sha256":"f4c5a5b297e623bc159679563a4d1eb16e409ca3b57698fbc00fd2c907dadae0","sha512":"35d7523f48386e89b1cad6a47df65d64415ab9c45e6425bb4ab25ac9510f6d2e9de3d7cad79c2491660e885d7a38d3ffa9e93eb50ae045fbd072deaf114e10b8","ssdeep":"1536:HrPC5zUBeCGcReONEpKZZbwEPvdThY0E2eXOtr9pVhw+J3E6gbzlPAzJ+Zn+PMY6:TC5oNnZbwC9Wie+B9pVSeE6dMZnaBi","tlshash":"00e313b58f11a1c781b12217db1a54f8da785eec5e3f968cc5a07786214dd4f93dcca0","first_seen":"2024-01-04T18:36:36Z","last_seen":"2026-06-25T17:34:10.353398Z","times_seen":8215,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard?b=YTo0OntzOjU6ImxhYmVsIjtzOjI6IjQ5IjtzOjM6InVzciI7aToxNjE2O3M6NDoibm9wZCI7czoxNDoicnNzLnJlYWRsZXMuYXQiO3M6MToibyI7aToyMTM1O30=","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-24T10:33:12.998Z","timestamp":1782297192998,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"catex.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 09 Apr 2026 01:12:40 GMT","end":"Wed, 08 Jul 2026 01:12:39 GMT"},"fingerprint":{"sha1":"A2:FC:2C:7F:A0:51:60:02:92:F8:8F:50:82:9B:BF:C0:8B:FC:64:01","sha256":"8F:C3:4B:7E:C9:B2:2C:48:A4:32:8B:99:3D:00:37:CD:BB:96:49:66:67:E1:FC:11:22:24:EE:10:56:F1:86:8C"}}},"request":{"raw":"GET /cnbcard?b=YTo0OntzOjU6ImxhYmVsIjtzOjI6IjQ5IjtzOjM6InVzciI7aToxNjE2O3M6NDoibm9wZCI7czoxNDoicnNzLnJlYWRsZXMuYXQiO3M6MToibyI7aToyMTM1O30= HTTP/1.1\r\nHost: 97ee7.catex.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx\r\nDate: Wed, 24 Jun 2026 10:33:13 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 445\r\nConnection: keep-alive\r\nLocation: http://97ee7.catex.at/cnbcard/?b=YTo0OntzOjU6ImxhYmVsIjtzOjI6IjQ5IjtzOjM6InVzciI7aToxNjE2O3M6NDoibm9wZCI7czoxNDoicnNzLnJlYWRsZXMuYXQiO3M6MToibyI7aToyMTM1O30=\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-25T17:14:34.064319Z","times_seen":16715339,"resource_available":true,"data":null}},"time_used":384,"timings":{"blocked":-1,"dns":238,"connect":34,"send":0,"wait":49,"receive":0,"ssl":62},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-24","alert":"Phishing Block","trigger":"97ee7.catex.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"97ee7.catex.at/cnbcard/js/redirect.js","fqdn":"97ee7.catex.at","domain":"catex.at","tld":"at"},"ip":{"addr":"31.59.121.53","port":443,"asn":834,"as":"IPXO","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:13.743Z","timestamp":1782297193743,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"catex.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 09 Apr 2026 01:12:40 GMT","end":"Wed, 08 Jul 2026 01:12:39 GMT"},"fingerprint":{"sha1":"A2:FC:2C:7F:A0:51:60:02:92:F8:8F:50:82:9B:BF:C0:8B:FC:64:01","sha256":"8F:C3:4B:7E:C9:B2:2C:48:A4:32:8B:99:3D:00:37:CD:BB:96:49:66:67:E1:FC:11:22:24:EE:10:56:F1:86:8C"}}},"request":{"raw":"GET /cnbcard/js/redirect.js HTTP/1.1\r\nHost: 97ee7.catex.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://97ee7.catex.at/cnbcard/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A2%3A%2249%22%3Bs%3A3%3A%22usr%22%3Bi%3A1616%3Bs%3A4%3A%22nopd%22%3Bs%3A14%3A%22rss.readles.at%22%3Bs%3A1%3A%22o%22%3Bi%3A2135%3B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Wed, 24 Jun 2026 10:33:13 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nLast-Modified: Sun, 03 May 2026 06:20:28 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69f6e92c-116f\"\r\nExpires: Thu, 25 Jun 2026 10:33:13 GMT\r\nCache-Control: max-age=86400\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4463,"size_decoded":1921,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"ddab5bab2ef627aa264c508f02ef01dd","sha1":"c53d75cb9d49f35d0575f46160b420c5c3c39932","sha256":"9fc4de3632844cd0d933464afb34d27818101adb004e95f4a6f60e861a0eda42","sha512":"078c9637252226833459247bb53e50cfdf9c48b5c26a89b630a514d8c6ecee946ee67af11fb47414386ffe0e83e1f3794ff44aba549988b7fb8189b14c2e1dad","ssdeep":"96:oUqLN7nQBpOONysU/pqJyF23riCfgaDVxUQcu0:oHQBdIIY2/VA","tlshash":"1091b9cd60f798583acb64752c0f104a3d364257184ae8617fcea6a01f54a3ec3b7c9b","first_seen":"2026-04-04T19:40:21.535432Z","last_seen":"2026-06-25T02:08:10.182364Z","times_seen":59,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-24","alert":"Phishing Block","trigger":"97ee7.catex.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"97ee7.catex.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.0/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://97ee7.catex.at/cnbcard/","date":"2026-06-24T10:33:13.955Z","timestamp":1782297193955,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.5.0/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://97ee7.catex.at\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Wed, 24 Jun 2026 10:33:14 GMT\r\ncontent-type: text/css; charset=utf-8\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Tue, 28 Nov 2023 18:34:15 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 912\r\nexpires: Mon, 14 Jun 2027 10:33:14 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pgRkiSAj5qv9M1ZVvwkSZ9iComcjvYc9G4ISjxUSyrsvGSGMEByegt6g61nZ6HrxhAlqYW284jJyKto9Jzx9zMhXbBLBMmxW2u9Sjp4N2XrhY1pCnqV%2BPbkBynPOoYnscOacyK4C\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a10b12b67ddb1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102526,"size_decoded":19826,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"c43cd173eeeba2f72aa6b431d06b8c07","sha1":"427a692f7f39eabb3d5b8510aee2743025daf813","sha256":"c880eb3d25c765d399840aa204fec22b3230310991089f14781f09a35ed80b8a","sha512":"02f6f6422b83104bc1e1b64961d7edda63635528417ed2dd3c6f0527457b8ab4cb43c528d2a70fc61e0f96aec6e6d1a6d2b53ed523e1568b6d78ba41111c1393","ssdeep":"1536:vwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPG9ZpgmLCq:P709gMGFiyPG9ZimLCq","tlshash":"4fa3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2024-01-04T18:36:36Z","last_seen":"2026-06-25T17:34:10.335575Z","times_seen":11981,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":7,"connect":35,"send":0,"wait":28,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}