{"report_id":"68e329dc-8cbe-40d0-8420-1b4d935751b3","version":6,"status":"done","tags":[],"date":"2026-04-30T14:31:15Z","url":{"schema":"http","addr":"omnigatex.com","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"omnigatex.com/#/pages/other/empty","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"title":"OMNI","dom":{"size":17727,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (7035)","md5":"272a1e1af2112d0b28314ce15c97e759","sha1":"f0178a6e7e0e0fc05f6905234489d81e211d9f8b","sha256":"cc3da5414055626e181490db2d564259053f4a9a6bf96b5be95d81a6d00876ee","sha512":"dc15f517fe7c3f77fa7ff1e589c60db5265ecf1bb1ec721099282139eefa296a962bb51ba6d23bc61e69d564b2f245ea88a7250d50e54c0e75864c8a383da27b","ssdeep":"384:P+sYC+2j9jBUyeQ0uXsujREJoSFtcsaz8satvsa8CsaGpsaav1rrxRco/7:2FCd6QzbPSFtcsaz8satvsa8CsaGpsa8","tlshash":"b78294313106282ba23b45d17951c32d75139313c99349a9ffde2bb68fc9cfa4a76b84","dom_hash":"domhash50b5c6898d0025ce4b564d106775227b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"omnigatex.com","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-04T14:31:15Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnnncclulaow99.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"omnigatex.com","ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":12,"request_count":12,"received_data":1244662,"sent_data":6031,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"omnnncclulaow99.com","ip":{"addr":"172.67.188.8","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-07","domain_rank":0,"first_seen":"2026-01-23T07:22:58.499029Z","last_seen":"2026-04-28T18:25:34.942718Z","alert_count":1,"request_count":1,"received_data":942,"sent_data":558,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"124.220.203.60","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-04-30T08:47:53.228035Z","alert_count":0,"request_count":1,"received_data":578,"sent_data":444,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"omnigatex.com/static/js/index.b93439d9.js","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9494c9aab865ec2da7db7e411776afa3","sha1":"9de8f0660723111eb666a3c6940524c9a7579d47","sha256":"5ae88d10ea730468f2089707d21949ba14d75734d4b68e6877191efcd2a1a08f","sha512":"54da6c414a34a3c09d21399a1d40788a1ce06ea783cdc647bab0f662ef3660514c1b9959c8acc98556b30399731e87ca5b9426e40f1c246229470fe4d0f26704","ssdeep":"3072:9jq0wBKCMOXN7U0P45hVKrH97XRO2jyuhwB4ZoX:9hhO+krH9TMgbs","tlshash":"a8149e5d71d7a7fe009b7116995b980520603f06e999b4a393daf2a80f9d6cec723f30","size":202750,"data":"","first_seen":"2026-03-20T15:36:21.248348Z","last_seen":"2026-04-30T14:40:00.825246Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/js/chunk-vendors.d38ae58a.js","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"218735c939ab60ea7ddfd28122e873ed","sha1":"ee6a9eb8e42cfbf2230e0893ebfdb221fb6707d0","sha256":"453c4ea3053491393da9d49980684eb7b7ab68f4143e901d44ff4b1262c718ee","sha512":"b8221ebb06ecb515fac4bad7030535039aa9989da7b8300ba16f51a251449bf98d7cd9e8a48d7f2e45fda2a276b1cd9223e6b77e530dce64128daf7dcf4dd84d","ssdeep":"6144:16tC/tBp3fkN+94KFwXtwTf328b3L7Nv0NTlfbEvm/dO+Qh8JOvQzbe9WUiuER:11jd5wdwTfh7V0tl3ObvQzHUq","tlshash":"7005f78df282b0b606e760b5403f220bb2376959b40ac4d8f675e4d4ad7894e6237f7d","size":835602,"data":"","first_seen":"2026-03-14T18:35:19.664446Z","last_seen":"2026-04-30T14:40:00.83274Z","times_seen":27,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/js/pages-other-empty.4e1aa690.js","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3c3772db7ec5ccad369d25be1aa87be4","sha1":"695bd763b3fcc2a6024f95ed851cc0151f228ca1","sha256":"a1cee14a4d8139c7ec62d41cca5414b942c2653b38b7b390e112ba56ac6538b8","sha512":"4869eb3bed5efd5682185ba73144342edf61c0b557d0b4d3a65e9a2bd27a59c48bddc1951b55a305cfb3d0b24953d467d2fe7223c05ffb30abb072eb95bfc6f9","ssdeep":"","tlshash":"76616715b1c7ec8b0456589c252b8259e5333e3c1455f891cbe1afea1df4aef0231f58","size":3182,"data":"","first_seen":"2026-01-23T07:23:02.947317Z","last_seen":"2026-04-30T14:40:00.829596Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/js/pages-login.ea47cea3.js","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6692f063bf968111ea1b2ef6c15face8","sha1":"3c41fa1228864d7616ea6e61da556bd178377daa","sha256":"56345b155ef7458bc55d6170722b52a7d328ee36995fdb9d5ee6cb2a89fd970f","sha512":"c20cc34fd5965546b00c96a861980f6528826105fd7b13c422ed9fc949ed2f2f9aba68981916d7f5ce2ceacc319054ee2f448ae345098337598daf7844af7b84","ssdeep":"1536:l4jw0y4jw0hmcDO2ID83E6jsqwzkXA5TkU/GPtNPU9ArHMg6GEJ3iKZN:4wQw8O4psr5oUBGY3VN","tlshash":"87933cca728db49863b33590053f348f7076692a514989d7f6a1e9de6cbc9ce403ad3c","size":90191,"data":"","first_seen":"2026-01-23T07:23:02.951568Z","last_seen":"2026-04-30T14:40:00.826387Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"93368157fb131b56a45d6f60f8b40342","sha1":"ea2a25edb7b00c3e0a06650f02fded5bd87dfa20","sha256":"c48d4859bc082aa591168f7d7230bef438ecc2b3074e707c83864e11ec1a891f","sha512":"366c90d022f7fd6718d76460de51a154cf6cf8bf8e3aefa2e0e736cbba24ec53506485331abd3c3c2a7e6ae00c9a3b957a9aa675ecdd389afca7863ad8365908","ssdeep":"","tlshash":"c8e068c260a6294c02208016304ac1031bb608729ec149613c4c67a58fb9f4bc46e859","size":352,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-05-01T17:53:45.710945Z","times_seen":3617,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-05-01T17:53:45.711482Z","times_seen":14890,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"omnigatex.com/static/js/index.b93439d9.js","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:54.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/js/index.b93439d9.js HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a67916-317fe\"\r\nexpires: Fri, 01 May 2026 02:30:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U5G%2FHGQiVZEcHrxnciPL1uA67ZyDHWhv5M1iex9hDCJ4DFwzgISL0x9Go21wVhS5gqLmc2arzzOT4zHmoQurbE0Qg2tMaJyFQTjk5BkHxEGBBYTkGdGQEQS%2FaZlMlEdU\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f473f3c3e521ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":202750,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (45147), with no line terminators","md5":"dc5056773d19272e51d04617f89c4254","sha1":"ebf7911fd662eb4e59eceba52465e586903c8083","sha256":"098827cb89500c91d1d48ff69c12dffd03e6babac90e4e80e4b8f2e397af9a43","sha512":"3d5ff03a21c8d0a1002035502137cf36c3970f1d5d45aaabb80309ae8a81f73bacf39bad6f1d8761c1aa3a277d5897759f69570b68dce931db8ca64edbbb1731","ssdeep":"3072:9jq0wBKCMOXN7U0P45hVKrH97XROEl7+2w8Ss+vPh4Hw3ku4:9hhO+krH9TMEwst","tlshash":"7f247d5c71c7d3e91dd361a12927a5162030aac6f98db453c3daf1d92f6fa8dd322b20","first_seen":"2026-04-30T14:31:20.724619Z","last_seen":"2026-04-30T14:31:20.724619Z","times_seen":1,"resource_available":false,"data":null}},"time_used":749,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":603,"receive":146,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/js/chunk-vendors.d38ae58a.js","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:54.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/js/chunk-vendors.d38ae58a.js HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:54 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a67916-cc012\"\r\nexpires: Fri, 01 May 2026 02:30:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KJh6CYv6w55FPD6zSR7JOyZthG%2BYZSwoRaPee2dfKbKxJ9IkXUSPK4ImLeYIPEonTiHzvjsKEoRwlp8AUWchrdZXSMdaVk0E96HRqIwhKCZWRI9FqB9ipfjH3UDYiF3c\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f473f3c3e511ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":835602,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (29875)","md5":"218735c939ab60ea7ddfd28122e873ed","sha1":"ee6a9eb8e42cfbf2230e0893ebfdb221fb6707d0","sha256":"453c4ea3053491393da9d49980684eb7b7ab68f4143e901d44ff4b1262c718ee","sha512":"b8221ebb06ecb515fac4bad7030535039aa9989da7b8300ba16f51a251449bf98d7cd9e8a48d7f2e45fda2a276b1cd9223e6b77e530dce64128daf7dcf4dd84d","ssdeep":"6144:16tC/tBp3fkN+94KFwXtwTf328b3L7Nv0NTlfbEvm/dO+Qh8JOvQzbe9WUiuER:11jd5wdwTfh7V0tl3ObvQzHUq","tlshash":"7005f78df282b0b606e760b5403f220bb2376959b40ac4d8f675e4d4ad7894e6237f7d","first_seen":"2026-03-14T18:35:19.664446Z","last_seen":"2026-04-30T14:40:00.83274Z","times_seen":27,"resource_available":true,"data":null}},"time_used":1101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":639,"receive":462,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/img/svg/icon_home1.svg","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:55.646Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/img/svg/icon_home1.svg HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69a67916-3a3\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lRWAZfxm8RO%2B2fqt3KSURthrAMotBGb9Mj9cEM%2FYCGRWjn08FW3SO9jg%2FNHzpQeXFSzh%2FJ1%2BbuDDhEJhTcaoS52SZa8bQ5PRJ3zU2rBkHSPjAUStPMynN5HtHNaqSnEH\"}]}\r\ncf-ray: 9f473f45ce931ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":931,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3d89b3c65b3b8de0ab02378026906c1a","sha1":"a172b3634b1c883c1d22d41f8746c4fde605e7f2","sha256":"19f3cfcc2a9727c72a3d1242d97933fdd6c58d339533b5a6b6c2047c5ee769af","sha512":"1078266cb30df68632310431795af4c3a28107c1c148af5ffc9f2483fa3870cfb0a46ce3572a4501e1bd2f3361182e778c5e57eb4b563164fa790f2d7afc80b3","ssdeep":"","tlshash":"7911259e97080c3cb6234b60d7463771b1370e632a09f764d83232316a11a0db47f9e8","first_seen":"2025-06-22T10:40:26.740997Z","last_seen":"2026-04-30T14:40:00.833978Z","times_seen":68,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":458,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/img/svg/loan1.svg","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:55.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/img/svg/loan1.svg HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a67916-450\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=myOUD2pTNOPQm8Fi7%2F8YgjjzyckY7Y5LgXQ1%2FjM96lMDCxOxpaYLeIooaR3ulti50T%2BjmJYwFQuz0gcg%2BbGvbhE53Hqzao4Y6hTecAITkAKlAsCBejX7unOSl3sH6kbH\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f473f45ce971ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1104,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f630510914bfde2a67342d60854decad","sha1":"4a111f1e3c63c8b8720b9ca37eb96a672076fdeb","sha256":"1b9a52731101d62150c6957b1184e27021653be32701db407709a40028f924e8","sha512":"48396c9eb1ad8e75689f1f8d53847e56d06f0142d98315db6016ed6a58dfe73b5c1e83186f10860f44bdf0bd93a41b34c5d5244266f66503becc84cc2ba8d780","ssdeep":"","tlshash":"4811328b9b086d7cb7628b70eb167630752b31338b0e6240c5722a33b92615ce53f9c8","first_seen":"2025-10-21T13:52:00.317914Z","last_seen":"2026-04-30T14:40:00.823704Z","times_seen":42,"resource_available":false,"data":null}},"time_used":472,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":472,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/img/svg/icon_account.svg","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:55.655Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/img/svg/icon_account.svg HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a67916-43e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QB10WKc9L6nojjzi1DPTETMCMORFsnFXz4S7DAFqWMTxFh4eY%2BapA%2BadvH%2Fwr2SRogF6ipwXHjzBlIG1sHCUHhEnitAXI1i270%2BQ3viicF1vL15eW2PK%2BokjiOMHfc0R\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f473f45de981ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1086,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2694870b6edfbd5f34c3f0d8bb4c306b","sha1":"053e4cc8443effe6fc5ee5ec67e5fedae92778a0","sha256":"e76e7ef6a7cb3a9eb7afa7ea01edae6816d143b52ba89463be628d973f33fc61","sha512":"ce482963a56cd2b202ebe8abfe960a37f053a4ca92a0053c0b7d96217d67dfa81b8ef535d8a11acd118ebb0ba9a822faf58780334f006a4242556aafafa057ba","ssdeep":"","tlshash":"911129dd57089d3cba324734f72176b0a12b32435f6d6264c93a28732219a4d797fdd8","first_seen":"2025-06-22T10:40:26.719187Z","last_seen":"2026-04-30T14:40:00.824446Z","times_seen":71,"resource_available":false,"data":null}},"time_used":448,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":448,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"omnnncclulaow99.com/ws","fqdn":"omnnncclulaow99.com","domain":"omnnncclulaow99.com","tld":"com"},"ip":{"addr":"172.67.188.8","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:55.699Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnnncclulaow99.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 29 Mar 2026 17:38:24 GMT","end":"Sat, 27 Jun 2026 18:34:30 GMT"},"fingerprint":{"sha1":"3A:16:26:55:C4:05:50:D9:96:04:41:3F:88:E2:C3:92:20:41:02:5C","sha256":"63:3B:44:25:E5:59:37:0A:C0:01:FB:47:7E:00:AF:1C:00:12:28:EE:D2:E6:4C:76:4E:A8:E4:5E:F7:45:EA:C6"}}},"request":{"raw":"GET /ws HTTP/1.1\r\nHost: omnnncclulaow99.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://omnigatex.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: /K76g4z3gTR6b9cAw5jJ/Q==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Thu, 30 Apr 2026 14:30:56 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Version: 13\r\nSec-WebSocket-Accept: zs7JQwP2U/2LOIEFrcVBCN1GXG8=\r\nSet-Cookie: server_name_session=bde9fad04fc5991214b4ee98b98e2f82; Max-Age=86400; httponly; path=/\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=wVp5vGTXNMSJBuJnm1wdoKsWjZ%2BNYwNRCrW5qYKaA1qTBNjxTTu0yRwv39%2BeBEHasmCom1VOjZ%2FuBH%2Bs5awbziWHPRK43I3rA2GCbhWswC7nkKsInu%2B4KAeSkOeFb%2BwCMu6TVGK0\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9f473f466a25b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=555\u0026min_rtt=503\u0026rtt_var=191\u0026sent=5\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=3139\u0026recv_bytes=1161\u0026delivery_rate=6259365\u0026cwnd=53\u0026unsent_bytes=0\u0026cid=ff1ed6c37b9a6c83\u0026ts=497\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-01T18:39:36.568143Z","times_seen":14486414,"resource_available":true,"data":null}},"time_used":546,"timings":{"blocked":-1,"dns":22,"connect":22,"send":0,"wait":478,"receive":0,"ssl":45},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnnncclulaow99.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"124.220.203.60","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:57.763Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 30 Apr 2026 14:30:58 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Thu, 30 Apr 2026 15:30:58 GMT\r\ncache-control: max-age=3600\r\nset-cookie: __uni__uid=rBEQiWnzZ6Kk9IjmA233Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-05-01T17:53:45.680418Z","times_seen":15180,"resource_available":false,"data":null}},"time_used":1778,"timings":{"blocked":532,"dns":1,"connect":238,"send":0,"wait":713,"receive":0,"ssl":290},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-30T14:30:53.374Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 30 Apr 2026 14:30:53 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xQ%2FGnWqdU%2BnX3xBa92lAHVeoE1WXJy0oOenFJzJT%2B6nEL5oxWREQs18n6DaeCYKMC%2B0LC7vGUvkn4VMTuA56QOtEzmTPTW1SA3uegITiinPDBKUG0Ch7kwr7iQUP76g4\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9f473f37ecb575ab-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":778,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (500)","md5":"cba718f53aa1775b83d6229033725643","sha1":"4d35052b3e2857a89aaa2e0c21741539dd59fadb","sha256":"054fc1579db628aab697f321833a7e4eeaefffa53b2bb3a64bd72f9a550fa7bb","sha512":"06cc64b337ab19186240c838276d01329e20120dd9f2f35ee86be8b653b0a06b266eac5d12333e60daea1266db1459b8690b2efff0a5b78c432a50c54b281818","ssdeep":"","tlshash":"3301d5c21c50f84d0720855174b6e52e8ae64ab5ad51dd607cdc2afc4be0b8dde7f811","first_seen":"2026-03-20T15:36:21.197378Z","last_seen":"2026-04-30T14:40:00.831495Z","times_seen":5,"resource_available":true,"data":null}},"time_used":603,"timings":{"blocked":50,"dns":25,"connect":1,"send":0,"wait":503,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/index.ed4a2d2b.css","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:54.119Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/index.ed4a2d2b.css HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:54 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a67916-1794e\"\r\nexpires: Fri, 01 May 2026 02:30:54 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bONtC8hZ5whYMhSkIh%2FxUweO3UZJzWyxp7gn5Ud45evQ4jGDBH9NF7woxuJ%2Fsa2e8ht9E8Je5Gk%2F8O6b5gLSATM9Y2duq6rKjXCVe%2FsVapd%2BkzV70kHv41CeOQeeMl31\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f473f3c3e4f1ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":96590,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d2c05a28c7f2113821d909b7b5b918a3","sha1":"ccac94311f6ac6f580b64f47f7705318f1d226a3","sha256":"695bdbeea38a126c139158967cdd4f3a435e9936b9dff5b002e5f20a10fc7907","sha512":"3b96fbd1a89be8ae0b7479705cd4a2958ffe7f2f3f57ec23f407ad51ed8b447b9960728d77502e8fd8b2b19bf0971682030117559df250ea11c9bc1802364c3c","ssdeep":"1536:qlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nrhlvbc:hApuK7hmVrS1Wu3iG41nrPI","tlshash":"4493f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2025-10-16T12:28:28.877032Z","last_seen":"2026-05-01T14:21:25.17639Z","times_seen":1048,"resource_available":false,"data":null}},"time_used":605,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":601,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/js/pages-login.ea47cea3.js","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:55.643Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/js/pages-login.ea47cea3.js HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a67916-16057\"\r\nexpires: Fri, 01 May 2026 02:30:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q9SpruilXbW6ki0J60ylZBB7Jtq1WroxJYNzE5ZsI4iW259LSXojvua7xg2awFWMKepWN0gYxDqtRWKVfrbAXRQZnYojFqcK%2BSTmSYJoV1tWMEg5ILifwKqgd17hy1Ls\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f473f45ce941ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":90199,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (59467)","md5":"6692f063bf968111ea1b2ef6c15face8","sha1":"3c41fa1228864d7616ea6e61da556bd178377daa","sha256":"56345b155ef7458bc55d6170722b52a7d328ee36995fdb9d5ee6cb2a89fd970f","sha512":"c20cc34fd5965546b00c96a861980f6528826105fd7b13c422ed9fc949ed2f2f9aba68981916d7f5ce2ceacc319054ee2f448ae345098337598daf7844af7b84","ssdeep":"1536:l4jw0y4jw0hmcDO2ID83E6jsqwzkXA5TkU/GPtNPU9ArHMg6GEJ3iKZN:4wQw8O4psr5oUBGY3VN","tlshash":"87933cca728db49863b33590053f348f7076692a514989d7f6a1e9de6cbc9ce403ad3c","first_seen":"2026-01-23T07:23:02.951568Z","last_seen":"2026-04-30T14:40:00.826387Z","times_seen":6,"resource_available":true,"data":null}},"time_used":1029,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":598,"receive":431,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/img/svg/icon_market.svg","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:55.649Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/img/svg/icon_market.svg HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69a67916-27d\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hMIi0EqTa%2BWr0eCQyS7wCCdMOtFQ%2FYmpMEReS5z5xodE6jU5GvtUcyj4h3apXW5e3%2FVgaOV76BFFsv%2B%2FolyHQq8%2FgNo3Eqe45e3Taue41zR2D8vyMmhzrevQG8enkYNX\"}]}\r\ncf-ray: 9f473f45ce951ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":637,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0854c8cbcd9bb2cce30d026266c77bac","sha1":"bd98513e424906e91ee8cdd1a3e0330a84c625e6","sha256":"39466386a593c19beb0a9372e3160c06fa17febfd84ee665a043609e7977f390","sha512":"b5814fab90a2148cd9813e37ed32ff34f288ffdaa7d027bf80372e11acee0d35c578b3d05ed6b0a310359948f1015866352156cdbab4fdf7cb8fc50ae3aa022c","ssdeep":"","tlshash":"edf0c2eaab480d3cbb738b34f724327590b272138b4c2158c9363977265a54c7a3f9c8","first_seen":"2025-06-22T10:40:26.695148Z","last_seen":"2026-04-30T14:40:00.827904Z","times_seen":71,"resource_available":false,"data":null}},"time_used":453,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":452,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/img/svg/icon_strategy.svg","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:55.651Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/img/svg/icon_strategy.svg HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a67916-a7a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bVYlvA1svSW9CrFSRPEBfI4x0eNNRXHS%2BNT4SDa6oe0j5WC048oHjb9Vehkhuio4b6qVuJbzOF1tSsE4Se9hgTTr3DlwKsns6x0JnUzlACeDK%2BIuanenf7se4s%2BGMUoD\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f473f45ce961ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2682,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a77c689dbeaaca629e58dd31b6bf9312","sha1":"ce499209c8e6062f0d0c57fc825d554708b9affc","sha256":"ac4ec25fde7152c7da4440bbdfab441cea966b9f25629590a9516cb8a89d1203","sha512":"54492a3c6da4287a6af9127df8c96d1195a0d27b534e3f7e88fc979101de4353c51bff0eecde99909afa423f9596b2a2664a08c778f5419369f407506f8b7ce5","ssdeep":"","tlshash":"b2517cd657889afcf13177acdb11b230317b247b3a2af706852225b1a90619c9dbf8c4","first_seen":"2025-06-22T10:40:26.73605Z","last_seen":"2026-04-30T14:40:00.8348Z","times_seen":71,"resource_available":false,"data":null}},"time_used":475,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":475,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/static/js/pages-other-empty.4e1aa690.js","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:55.695Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /static/js/pages-other-empty.4e1aa690.js HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 03 Mar 2026 06:00:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69a67916-c6e\"\r\nexpires: Fri, 01 May 2026 02:30:56 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lrj4DV4gVwwr1Wa7RR55Wi3fM%2FB9Ts59BhGZGbuRQV7YNOfZI6cOl8c8%2Fxz%2FFz45Xcp1%2BMIWyIvGtphDa7%2FQEbw%2F%2FWqoQ0hMaZlVvKj6fOnhWbPfHbgfHJRnlcZ%2FvtFi\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f473f461e9d1ae6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3182,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2634), with no line terminators","md5":"3c3772db7ec5ccad369d25be1aa87be4","sha1":"695bd763b3fcc2a6024f95ed851cc0151f228ca1","sha256":"a1cee14a4d8139c7ec62d41cca5414b942c2653b38b7b390e112ba56ac6538b8","sha512":"4869eb3bed5efd5682185ba73144342edf61c0b557d0b4d3a65e9a2bd27a59c48bddc1951b55a305cfb3d0b24953d467d2fe7223c05ffb30abb072eb95bfc6f9","ssdeep":"","tlshash":"76616715b1c7ec8b0456589c252b8259e5333e3c1455f891cbe1afea1df4aef0231f58","first_seen":"2026-01-23T07:23:02.947317Z","last_seen":"2026-04-30T14:40:00.829596Z","times_seen":6,"resource_available":true,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"omnigatex.com/favicon.ico","fqdn":"omnigatex.com","domain":"omnigatex.com","tld":"com"},"ip":{"addr":"172.67.174.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://omnigatex.com/","date":"2026-04-30T14:30:56.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"omnigatex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 17 Mar 2026 16:42:50 GMT","end":"Mon, 15 Jun 2026 17:41:31 GMT"},"fingerprint":{"sha1":"5A:27:31:3C:88:B1:53:54:AA:CB:AD:23:07:C5:2B:7A:1C:60:00:66","sha256":"56:9C:56:4A:C6:70:65:00:5C:30:88:30:03:22:03:E8:69:A9:FE:57:69:E2:1A:BF:20:57:CA:4A:58:FD:7E:C7"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: omnigatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://omnigatex.com/\r\nCookie: server_name_session=1cf43873f2d7d53f10bf659a7e432ed4\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Thu, 30 Apr 2026 14:30:56 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kT1I3vTXBCY8xOy1eq%2BkA9ND9kbMNbupt3ztsqMX24g8pk%2FsGEfJB4AXgp4o84LLj3QDetiq5COKpPJFnXUm0lsArwdE6Lu%2FEbgPddi8p7eWL%2FFbsiRtJAESf9IYL%2BuL\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\ncf-ray: 9f473f49beae1ae6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-05-01T18:39:39.979963Z","times_seen":500269,"resource_available":true,"data":null}},"time_used":453,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":453,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"omnigatex.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}