{"report_id":"690d1395-22a5-4969-aca7-5e34da8baa9e","version":6,"status":"done","tags":[],"date":"2025-09-24T21:31:47Z","url":{"schema":"http","addr":"purecloudqc.com","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"title":"uhzr96gdzmxav4u.com/#/?linkId="},"submit":{"url":{"schema":"http","addr":"purecloudqc.com","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-29T21:31:47Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.uhzr96gdzmxav4u.com","ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-08-28","domain_rank":0,"first_seen":"2025-09-24T21:31:50.431302Z","last_seen":"2025-09-24T21:31:52.143413Z","alert_count":38,"request_count":38,"received_data":2523382,"sent_data":17609,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"firebase.googleapis.com","ip":{"addr":"142.250.74.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":21765,"first_seen":"2018-10-19T09:09:59Z","last_seen":"2025-09-21T23:58:30.973827Z","alert_count":0,"request_count":2,"received_data":1305,"sent_data":1222,"comment":"","tags":null,"fingerprints":null},{"fqdn":"api.qckenacio.to","ip":{"addr":"47.88.107.85","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":3458250,"first_seen":"2024-05-30T19:36:08Z","last_seen":"2025-09-22T14:19:35.71013Z","alert_count":0,"request_count":2,"received_data":805,"sent_data":1100,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-09-21T22:11:31.071214Z","alert_count":0,"request_count":1,"received_data":433340,"sent_data":456,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"purecloudqc.com","ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-01-13","domain_rank":4219396,"first_seen":"2025-04-03T18:55:18.357929Z","last_seen":"2025-08-15T03:26:21.053485Z","alert_count":0,"request_count":9,"received_data":209612,"sent_data":3977,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"71256eab29077341c64fde8697e2623e","sha1":"4d4f778998e9351c38deede70daf5a8f23febee2","sha256":"1b00038962675f3bca63a86a088e4e5dd9ac5b36c301d6317f9408ad2aa0ff17","sha512":"1e9b8d7680f293e31f5a816e3548c1bac4c7221c429968e664b6f8833a138bb409171a92e26614417e546028e6da37ff804d9c055b7d91f4c51560db52803d78","ssdeep":"","tlshash":"91c022c9a0826c002601614ac0af29f0d024803a705c1b03cc98d8582e520f89237ed8","size":186,"data":"","first_seen":"2024-09-28T08:04:46.261794Z","last_seen":"2026-05-14T04:40:58.304824Z","times_seen":581,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"6c4aa8f789f199dcc560e1c98245ad09","sha1":"bfbda132ae9155298dc804811242ee759a975f7d","sha256":"a1a220a11885d4735b073bd3cda972de2801f168edb7b41692482b1772428ffb","sha512":"211d5dbc9ca35992c5fd29a522306d1b109efb6115b67a1311850a2a0db1c3f5337a4595e36c56290af953f0dca518a4d013719d96f3e644891344bab1af6901","ssdeep":"","tlshash":"87d023c561c35d503a015556a1ef37e690248025300c5741cd55c40c3f660b45233ed4","size":203,"data":"","first_seen":"2024-09-28T08:04:46.27363Z","last_seen":"2026-05-14T04:40:58.299053Z","times_seen":580,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"e7088126971e38eb8778c945d6cb3510","sha1":"b187a4587449278050ebe07cf9d18473c9a0c47b","sha256":"0be41e35d3defd94dff0fbce3558526242073f29b95996d178ba3c2d56a0bede","sha512":"c66b58fcd7f193b70e8d657c89cd393218c4235a51fa62b4307a5294c787b8f24e38db5f84dcbded4d77f6cc2d8cd62f1fd9c3427b69c8f60d4a3fa0b082efb8","ssdeep":"","tlshash":"07d0a7c690832a1116016544949f20e450108029721816038cd9c85d2ed21f08167ae4","size":202,"data":"","first_seen":"2024-09-28T08:04:46.255661Z","last_seen":"2026-05-14T04:40:58.299778Z","times_seen":580,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"3694141b75fe07077ed4c9057d454f60","sha1":"8c4b575275218398d00ef7311d1875f39eb4508b","sha256":"2fb822fc334744580bb01a98f43fd3962221f2f4005740ff082f0ff27f3f90e7","sha512":"25ead8a50f3e618bcb141406404b3ee0f1866fc5e6b408896629cabc314b386aa4d351b340c9da71cf23e8c509e428a8e5d36d15198c2f5457b3c9ad038b979b","ssdeep":"","tlshash":"52c08cd9a1c32e101a6764a264bf34e4903844ab718c1f038e98e8693fa30b49337edc","size":165,"data":"","first_seen":"2023-12-11T00:32:22Z","last_seen":"2026-05-17T03:06:15.883321Z","times_seen":527,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b42af5bc3a60e1c629d2d1c09a79c912","sha1":"1d22e71cc7c604c36c1fba78b273dc0fbe6f433d","sha256":"33b47f5d31f00ff49a4cd4fa2170da01a8af1c126e534c1737140e6e1d16216e","sha512":"be323d392d9ef8da875a923ae05280bad5918e2cf04566f8dc775ebd795b2a295636d15598bf6f5066781d7f7df0eb416491c13ae8f63c7c0cdfc3b6644370b1","ssdeep":"","tlshash":"59f046171843a0ba57e9617ae72b7d1a221922437591c4077e8cc0286fe09382fa2a9c","size":572,"data":"","first_seen":"2025-03-08T01:57:55.033166Z","last_seen":"2026-05-17T03:06:15.87939Z","times_seen":562,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/tba-6fc08ac0.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"5af044eeb17b32f861424b1b3640642b","sha1":"7bc2d9408f616399309514cc9cd78919e31633a2","sha256":"316a115b42efa5b4cfb4f23f137ef5216808e2ecc7088d2139c8df5eecf252c0","sha512":"63e50ce0ffb7ee822a212da0ebfefc9fe795147c70e938226c0c08851d20d6320d8c56930477f67825d115f117f4b86ced72de7c5205b7a5ab544166c4b7f9b3","ssdeep":"","tlshash":"45415588b6f8d2b0f2b4a58cd1f61123811c6ad5b079c6f0d16f4e056976942c2bff28","size":2298,"data":"","first_seen":"2025-09-24T17:02:26.974327Z","last_seen":"2025-09-24T21:31:53.893012Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"b47449239864f13c3420093a40ab219a","sha1":"c631c46debc6db39a04224f2c49d7b0b1bb79457","sha256":"fe1b886a06fe549c5af0ee70614f2f918769b647acd28038dff33f7260d2e02c","sha512":"07665b477bd05424487edd7614b637976ca58503cb3678404c3efb35b2c1edd69f48b36514ae56587cfff4cf94a8033fba1bf5f813d83445cf769e1db64ff01e","ssdeep":"","tlshash":"c7c08cc4b0ca2e101a42641020bf38e49024402674881b02cc94d8882e620f48233e9c","size":143,"data":"","first_seen":"2023-04-12T10:08:15Z","last_seen":"2026-05-17T07:37:50.908209Z","times_seen":1154,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"44390bd5daed64f21cdabfb1c422100f","sha1":"4ad2def20399a790d6773fec26e5bf734d0c9261","sha256":"75580314d3213a2eaf99d1c67fbe3ef5aa54397e4b99fed401d22a1c810347f8","sha512":"fee89e2154084d9bf1de6894ffec36fa84aa740968b0c9a6ba8169f9255d4cef54e11c04dcd985c549a605c4b2f2c9ef2264e49670244723acd3bc266407c4fd","ssdeep":"768:0+eHUFM0YrmIsUdaDqZRHFBlaPlbjgF3hiMnFiMnFsIs/KMepgnNxgHrZ:20Yr7rdaW3hPxs/G0qd","tlshash":"6f035c25f050a97af5b76048b4284150798c1f9bc250cda5f2fd8b2277e5ce287ebb39","size":40842,"data":"","first_seen":"2025-09-24T17:02:26.898101Z","last_seen":"2025-09-24T21:31:53.896845Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-avatar-90eada9d.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"eb69db01fe759fa00d3082b89a230c2a","sha1":"6fb0b3227f2801c21fa443e519356fd8af19ff85","sha256":"0aaab7ecec4cdba194269816fe9704bbd16e6456878c260d3ee7a79f0122bdba","sha512":"51e5275347789de20f2f4f04fa269f07be1d4f6a64b8fdf7c1be04c4f62796ff7c6373b91adbf46a37033b7f67d088e754194e5714e0dc7b607503f44d20121b","ssdeep":"","tlshash":"2a21b72d389ddb320cd62cc440255a41e3291a6cde36b8e0d1bfc5b403b247a750db08","size":1342,"data":"","first_seen":"2025-09-24T17:02:26.964212Z","last_seen":"2025-09-24T21:31:53.893643Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/base-837ebc0e.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"622cc5a8adeb445f3d7269164aa74a55","sha1":"663818787d48011151c24ccf5e27e0c084c5e4ac","sha256":"0706553f4ee410f5b5768793cb150101e3c1f348026a9606480efb13b149e6b5","sha512":"b4dcf7986d313876034731ed95fdb8e7bf13b14e1db2e97628454d24211d7a17130f7bdc3a4b8bb4387273eab8906c348139ce9a49f9d1d9ac183fa77d4dd9f7","ssdeep":"96:4P+KL0bcUpMu7mwtr7kBAdXBGlpOZi+g0PxgXxTDwVsJ38uRHU9YPVD3:4mm0bcPImwSBAFBG7OZimgXlwgsuBUeh","tlshash":"79c1d7e03254763398ed48ce3577c321ae785698f01954c86d3e9c142eeefc1e1a2e4e","size":5986,"data":"","first_seen":"2025-09-24T17:02:26.908866Z","last_seen":"2025-09-24T21:31:53.891109Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/deepLink-8aeabd87.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"e9864bb2528487370e12e842161eeaae","sha1":"192d9e4eb4e22a1c9a8405df111f2b203485a151","sha256":"41646e93b6566cdb8ec0e1403806810e7d55db403146fa21bb50766997766b90","sha512":"45071192836737ee46c4c1c6fbbce577b4a9331fa40cf07a3f2f7374f691b9f4066fcd11fc9342085ce9d8143075ab2dcb6bc072cc9206f821572727ba50ff4b","ssdeep":"768:1SaywWoRWpK9FZgj+dur/WgGxrfKFYBaxtAauo51lfaNi/adaU7avsFf38:waNdFuSZxrMOaxSauO1lfaNi/adaaavD","tlshash":"09f25b33b90aa46eb7634880605145413d182fdbeb64c4fef1be4e32639dca0d7e6768","size":36924,"data":"","first_seen":"2025-09-24T17:02:26.88496Z","last_seen":"2025-09-24T21:31:53.899841Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?l=dataLayer\u0026id=G-1RPGBCH5CQ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e1d1461b309eb6d701084cf4ad8581e","sha1":"127845909cf603805809b81b5991306e356ea091","sha256":"27c72b601c3ab20972a56416f66077622d369d7d0bbea85397d059c1f9481f1e","sha512":"1278fb8ade0dfefa2e48937bdeaeaa3b0c2eb382566e77ae6ce821c547226ac8364a2304ba1ca8deb0f3b3d6d07ef72e8b5cf0497ac066f9d7f5b3f9955c9e00","ssdeep":"6144:RB2pmM2/RYMbwqkppCALUJ1lvyVcubCn3XPk:f0mLLwvdLil8","tlshash":"d3940ace73c674265396e478906f018ba5bb28e2f45cc89af189cce42d7499a4137f7c","size":432736,"data":"","first_seen":"2025-09-24T21:31:51.701656Z","last_seen":"2025-09-24T21:31:53.909005Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/index-4cd64216.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"70b1cbe7f15d5807d6e1bae7876c30ff","sha1":"9fa23ceb757d48f1be249789be49e0a27f8f5776","sha256":"b1aa28765220892f13f7e1e8fed5cd456bbe6eb2f155acaf88fa367e15c08540","sha512":"636c213f572c52b6b145ce99b3f98acc8744820961c04c2fbcc0121d76a2c310043e6da2da64913d6ac75080bacbba45c9f8330186e33428135506be934ff1dd","ssdeep":"","tlshash":"b83161c3f1d2273a83b7dddac0884650923c0e59fd04c7eaf5be1d2a2b601c5ab1ab44","size":1815,"data":"","first_seen":"2025-09-24T17:02:26.889339Z","last_seen":"2025-09-24T21:31:53.888421Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-scrollbar-b52e51de.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"f4e903ac2ea92dd719309e94ff55c02d","sha1":"6a6507b8ef7c3e8fc857cf928902ed5eba499772","sha256":"a76e57a0f938796136e22173152eaaca88f0e61e2a461ef3267726beb9ca91a2","sha512":"c33745b90c982acfe4cb6b6c8920200245614bdebe10400afa00a50446f46f711ab3229d9054547dd4b258fc4b6448cc7dfe589abc35f2c550dc9560f7a42480","ssdeep":"1536:nDed3s12vqDXTTq+Y0GKs/8uL3FetiN5F9rswZRdIndiJbZ7W:aS/dsLrZxVROne0","tlshash":"0a330c983194b1b147ff8aeb603b0105b1361714e10ee5e0f16bddac35b5e64626bb3e","size":52319,"data":"","first_seen":"2025-09-24T17:02:26.901374Z","last_seen":"2025-09-24T21:31:53.906737Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/Footer-db7f551b.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"4140c30d55e912694a2fb28d60a2901c","sha1":"ab5dff790d9ffb965eb3fd4118a413e5139404de","sha256":"e244f34e638124cbdd374fee523437e6ffdd89f3b81589d10b9eae76ff792eeb","sha512":"cdf9c18bac66c33aa956312589a9258ed93d9c152b21ffb0dab1a3a12ef77471175119f948875f69ce49b02c5bf5d5f2557b209473a99ada19de48dafe211bcc","ssdeep":"768:54Y09WF65nDlOWOjEb9QnJOhHeqL3SNL2bpKpNXMdu4cGSlcBBbe:5FkDmEbSMHeqO/","tlshash":"3bf219947099b5b557df88a921070801e32b2a6e542d84f0f4bbc8f439fda14937bf79","size":36358,"data":"","first_seen":"2025-09-24T17:02:26.953273Z","last_seen":"2025-09-24T21:31:53.885666Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/DET9EZ0_.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c1d71a5924194e8c0a33cbef6057324f","sha1":"0132f9decf734a50b1565e2d4f5dee499c3a9638","sha256":"d33b9dde52280281e9c9fb2a8a9466efd6ad23ed6312704518d469feb8be2cfa","sha512":"82b648a970e638c86854676a7fae63e592f9ed46096821ee71a02cd32d073b00c527ded58e8dd72996629f5182613057f9a1cf0598b73cb1da37dad96f98bbc8","ssdeep":"3072:SOxUhokmzG7nwbNgIZTaGO0KyQ0Z2hDS3buCFtG6o2MpLnzNQ7P/JfZpJCm:S/hoMnwbNgIdaGO0v2+XtGLHpkXJfZpf","tlshash":"f6f326e83196b02223f619e5807b1006f3392826384dd4e4f16dadeb397794991b7f7e","size":169875,"data":"","first_seen":"2025-08-29T10:46:28.984225Z","last_seen":"2025-12-01T03:49:38.361465Z","times_seen":137,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"90e2c58f00e259bd0d6ab37aace5b057","sha1":"fbc730428bf5d67cc273eebc85e01be266f1b8ca","sha256":"fa2bc8eda295abab72b72feae2975036705faf5515e94bd935d523f69d1351ac","sha512":"fde2b92e7d617968b923d9bd7be2f3402703a045a241a45511db06e6d9e8c434e2cb01277e7cb4e6871062503cfec5c4037ad787ce7af81c59b8d6f5c7f32827","ssdeep":"","tlshash":"7ac02bc4b0c73d102602645110bf34e4a0344027b04c1b07ccd4dd483e230f08237edc","size":139,"data":"","first_seen":"2023-04-16T17:28:55Z","last_seen":"2026-05-17T03:06:15.879914Z","times_seen":1406,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/function-call-20ba0bbb.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"7dfbd1340875abc6246ccacbead3c70b","sha1":"03efa31737143294877f6f2b2975328924849ce0","sha256":"03a25634abc8ea75bfc588037813cfd22c35d0ea94a5545e70d77932bee2ca64","sha512":"5bf96adce57c44fb8973cab43155426a988a8c99e02c7a034165af23badd394e61e3d4b4b6558d57614945b732508210d52ae76c71692e7e5c8710548e09850b","ssdeep":"192:UQv6CUqU5QhdidIKT1B06UQrisS0ZWjcmlBeF0sdA3F+KOqMcQle0gLeLmRS:+NP5QbidI6lDu2ZWjcm+rSb/QlqeL2S","tlshash":"7742fcac70651679d7f799cd61a46b00632c27085c22d5d2d0bbdd2833d7e8060e7bae","size":12025,"data":"","first_seen":"2025-09-24T17:02:26.927418Z","last_seen":"2025-09-24T21:31:53.902693Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/index-4469ee0a.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e755262eb71bcaf2ad6ce1691704bcfe","sha1":"de90ac152781dcfe7c6c9069964eaf204036400e","sha256":"67f0af61edb8db7d53071b6fbb8f078bf586ab4f68407117f85985ba5f32a29c","sha512":"5b59d131ba93cc9f60dde981db3710e2a86e551ffbc82bd60827e88bfc7a5228b82aeb7a96f429cb8f430f253db9241015257cbd3563e2c27210cd3d58b858b8","ssdeep":"24576:iZUigV55mMiA8Z2+LRbUhJZ8k3yc8be+d01i/t9orgSHZPbcqs:iZUigV55mMXa2+RUhJZ8k378be60o/tt","tlshash":"34255bdd7292b07243bb20f5507f040bf23a2a59a84dc4a0f16ad9d93d7d889917bf6c","size":1015830,"data":"","first_seen":"2025-09-24T17:02:26.981429Z","last_seen":"2025-09-24T21:31:53.904144Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/Bkg_ohyQ.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"5ed85994920b4d9c8c497699ccd260d1","sha1":"5c20e2b297b849cf980ee776ddbf00df56d67b2a","sha256":"39ba8f92d3c0fb9eaa68f64109580e13bdd5e0870a41572e14568384d25cfe3f","sha512":"753eab8cb090d2167de5ad25037c9da37e171c31418926a21de964152ee6d6b6f409d4419f122bbf009c91018a48646801703433631cdf50bfbac3a7d3cac9bc","ssdeep":"","tlshash":"d221325f50b9649ab3d31120857b4248e072de752868c058f01886ea7fa4b1eaa27f6c","size":1252,"data":"","first_seen":"2025-08-29T10:46:28.989275Z","last_seen":"2025-12-27T22:36:58.498928Z","times_seen":202,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/_plugin-vue_export-helper-c27b6911.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","size":91,"data":"","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-05-17T11:03:43.805981Z","times_seen":20602,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/mount-component-6f8c2862.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"b4c73d318e2b1d48fb44e678bc65ff5f","sha1":"d16d09417d4673c1632537cd13a308f470a4369f","sha256":"fd63e9245bb9a272f5bd9d26706d92ff5eb7d4338906d696f18d101259ea9001","sha512":"88acf2a0e934810d7d347321ddeeabf9958c743128dc5fad1181775b74fd662240cb85d6286fbd0190eeea9fd69c2ed165845433c60f6a5e642dbee01b09ad0b","ssdeep":"","tlshash":"6ee0551dab205330d14500e861b59f6caab2052c745a8941f0dd68a87ab2c8687afe78","size":430,"data":"","first_seen":"2025-09-24T17:02:26.914628Z","last_seen":"2025-09-24T21:31:53.891825Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"5955f50c3ed0b6b5038830c601ec2ff6","sha1":"f131fff6dfb5758ac2dc26d59d831456d3ade6bc","sha256":"2f21a390c17ffd61f12fe641f981cd9f2ebc20699c962b50923b1cd8ebb8019e","sha512":"c50a0ecf8548776b864486b0cef5f21da3b9bb01f8c2d0f418eead3dace7f0ceef288031cb41395e530546246785d43fcede2ae7e95e3a9ff989687aa8c63fb9","ssdeep":"","tlshash":"b2c08cc8a0c66d002b02642011af24e4a024402a70481b028c94e8487e324b08233e98","size":141,"data":"","first_seen":"2024-06-16T15:45:01Z","last_seen":"2026-05-17T03:06:15.881871Z","times_seen":623,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"bcadf71235193f3498a6ec52ec3d1fcb","sha1":"a832507001a71b75d203e777b22f6bc63a8aee5e","sha256":"f4b08639ab112f41fc2d8f69b5c1e153fcf865717a2e0c6913174a9e017f2e4e","sha512":"c7dc607e0dfa6c1532fc70032be2bfff6aa043c1ca78622fba156d95fabca1c825354bc8b1317e3a6a13a85b7186a5ff85a14100f25686e11eb7bd7fa9a6c8ed","ssdeep":"","tlshash":"f3c012c661d66a5017555454686f26d4f225402672481716dde9d84c3e920bc9237da8","size":187,"data":"","first_seen":"2025-04-16T22:15:20.13525Z","last_seen":"2026-05-14T04:40:58.296696Z","times_seen":515,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/X3BV-MzC.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3781af49baff57a0b1ac0d2614601ae3","sha1":"ce014e747135a4d62c99b129398020ae6fffeb64","sha256":"fec80d4c2ec342c06934d1cebfffbdb6855e0cf2d4989138a63ab3b636ab7dd8","sha512":"8e10e7430d0137cc5061742ed4ca0eeea4b94ae25cf52439daa6dd50d50998222235d996a716e2ec17d50427fd2e1a45609eb55f8efefefe59fd847c6585dcf7","ssdeep":"","tlshash":"4ae0ab0d9de2e5b079f0cc484b612a3223263ac77315ad98974d1e203340a06e71fb2e","size":428,"data":"","first_seen":"2025-09-02T07:32:52.758345Z","last_seen":"2025-12-01T03:49:38.341634Z","times_seen":48,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"8b92c98b3458356415b9df2e1e8b8180","sha1":"b001e1c75a6f0ea8d66b4ad5e7d096701a5dc709","sha256":"cb806e3b2ff47f21bf5e2aef36e59ca807ffbffce0cb1d7289018bdab7a8bb5d","sha512":"b772e2aa0e74ebeeec2216cbbadda77b8489f02c8f2a2b479e66cf83f8f8ef12e79ba32b3ede8f8a31ab0bb3c38c23b95af8451765b7f66aa224e438304ae11e","ssdeep":"","tlshash":"ddc08cc8a0c76d007a06a4952aef36e490258426b1881b02cca8d8892fa30b48237eac","size":164,"data":"","first_seen":"2024-09-28T08:04:46.263922Z","last_seen":"2026-05-14T04:40:58.313973Z","times_seen":580,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"d7bab2c933b190d5f47d54b5c5ff0da8","sha1":"6567560603ad33c10ef52b9c0dfbc9740a0cc95c","sha256":"5ca4948cc6c0159ee43141aea4805084b33a8f03dcb0e25682a9f84e6d5911cc","sha512":"94deeedcbd7dc78a3152629b4331562f4a0d870f54062c9adda761c14080f9006f9df04cc33a93dc6580d486a9a6775f5c99d5a14e43b63ef046500fbad44bc2","ssdeep":"","tlshash":"4dc08cc4a0c22d102606662051af28e49024402674482b438cd5dc4c2e230b48233fdc","size":144,"data":"","first_seen":"2023-12-01T02:41:06Z","last_seen":"2026-05-17T03:06:15.880842Z","times_seen":641,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"8aaebb817ed632f87a96cb6deb58ca6f","sha1":"b982aeb0b5007351f5819705a8366a343f67e947","sha256":"87bbe7d26020f32c0f62a88808a3e9300a0e0d1d1f690cea3d673b5782abfef5","sha512":"81b35a40bf8e9a78a60d5f8b160bee5d32db6e9f5dd1b9172ce95020e92aa4d2766a2c9691003700669eb044d4900eeb346dcef8faee22735938fa63fc909c12","ssdeep":"","tlshash":"c9c08cc4a0c26d002612641010af38e49024402770881b429cd4d8883e230b08233e98","size":139,"data":"","first_seen":"2024-06-16T15:45:00Z","last_seen":"2026-05-17T03:06:15.880381Z","times_seen":511,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/usePageSetting-d39e1663.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"e4da2bcac29140148ae6d23df6864703","sha1":"548c4eaeee862a9d712c4bae7303c6316340199f","sha256":"de8f1c0e0671f03cdd4a7de392e041da14858432ff0eee7bd8269c6bffedec3f","sha512":"7234937abaceb1f5f18222236fd0fe3a7372243d6e0ebedaff35eff748580394eb7a1dffad9a3b846f5137de2aed28ba30086429ff58ef79a92e84e5be0002a4","ssdeep":"1536:bzzlvAQ1WsduLfctGm4g2NVKQgs4n+ImJqU50JPvX4BWa8SIvTd4EvGfHf30SK8I:fzlnL9tKgEKKJIn3HX9a8SIJ4qAp6","tlshash":"7db39eb47114bca652d7748090098401fe4c5f9be2ecfaacf6bdcd403ae8895265bf79","size":115786,"data":"","first_seen":"2025-09-24T17:02:26.906564Z","last_seen":"2025-09-24T21:31:53.907873Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-overlay-b5e4bce3.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"8e3d075add1d46ad07067ade2732c672","sha1":"562e840508a00be69b54d7424a4ed0ee87f0858a","sha256":"d45a75d5da1b5fca300b497488bdc0e93cdab59c7159d906cb3d993399858e29","sha512":"beeaeee2ca8290c5e523df280ef1dd35ffeee29b4547d0fb5279e0e13cc8b71c4756576cdc577c8d5d0ad68b66da8e67d262bcd58f66b055ccbf004a8ee136c5","ssdeep":"384:kObai5ZibCoa5WfOUsLEP/LQya+BS9PQGWapeSXXWL4SokkJkZrIeWKD71X:kObai5Q+oa5WfOUswnLLNBO/Wape6WLp","tlshash":"74524b90f15edb32c5df0d4eb02e45057a240b88e605a8d0b0bfce3913eed94b265b6a","size":13340,"data":"","first_seen":"2025-09-24T17:02:26.971824Z","last_seen":"2025-09-24T21:31:53.900438Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"7f37c58f53655977cad2c8571cc5752b","sha1":"ac2e60d74c82244bc72de25deb39424ef604ec16","sha256":"b862ab8d6b71b384619623231259fd5a049105fca5a05530c4f307f01dec00e2","sha512":"36c9057a4a6b4c7b576c3abaccbe9fc4c64f2653e4ec7431a76693b5834beb7302c9f298ce3a99e67c0cda18fa7387bc8f9cfe73c7687998b2aeb3cf7493b9d6","ssdeep":"","tlshash":"3a41fe7283bd667f4b203c8ebb90440c6cee9ae30d5cf974d06aab578d65b3902c115e","size":2125,"data":"","first_seen":"2025-08-29T10:46:29.027432Z","last_seen":"2025-12-01T03:49:38.368018Z","times_seen":137,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"purecloudqc.com/favicon.ico","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://purecloudqc.com/","date":"2025-09-24T21:31:25.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://purecloudqc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:25 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vXvYZ45R8aDsHUx0O7OH3JY88BzL6hYmcfv4v03YHQJkTONA4IKcbVe2iFAlE3BzMhJmMRhnChIEXtvxZ2oaHx61I1kq9fdRfd5RZx8%3D\"}]}\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 28 Aug 2025 07:44:10 GMT\r\nserver: cloudflare\r\nage: 7818\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"423e-Nfrdrn5S8nfHVtQjaTHghtmJWbY\"\r\ncf-ray: 9845637d8fd2568b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16958,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel","md5":"c01c33be1820de18ffe61225b749a6af","sha1":"35faddae7e52f277c756d4236931e086d98959b6","sha256":"c2edc31957f19c0602412ec8ae970aeb8fc3559ecc6a5d54244fb35ec7ba359e","sha512":"ee7ce3e924c5982c1bcc2b3a115c788895c5c37f39d1ed3f6e786c563c76dbd726c157e7e20944d012b940e25e8a4452bb3ebb338b5593c46be6307d13ae87cf","ssdeep":"192:xHNZYmuUmABXa6dLvgAIJT/cYtMpXGJvlY2ov+T3h:n2mBmAc6d7gAIJDcYKxGJvy1+l","tlshash":"817201fa3fb94e88d8285f3a192519363a037e417d71f848afb5794217373e2650287b","first_seen":"2024-06-16T15:45:01Z","last_seen":"2026-05-16T13:07:35.275464Z","times_seen":375,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/WebViewHome-f6d6048f.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.935Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/WebViewHome-f6d6048f.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9059C03E6A92D569455B5\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LL8lOndsCwOx4TyqaAJGfdQUtQWfwklgjqYFCGaEO3WcqSa3kto%2BySBrG2Uoq4F5tn4g%2F70GeOzdNKNjSja27QloejTCwGfaEJBEUgxy6zDOm4TJQP0w\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2544032\r\nvia: EA-IDN-kabbekasi-EDGE4-CACHE26[2],EA-IDN-kabbekasi-EDGE4-CACHE25[0,TCP_HIT,1],EA-SGP-GLOBAL1-CACHE10[12],EA-SGP-GLOBAL1-CACHE19[0,TCP_HIT,10]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 13a097fb3d10b15d20d41c5c14bbcd90\r\nnginx-hit: 1\r\nage: 1967\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"df2d796bf9af678dfc644d8bbea19b87\"\r\ncf-ray: 9845638b7a38120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1292,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1291)","md5":"df2d796bf9af678dfc644d8bbea19b87","sha1":"edb01af33d64be32ecba897ed70f15ea8868a230","sha256":"f6d6048f7433e63d47bfd2f8d630655c710f855a0c7bfc102a8e4840c2236f08","sha512":"259d8b93a4ba0117f5d2686479d254852ae7c426ed629cf1ac6b555e3612973685b169e3fefcc28ee63d145ce292bd037e6d43419c0fd5536a9034db68d63796","ssdeep":"","tlshash":"3121203e9337b576b432489ef110ad8cdb18d123ea010af9fa24be69c2c190728c0d19","first_seen":"2025-01-21T05:38:26.321818Z","last_seen":"2026-05-17T03:06:15.849224Z","times_seen":465,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/Footer-db7f551b.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.958Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/Footer-db7f551b.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9059C03A545F269A7ADF5\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=d5japojEm0IL352wkskNuGr6sXXACN0HBo2StEVtdMnRv8Khx0X4q5K6htVCcFiOk5%2B8xYxq6lmgc4dOcTraP0CGrTzcGbVnMvzEnkNeh6PSdAYAhk0X\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:05 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE16[3],EA-SGP-EDGE7-CACHE10[0,TCP_HIT,1],EA-SGP-GLOBAL1-CACHE19[1064],EA-SGP-GLOBAL1-CACHE20[697,TCP_MISS,1062]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 79aa583b6edd3ac5768f24327a66b9ac\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542034\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"4140c30d55e912694a2fb28d60a2901c\"\r\ncf-ray: 9845638b8a44120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":36358,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (36355)","md5":"4140c30d55e912694a2fb28d60a2901c","sha1":"ab5dff790d9ffb965eb3fd4118a413e5139404de","sha256":"e244f34e638124cbdd374fee523437e6ffdd89f3b81589d10b9eae76ff792eeb","sha512":"cdf9c18bac66c33aa956312589a9258ed93d9c152b21ffb0dab1a3a12ef77471175119f948875f69ce49b02c5bf5d5f2557b209473a99ada19de48dafe211bcc","ssdeep":"768:54Y09WF65nDlOWOjEb9QnJOhHeqL3SNL2bpKpNXMdu4cGSlcBBbe:5FkDmEbSMHeqO/","tlshash":"3bf219947099b5b557df88a921070801e32b2a6e542d84f0f4bbc8f439fda14937bf79","first_seen":"2025-09-24T17:02:26.953273Z","last_seen":"2025-09-24T21:31:53.885666Z","times_seen":3,"resource_available":true,"data":null}},"time_used":818,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":567,"receive":251,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"firebase.googleapis.com/v1alpha/projects/-/apps/1:331685862607:web:56a2488372760cb3ceebba/webConfig","fqdn":"firebase.googleapis.com","domain":"firebase.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Sep 2025 08:36:49 GMT","end":"Mon, 01 Dec 2025 08:36:48 GMT"},"fingerprint":{"sha1":"9E:38:51:02:B6:22:9C:08:6B:24:B8:A0:EB:DB:60:D9:27:B2:68:90","sha256":"67:AF:7E:56:AB:8D:96:FB:D0:75:CA:28:6D:16:B6:67:FD:7F:58:6F:CC:AA:78:B5:01:13:76:2C:AB:BE:80:4E"}}},"request":{"raw":"GET /v1alpha/projects/-/apps/1:331685862607:web:56a2488372760cb3ceebba/webConfig HTTP/1.1\r\nHost: firebase.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nx-goog-api-key: AIzaSyD0IJtrorI1xL6ARvlcaDOG5HD8rVIc4A8\r\nOrigin: https://www.uhzr96gdzmxav4u.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/json; charset=UTF-8\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\nserver: ESF\r\ncontent-length: 194\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://www.uhzr96gdzmxav4u.com\r\naccess-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":288,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"93194aac5a1f019400edf44181f6631d","sha1":"2427edeed252efe3f06308067338fb3105c0fa21","sha256":"1675e0ccf3d967caae62d11abe0fe203a2ee54e8c31ff227b8fb4cd7254cf63c","sha512":"d73fa596a81278ba54bd978da3ecfb5e1735ec237324de7ae5db3f1915946436e1a6a48f176bb9fefab17f9be5167b03f36d2171c84a507f08693af224306b07","ssdeep":"","tlshash":"53d08c04d352f6b64af122995290302626a5dc862ae47068dfe7b2a8510fd6212f238d","first_seen":"2024-11-07T02:08:18.88854Z","last_seen":"2026-05-17T03:06:15.875222Z","times_seen":481,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/_Vz3wFDw.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://purecloudqc.com/","date":"2025-09-24T21:31:25.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET /_nuxt/_Vz3wFDw.js HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://purecloudqc.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:26 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aL4WwwOBn0XccBkkJvDJzavRrMykHks7pEH5NZbPNc9KTs4tfiJAza8WJ8wwHBFPm3J8TLE%2FE0HmPyQyw%2FOtDP9yBXJ08wXw24a0vKQ%3D\"}]}\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 28 Aug 2025 07:44:10 GMT\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\netag: W/\"ace-Vunx3YUuyWGXhhtIvFvavCDT0UA\"\r\ncf-ray: 9845637defd7568b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2766,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (2765)","md5":"34aa2bcc041815e4710a29bf9b6e5d9a","sha1":"56e9f1dd852ec96197861b48bc5bdabc20d3d140","sha256":"9216829f25e836be0fe118b6f7f87eb7705050b74fc26bded9eb99804975ebdf","sha512":"10ed49c58cd19a53b6efa53f77b0cf4260e2fb6c81cb7cac5656f07ce318bd11857a79a5d0a4d05558bcb900f90da7fcd5b0c59eabe78c2363d70d1f06080fef","ssdeep":"","tlshash":"a2516154b8c0caa58f86881bedf0b6180a0806c2eb2288f9b7c41d113bc616ff59f303","first_seen":"2025-08-29T10:46:28.986698Z","last_seen":"2025-12-01T03:49:38.358758Z","times_seen":132,"resource_available":false,"data":null}},"time_used":822,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":822,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/Footer-4ff2c7de.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.932Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/Footer-4ff2c7de.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF9D03E43B7EDA3CF1B2\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OS7y9GH58Mn3QfS%2Fu6M7dXTVYxI3sI%2FRnFiA1fTKkHk2xc14dcN8HcIq%2FBgfVa6hz3OpXWvPaf0PHUTPdDsyoSCaMhsLqqOSEBSSzGjAEy1rxqQ1U0LU\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:05 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2571825\r\nvia: EU-FRA-marseille-EDGE1-CACHE3[21],EU-FRA-marseille-EDGE1-CACHE1[0,TCP_HIT,20],EU-FRA-paris-GLOBAL1-CACHE3[3],EU-FRA-paris-GLOBAL1-CACHE29[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 44d7d69a6b8fab5a07fa4ff54ba011f0\r\nnginx-hit: 1\r\nage: 29688\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"261a417d4343377233d039aaf56bc9e5\"\r\ncf-ray: 9845638b6a37120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":24796,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (24795)","md5":"261a417d4343377233d039aaf56bc9e5","sha1":"74cd269d8d58fa39dd907c0a92c61d6ef2e10278","sha256":"4ff2c7de2a2df70805a8661cd395e76a53681773c3ea1e6115a94b726ac0d5cc","sha512":"e4d7b6de470c4c0a65e3eabb52ca17a6622a6fd54c0fefa5c982af741f5fcf7c5a5478b09156656fa3c5616a88dab465aad9fd7e09d016edbd8864b6d4976992","ssdeep":"768:SXyVOdmMJFaEEI7YBBoR+6d0O60ZqG/VMToeb:EyVOdmMJFaExYBBoR+6d0O60ZqG/VMTn","tlshash":"6ab29bdbf755db7f1e0397ac5a8aeca67b02edc4c500a7a1f214d08c20c79a1198ad37","first_seen":"2025-08-13T22:08:10.94497Z","last_seen":"2026-05-17T03:06:15.877455Z","times_seen":377,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/index-4cd64216.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/index-4cd64216.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA905BAC0268995938EA3AF\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VpqRWhlaF3a7Ms0Z5CtS05h9FapM32uV4OtMFlrJaEMp%2FVgdeWKcMSh1ZhYR4Oz6RFxnc%2BAjWKEMMrg5pLP9d7YpCBZuGMfHG961udrTgoK0t6g0gOmL\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:09 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542163\r\nvia: EA-SGP-EDGE7-CACHE2[6],EA-SGP-EDGE7-CACHE18[0,TCP_HIT,5],EA-SGP-GLOBAL1-CACHE7[4],EA-SGP-GLOBAL1-CACHE22[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 1e538d8568f87f8142165b0f1ab54f9c\r\nnginx-hit: 1\r\nage: 49837\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"70b1cbe7f15d5807d6e1bae7876c30ff\"\r\ncf-ray: 9845638b8a49120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1815,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (1814)","md5":"70b1cbe7f15d5807d6e1bae7876c30ff","sha1":"9fa23ceb757d48f1be249789be49e0a27f8f5776","sha256":"b1aa28765220892f13f7e1e8fed5cd456bbe6eb2f155acaf88fa367e15c08540","sha512":"636c213f572c52b6b145ce99b3f98acc8744820961c04c2fbcc0121d76a2c310043e6da2da64913d6ac75080bacbba45c9f8330186e33428135506be934ff1dd","ssdeep":"","tlshash":"b83161c3f1d2273a83b7dddac0884650923c0e59fd04c7eaf5be1d2a2b601c5ab1ab44","first_seen":"2025-09-24T17:02:26.889339Z","last_seen":"2025-09-24T21:31:53.888421Z","times_seen":3,"resource_available":true,"data":null}},"time_used":568,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":568,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"firebase.googleapis.com/v1alpha/projects/-/apps/1:331685862607:web:56a2488372760cb3ceebba/webConfig","fqdn":"firebase.googleapis.com","domain":"firebase.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Sep 2025 08:36:49 GMT","end":"Mon, 01 Dec 2025 08:36:48 GMT"},"fingerprint":{"sha1":"9E:38:51:02:B6:22:9C:08:6B:24:B8:A0:EB:DB:60:D9:27:B2:68:90","sha256":"67:AF:7E:56:AB:8D:96:FB:D0:75:CA:28:6D:16:B6:67:FD:7F:58:6F:CC:AA:78:B5:01:13:76:2C:AB:BE:80:4E"}}},"request":{"raw":"OPTIONS /v1alpha/projects/-/apps/1:331685862607:web:56a2488372760cb3ceebba/webConfig HTTP/1.1\r\nHost: firebase.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-goog-api-key\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nOrigin: https://www.uhzr96gdzmxav4u.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: https://www.uhzr96gdzmxav4u.com\r\nvary: origin, referer, x-origin\r\naccess-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT\r\naccess-control-allow-headers: x-goog-api-key\r\naccess-control-max-age: 3600\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: text/html\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-17T11:15:02.142843Z","times_seen":15329183,"resource_available":true,"data":null}},"time_used":137,"timings":{"blocked":58,"dns":0,"connect":7,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/DET9EZ0_.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://purecloudqc.com/","date":"2025-09-24T21:31:25.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET /_nuxt/DET9EZ0_.js HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://purecloudqc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:25 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Lw7zE5VwNlNZGfa%2B%2FPZ1rj8lopE3GwQSzLZYlIiF7FGZEJtQbu8cACuCLLfUPhN8kgKBiMZ%2B0gnlnWb19jzvFN996wEMLBBSkewCvOY%3D\"}]}\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 28 Aug 2025 07:44:10 GMT\r\nserver: cloudflare\r\nage: 3\r\ncf-cache-status: HIT\r\netag: W/\"29793-ATL53s9zSlCxVl4tT13uSZw6ljg\"\r\ncf-ray: 9845637cdfcf568b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":169875,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (50485)","md5":"c1d71a5924194e8c0a33cbef6057324f","sha1":"0132f9decf734a50b1565e2d4f5dee499c3a9638","sha256":"d33b9dde52280281e9c9fb2a8a9466efd6ad23ed6312704518d469feb8be2cfa","sha512":"82b648a970e638c86854676a7fae63e592f9ed46096821ee71a02cd32d073b00c527ded58e8dd72996629f5182613057f9a1cf0598b73cb1da37dad96f98bbc8","ssdeep":"3072:SOxUhokmzG7nwbNgIZTaGO0KyQ0Z2hDS3buCFtG6o2MpLnzNQ7P/JfZpJCm:S/hoMnwbNgIdaGO0v2+XtGLHpkXJfZpf","tlshash":"f6f326e83196b02223f619e5807b1006f3392826384dd4e4f16dadeb397794991b7f7e","first_seen":"2025-08-29T10:46:28.984225Z","last_seen":"2025-12-01T03:49:38.361465Z","times_seen":137,"resource_available":true,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/base-837ebc0e.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/base-837ebc0e.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9056FC0681AA48D2959C3\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=x6hiZMVnFPPq5skEKyjS3LqYE2wf%2BQxJ3468bBfcdFj6bnD9MQD3nUekwlnM9J84b7%2BGlN8aVnE5DRL6BazArqI6CuutJsYsidU%2FDwRnTb7rGjdZL9Fw\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE7[6],EA-SGP-EDGE7-CACHE11[0,TCP_HIT,5],EA-SGP-GLOBAL1-CACHE18[722],EA-SGP-GLOBAL1-CACHE25[717,TCP_MISS,721]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 560f896b19a9699025a022a0153cf7f3\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542033\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"622cc5a8adeb445f3d7269164aa74a55\"\r\ncf-ray: 9845638c8a5b120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5986,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (5985)","md5":"622cc5a8adeb445f3d7269164aa74a55","sha1":"663818787d48011151c24ccf5e27e0c084c5e4ac","sha256":"0706553f4ee410f5b5768793cb150101e3c1f348026a9606480efb13b149e6b5","sha512":"b4dcf7986d313876034731ed95fdb8e7bf13b14e1db2e97628454d24211d7a17130f7bdc3a4b8bb4387273eab8906c348139ce9a49f9d1d9ac183fa77d4dd9f7","ssdeep":"96:4P+KL0bcUpMu7mwtr7kBAdXBGlpOZi+g0PxgXxTDwVsJ38uRHU9YPVD3:4mm0bcPImwSBAFBG7OZimgXlwgsuBUeh","tlshash":"79c1d7e03254763398ed48ce3577c321ae785698f01954c86d3e9c142eeefc1e1a2e4e","first_seen":"2025-09-24T17:02:26.908866Z","last_seen":"2025-09-24T21:31:53.891109Z","times_seen":3,"resource_available":true,"data":null}},"time_used":403,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":403,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/mount-component-6f8c2862.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/mount-component-6f8c2862.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA905A603CD7A0104BEAF1B\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iHfh%2B08T5A6dNWetJoOjM3u%2BkYrklsXasE%2BVB6bSnRIzLmeDjPz7Hnw5IvRn%2B%2BBQldGviOWPuEs0aGwA9POqLpc5n1%2BrLPtM0rYXw8SfiZ0jQQnQBqYc\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:10 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE10[2],EA-SGP-EDGE7-CACHE2[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE24[876],EA-SGP-GLOBAL1-CACHE4[870,TCP_MISS,873]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 5554ac43136ee9fa432fe6940182e045\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542033\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"b4c73d318e2b1d48fb44e678bc65ff5f\"\r\ncf-ray: 9845638caa66120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":430,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (429)","md5":"b4c73d318e2b1d48fb44e678bc65ff5f","sha1":"d16d09417d4673c1632537cd13a308f470a4369f","sha256":"fd63e9245bb9a272f5bd9d26706d92ff5eb7d4338906d696f18d101259ea9001","sha512":"88acf2a0e934810d7d347321ddeeabf9958c743128dc5fad1181775b74fd662240cb85d6286fbd0190eeea9fd69c2ed165845433c60f6a5e642dbee01b09ad0b","ssdeep":"","tlshash":"6ee0551dab205330d14500e861b59f6caab2052c745a8941f0dd68a87ab2c8687afe78","first_seen":"2025-09-24T17:02:26.914628Z","last_seen":"2025-09-24T21:31:53.891825Z","times_seen":3,"resource_available":true,"data":null}},"time_used":387,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":387,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.qckenacio.to/v1/h5_open_data","fqdn":"api.qckenacio.to","domain":"qckenacio.to","tld":"to"},"ip":{"addr":"47.88.107.85","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:29.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.qckenacio.to","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Thu, 15 May 2025 00:00:00 GMT","end":"Thu, 14 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7E:99:CB:89:89:0C:FC:FA:2F:77:AC:EC:B8:9F:E3:9C:87:97:37:06","sha256":"59:EC:FD:C3:A2:A6:AB:CE:61:D6:50:6E:9B:B8:D8:9B:68:5A:8B:A7:D4:EA:36:BD:CE:34:5E:3F:85:53:D3:0A"}}},"request":{"raw":"OPTIONS /v1/h5_open_data HTTP/1.1\r\nHost: api.qckenacio.to\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nOrigin: https://www.uhzr96gdzmxav4u.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:30 GMT\r\ncontent-length: 0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.uhzr96gdzmxav4u.com\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE\r\naccess-control-allow-headers: content-type\r\naccess-control-allow-credentials: true\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-17T11:15:02.142843Z","times_seen":15329183,"resource_available":true,"data":null}},"time_used":1927,"timings":{"blocked":880,"dns":373,"connect":165,"send":0,"wait":165,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/DlAUqK2U.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://purecloudqc.com/","date":"2025-09-24T21:31:25.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET /_nuxt/DlAUqK2U.js HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://purecloudqc.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:26 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2Ffkmd0XMDp%2BdgEzmC2hO6U%2FujS6NDsEhc0vESvmFAGwTBYjtBmHgnohGUPJGGqsCEduwBSmWRftW9Qpzsy756%2FMA15BA79xSVNfymM8%3D\"}]}\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 28 Aug 2025 07:44:10 GMT\r\nserver: cloudflare\r\ncf-cache-status: MISS\r\netag: W/\"5b-eFCz/UrraTh721pgAl0VxBNR1es\"\r\ncf-ray: 9845637defd6568b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":91,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text","md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-05-17T11:03:43.805981Z","times_seen":20602,"resource_available":true,"data":null}},"time_used":800,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":800,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/base-837ebc0e.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.945Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/base-837ebc0e.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9056FC0681AA48D2959C3\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Vxzs1GCVdtiahIthFCNHVEPiNQnXe671czQlxtKmoqcLa83okdKfBcsj2%2F0I%2FYwK%2F57yJ8ETonRc17IKuMWFPDPxuX6hMhJPM4trHz%2F%2FT3jEZjvMbwoL\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE7[6],EA-SGP-EDGE7-CACHE11[0,TCP_HIT,5],EA-SGP-GLOBAL1-CACHE18[722],EA-SGP-GLOBAL1-CACHE25[717,TCP_MISS,721]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 560f896b19a9699025a022a0153cf7f3\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542033\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"622cc5a8adeb445f3d7269164aa74a55\"\r\ncf-ray: 9845638b7a3b120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5986,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (5985)","md5":"622cc5a8adeb445f3d7269164aa74a55","sha1":"663818787d48011151c24ccf5e27e0c084c5e4ac","sha256":"0706553f4ee410f5b5768793cb150101e3c1f348026a9606480efb13b149e6b5","sha512":"b4dcf7986d313876034731ed95fdb8e7bf13b14e1db2e97628454d24211d7a17130f7bdc3a4b8bb4387273eab8906c348139ce9a49f9d1d9ac183fa77d4dd9f7","ssdeep":"96:4P+KL0bcUpMu7mwtr7kBAdXBGlpOZi+g0PxgXxTDwVsJ38uRHU9YPVD3:4mm0bcPImwSBAFBG7OZimgXlwgsuBUeh","tlshash":"79c1d7e03254763398ed48ce3577c321ae785698f01954c86d3e9c142eeefc1e1a2e4e","first_seen":"2025-09-24T17:02:26.908866Z","last_seen":"2025-09-24T21:31:53.891109Z","times_seen":3,"resource_available":true,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":571,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/tba-6fc08ac0.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/tba-6fc08ac0.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9054103A7B6F45587AD9E\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5upMABUUBmo0RN%2FD%2FmVSh4orBhkkdqsXHixtrre9H5AGIXe%2F1EGTc%2FoDePyAWasrFQBbMSWNDG308Zv2yk%2BdUODfeyiWBpuxHo7YX6k5RMSpEVHomfaF\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:12 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE14[4],EA-SGP-EDGE7-CACHE2[0,TCP_HIT,3],EA-SGP-GLOBAL1-CACHE3[712],EA-SGP-GLOBAL1-CACHE30[709,TCP_MISS,712]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 6a8c87583ed5dda04ce2e2746695ad2d\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542033\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"5af044eeb17b32f861424b1b3640642b\"\r\ncf-ray: 9845638b8a46120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2298,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (2297)","md5":"5af044eeb17b32f861424b1b3640642b","sha1":"7bc2d9408f616399309514cc9cd78919e31633a2","sha256":"316a115b42efa5b4cfb4f23f137ef5216808e2ecc7088d2139c8df5eecf252c0","sha512":"63e50ce0ffb7ee822a212da0ebfefc9fe795147c70e938226c0c08851d20d6320d8c56930477f67825d115f117f4b86ced72de7c5205b7a5ab544166c4b7f9b3","ssdeep":"","tlshash":"45415588b6f8d2b0f2b4a58cd1f61123811c6ad5b079c6f0d16f4e056976942c2bff28","first_seen":"2025-09-24T17:02:26.974327Z","last_seen":"2025-09-24T21:31:53.893012Z","times_seen":3,"resource_available":true,"data":null}},"time_used":567,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":565,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-avatar-90eada9d.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-avatar-90eada9d.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8D02D03E9B3DFE8FA7900\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=g7vLXEXGc%2FYAh4D%2FH2AV1lH02PZEHF6L14qod1xKr2OSetm5jDYfKyqFXUstyOa1LfqYowBcsON6KuMynnbBHwnADKxEj9WfOq%2BTYvYq1637JSBrYG7f\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE4[4],EU-FRA-marseille-EDGE1-CACHE3[0,TCP_HIT,3],EU-FRA-paris-GLOBAL1-CACHE3[3],EU-FRA-paris-GLOBAL1-CACHE11[0,TCP_HIT,1]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 4e866d2e4bb6c88f70c37b325cd78ba7\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"eb69db01fe759fa00d3082b89a230c2a\"\r\ncf-ray: 9845638c8a5e120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1342,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (1341)","md5":"eb69db01fe759fa00d3082b89a230c2a","sha1":"6fb0b3227f2801c21fa443e519356fd8af19ff85","sha256":"0aaab7ecec4cdba194269816fe9704bbd16e6456878c260d3ee7a79f0122bdba","sha512":"51e5275347789de20f2f4f04fa269f07be1d4f6a64b8fdf7c1be04c4f62796ff7c6373b91adbf46a37033b7f67d088e754194e5714e0dc7b607503f44d20121b","ssdeep":"","tlshash":"2a21b72d389ddb320cd62cc440255a41e3291a6cde36b8e0d1bfc5b403b247a750db08","first_seen":"2025-09-24T17:02:26.964212Z","last_seen":"2025-09-24T21:31:53.893643Z","times_seen":3,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/tba-6fc08ac0.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.125Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/tba-6fc08ac0.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9054103A7B6F45587AD9E\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oMjZmBDHFMHBHcKaVYyjaZ4wBYwKmmclVr2TPofSmMhNcushYY%2FJp0XKBh9iu62pkB%2BEeZC1H5KJDX66cwtq5SdxiiLJUrD5K4o8fMe76obLJZ2B6%2B7E\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:12 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE14[4],EA-SGP-EDGE7-CACHE2[0,TCP_HIT,3],EA-SGP-GLOBAL1-CACHE3[712],EA-SGP-GLOBAL1-CACHE30[709,TCP_MISS,712]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 6a8c87583ed5dda04ce2e2746695ad2d\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542033\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"5af044eeb17b32f861424b1b3640642b\"\r\ncf-ray: 9845638caa64120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2298,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (2297)","md5":"5af044eeb17b32f861424b1b3640642b","sha1":"7bc2d9408f616399309514cc9cd78919e31633a2","sha256":"316a115b42efa5b4cfb4f23f137ef5216808e2ecc7088d2139c8df5eecf252c0","sha512":"63e50ce0ffb7ee822a212da0ebfefc9fe795147c70e938226c0c08851d20d6320d8c56930477f67825d115f117f4b86ced72de7c5205b7a5ab544166c4b7f9b3","ssdeep":"","tlshash":"45415588b6f8d2b0f2b4a58cd1f61123811c6ad5b079c6f0d16f4e056976942c2bff28","first_seen":"2025-09-24T17:02:26.974327Z","last_seen":"2025-09-24T21:31:53.893012Z","times_seen":3,"resource_available":true,"data":null}},"time_used":391,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":391,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/index-873f7ad4.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:26.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/index-873f7ad4.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:26 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8C5BB03AC1985AB1A46E9\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AwbFMFUDPnRlUPOK4RpVXuyOSFdB0pnQO529nUjzucs3Xi9ozD61Qz%2FcXbY9OdrBgW9OWGKAKMt8xwbfLK8PkFUCE2Ef4c7sqp0V3J%2BCNRORvwST9wyu\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:09 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2571825\r\nvia: EU-FRA-marseille-EDGE1-CACHE4[6],EU-FRA-marseille-EDGE1-CACHE1[0,TCP_HIT,5],EU-FRA-paris-GLOBAL1-CACHE27[7],EU-FRA-paris-GLOBAL1-CACHE15[0,TCP_HIT,5]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 2af35b6a54b150ea167ff78013565935\r\nnginx-hit: 1\r\nage: 29688\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"2aeee0150326cc0c7f5bee55d0984e35\"\r\ncf-ray: 9845638599aa120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":738389,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65528), with no line terminators","md5":"2aeee0150326cc0c7f5bee55d0984e35","sha1":"ef068cb0a78709622656ffa241d3c711703382da","sha256":"873f7ad4c1f44b17592045106bc1b4dc890bfa259212d136caaeda78e84480f0","sha512":"0fda79e8ae82733bbbea8b2cca752c620199644d098cc99f3275da7ab7a037e6a6a8cd84610b77ccdca36f01f0fb07861c31a09450a6d92be839c4dc643e6e19","ssdeep":"6144:+qhvhbtitXT+XK4PySEPhdWuwK04MuobXSNA/uYD1WwJjjSTutV2TM5iRvb/LRQ:+SELYDU4jTSTMqvb/LRQ","tlshash":"d8f4d855e732653b2e1be63d7ac5a9c8a628de51dd129bf5f340600c4ec7af00263d2b","first_seen":"2025-09-24T17:02:26.945341Z","last_seen":"2026-01-07T07:31:53.366306Z","times_seen":169,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-overlay-8dd237bf.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.892Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-overlay-8dd237bf.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF6403EC5A335404E5BC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IHXzfQJB94Bs%2BDKzw9HcWzEq2%2B4EZ%2BqHXenJ4T8egnRjfLT%2BkBVmLTu%2BX%2Bv10cwmGi%2FEnP8kGvwvcin%2BlqgKmgL8cBk7pLvBNCB3d2I4MgGNpuEruT2F\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2571826\r\nvia: EU-FRA-marseille-EDGE1-CACHE3[3],EU-FRA-marseille-EDGE1-CACHE4[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE22[4],EU-FRA-paris-GLOBAL1-CACHE8[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 2bce7826744b8cd16c96028d6613d640\r\nnginx-hit: 1\r\nage: 29688\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"51a2cdbbbdbd93d528560df5d38aa12d\"\r\ncf-ray: 9845638b3a33120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4304,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4303)","md5":"51a2cdbbbdbd93d528560df5d38aa12d","sha1":"33feff2e10a28d910126a9251566fd7f84751074","sha256":"8dd237bf03ab1520a557c35b7629600555c5b091f0bdc5a9dce1f059390dea50","sha512":"e9a3c2e918c2fec6e7d713c0ab6c33fe9a50c1becb509c113146bec28b1a7b59298410d2b1a16caa78c08ccaf08f819f31e9c86b455b749fdadefebf6a0c7043","ssdeep":"96:9yMqKD7kJZyZnZHZnT9Z5ZSZdZW1ZCgZ6zZ1Zn9ZYZzGZGZiZcZaZ9ZeZlZYeZL/:t7kJg1dVT9Dc301MgUzzV9OUY0qEvw3T","tlshash":"5691d1797b9e723cc92b55fde6854c5ce914dc51d922d79afa2c521101c3ae023c3e28","first_seen":"2024-11-22T20:28:09.590636Z","last_seen":"2026-05-17T03:06:15.876871Z","times_seen":570,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/index-4cd64216.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/index-4cd64216.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA905BAC0268995938EA3AF\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RRJCN1EES4xUADBo3kcXdxeFTBVdsLSozcYO80KFnVDX8Jb0gk5qRisGU%2B5JGxtLkB7PVbZ9b2A520oYCFYkQVhDb8lf0V01lWcwLMWLhErwXbw14%2FCJ\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:09 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542163\r\nvia: EA-SGP-EDGE7-CACHE2[6],EA-SGP-EDGE7-CACHE18[0,TCP_HIT,5],EA-SGP-GLOBAL1-CACHE7[4],EA-SGP-GLOBAL1-CACHE22[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 1e538d8568f87f8142165b0f1ab54f9c\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"70b1cbe7f15d5807d6e1bae7876c30ff\"\r\ncf-ray: 9845638caa65120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1815,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (1814)","md5":"70b1cbe7f15d5807d6e1bae7876c30ff","sha1":"9fa23ceb757d48f1be249789be49e0a27f8f5776","sha256":"b1aa28765220892f13f7e1e8fed5cd456bbe6eb2f155acaf88fa367e15c08540","sha512":"636c213f572c52b6b145ce99b3f98acc8744820961c04c2fbcc0121d76a2c310043e6da2da64913d6ac75080bacbba45c9f8330186e33428135506be934ff1dd","ssdeep":"","tlshash":"b83161c3f1d2273a83b7dddac0884650923c0e59fd04c7eaf5be1d2a2b601c5ab1ab44","first_seen":"2025-09-24T17:02:26.889339Z","last_seen":"2025-09-24T21:31:53.888421Z","times_seen":3,"resource_available":true,"data":null}},"time_used":391,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":391,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/#/?linkId=","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-24T21:31:26.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://purecloudqc.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:26 GMT\r\ncontent-type: text/html\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8A4C203C518021A1EE9D4\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LF0n0%2FX4YFXJcA0PioMSW8KJ2xsSt5k4KSI7UHl772Vz%2FPlP5pRjktk%2FU9Yijwr9dtdJTPLJeeVI7cREq7YlP4v38awwzqpYuVDzKY0YIfgRsOt3Vw%3D%3D\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:17 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2571719\r\nvia: EA-SGP-EDGE7-CACHE15[3],EA-SGP-EDGE7-CACHE9[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE26[21],EA-SGP-GLOBAL1-CACHE20[0,TCP_HIT,20]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 6a7a66ba670f8a437361280c7c7e8caf\r\nnginx-hit: 1\r\nage: 29689\r\nvary: accept-encoding\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\ncf-ray: 984563850887569a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2626,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1926)","md5":"fc7c28752a02c223f9571fc3b5fe5bd3","sha1":"2244f1be5a10b31e06012770443dc9d15c092c22","sha256":"79e76dc66623f9dd14c15c163a48feceae150a8e7a26767650083390933bf77a","sha512":"2122c258e340b7505af5e1806434ade17cde4d38239e5590fa8adf4351386642c6da6f5492e1585b6737cd682e471312816a9ac8686f41f1d38ae201e7378840","ssdeep":"","tlshash":"a051cbb307b298fd01b019155222fc040f2f2d9bb168865965ae31f61e88be55c64ffe","first_seen":"2025-09-24T17:02:26.978658Z","last_seen":"2025-09-24T21:31:53.895908Z","times_seen":3,"resource_available":false,"data":null}},"time_used":128,"timings":{"blocked":56,"dns":1,"connect":1,"send":0,"wait":14,"receive":0,"ssl":50},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/AndroidHome-953d7393.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF5E03A7B919EC4C37A6\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2Fqr4I8hwrXLLrCprNwv8b9X79jjMJjqb%2FGi06kgqc4Ribla2n7zEzDe%2B0A%2BaCsn9lDutr5BZxhSr2ePT%2FcWB%2BQhE%2FPz1jzlewJbi3zRrCTM%2BqQ%2Bu9dF1\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:05 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE2[3],EU-FRA-marseille-EDGE1-CACHE4[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE5[5],EU-FRA-paris-GLOBAL1-CACHE23[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 61b441c57a027c4865b1ab352c861076\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"44390bd5daed64f21cdabfb1c422100f\"\r\ncf-ray: 9845638b7a3a120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40842,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Unicode text, UTF-8 text, with very long lines (40837)","md5":"44390bd5daed64f21cdabfb1c422100f","sha1":"4ad2def20399a790d6773fec26e5bf734d0c9261","sha256":"75580314d3213a2eaf99d1c67fbe3ef5aa54397e4b99fed401d22a1c810347f8","sha512":"fee89e2154084d9bf1de6894ffec36fa84aa740968b0c9a6ba8169f9255d4cef54e11c04dcd985c549a605c4b2f2c9ef2264e49670244723acd3bc266407c4fd","ssdeep":"768:0+eHUFM0YrmIsUdaDqZRHFBlaPlbjgF3hiMnFiMnFsIs/KMepgnNxgHrZ:20Yr7rdaW3hPxs/G0qd","tlshash":"6f035c25f050a97af5b76048b4284150798c1f9bc250cda5f2fd8b2277e5ce287ebb39","first_seen":"2025-09-24T17:02:26.898101Z","last_seen":"2025-09-24T21:31:53.896845Z","times_seen":3,"resource_available":true,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":92,"receive":61,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/_plugin-vue_export-helper-c27b6911.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.953Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/_plugin-vue_export-helper-c27b6911.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8D05CC028390BC5ECC6B9\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NAJGeyZZyXQNRk9NiLFSanMuW0hVziezUwcHIiX0V0kcYPl%2BMJEbX9yvBe6Za1Y6SElbiufzYABnOImDnsq6LysEtg4xfhwuuTIJWQEqC4wreKXEknsH\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE2[3],EU-FRA-marseille-EDGE1-CACHE3[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE29[4],EU-FRA-paris-GLOBAL1-CACHE30[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 747427fd1d5ca4c11b9747d86355a1c8\r\nnginx-hit: 1\r\nage: 49863\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"25e3a5dcaf00fb2b1ba0c8ecea6d2560\"\r\ncf-ray: 9845638b7a40120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":91,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text","md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-05-17T11:03:43.805981Z","times_seen":20602,"resource_available":true,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/_plugin-vue_export-helper-c27b6911.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/_plugin-vue_export-helper-c27b6911.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8D05CC028390BC5ECC6B9\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iPJNCnSSRSeAZvr4tiwqAAzfq%2BrhvGll3cIAuh3wvmEQbWkL1sSzG%2B5h1AaEWYx67GkQm2y7Bar%2BGNgjhrjk3H0DsQ1tJd%2FkbMm%2FX%2F5tuFTlnvSqsnQN\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE2[3],EU-FRA-marseille-EDGE1-CACHE3[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE29[4],EU-FRA-paris-GLOBAL1-CACHE30[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 747427fd1d5ca4c11b9747d86355a1c8\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"25e3a5dcaf00fb2b1ba0c8ecea6d2560\"\r\ncf-ray: 9845638c9a62120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":91,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text","md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-05-17T11:03:43.805981Z","times_seen":20602,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/C8Vr7011.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://purecloudqc.com/","date":"2025-09-24T21:31:25.753Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET /_nuxt/C8Vr7011.js HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://purecloudqc.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8233,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (8232)","md5":"242e8c0fbe774007d5e665d6c7bb8b2c","sha1":"37c3dc9b745a3e5c3ff62ceea675bf0f2c392a16","sha256":"d4f23418cf0e8497a9875873d8cb1db687abca9fc972216b6b06237c78fa7ad3","sha512":"9be0a34cea6fdf5e69c8b9145346d85b05cef2853fea4368e5860a5ec78645f6ce910e9109d1c89c6d0f492baa35b580267b1ac4c7987c14f0862cb6d4d6232b","ssdeep":"192:WKP1PqhXH2wNiHkgonOGqSsWTI96cIyw4QSueRM:F1ChX2wKkNOGlsW0Jw4PueK","tlshash":"4a02dae8b0d4a0e79fb18dd3d071665150065b95e732e4f0f3a92c323287a5eb16672f","first_seen":"2025-08-29T10:46:28.985486Z","last_seen":"2025-12-01T03:49:38.342376Z","times_seen":134,"resource_available":false,"data":null}},"time_used":832,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":832,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/builds/meta/f6ecef2b-33ff-4596-8909-e39ce16dd742.json","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://purecloudqc.com/","date":"2025-09-24T21:31:25.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET /_nuxt/builds/meta/f6ecef2b-33ff-4596-8909-e39ce16dd742.json HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://purecloudqc.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:25 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=33ZW0ozd9uSjnrrPDsJrxcGyAvdVF5FJxhvCNE8rYSW1QxyJGc4nyy%2FZbqxnOfFS16Ied%2BQQjc50mveuPj80MxfpCVnH76f5EgD7cW0%3D\"}]}\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 28 Aug 2025 07:44:10 GMT\r\nserver: cloudflare\r\nage: 7818\r\ncf-cache-status: HIT\r\netag: W/\"8b-9TT3zu1VAqavIEmHz/f9YwJ8lFE\"\r\ncf-ray: 9845637e0fd8568b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":139,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"dd458726b02aa8d87251c2aa52a4c4a0","sha1":"f534f7ceed5502a6af204987cff7fd63027c9451","sha256":"44f2a69cc5a3768e95c61918794e0e448d651fce3ff67bd65668b1ebc8ef5067","sha512":"db78de9fffb2153df75afc4effd25bf3be284ca0a8f1043a7c0aaa6ef2e51a488b490803d99e2183e709741a1d44554935797e3a31c633a339d7dc246e3f675e","ssdeep":"","tlshash":"4cc02b32140000eb64718c52d4042170f48752a7843cdc15523c0d3f06fd0986358017","first_seen":"2025-08-29T10:46:29.015339Z","last_seen":"2025-12-01T03:49:38.354086Z","times_seen":136,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-scrollbar-33981805.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.890Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-scrollbar-33981805.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8D02EC0268A055D7FE284\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=biTCLmstA32bAyluT%2BwfGI1xiIZX1fXHjuX3ZMUh6gZopcrWPkFTtUx91Gb1NDm2XXW5tLT0jy2%2F7h7zBzYFT4j8k2IHqSs2ZoSl%2FS9Fs7D%2BHsvIlk6e\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2571825\r\nvia: EU-FRA-marseille-EDGE1-CACHE2[3],EU-FRA-marseille-EDGE1-CACHE2[0,TCP_HIT,1],EU-FRA-paris-GLOBAL1-CACHE19[5],EU-FRA-paris-GLOBAL1-CACHE21[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 28248f026049c1a87db391d53c6bf30f\r\nnginx-hit: 1\r\nage: 29688\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"2dd853349a55b41fb5f0ff67b2957ef2\"\r\ncf-ray: 9845638b3a32120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5697,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5696)","md5":"2dd853349a55b41fb5f0ff67b2957ef2","sha1":"62ffe7b41150a4321456eb53a1eb701672336ce8","sha256":"33981805cfe603dfb86ee21b846ebe6b08373689086e2d41e02187c9e064a889","sha512":"d8eb831eb41111a724e74e5b501d37f7a9772f1613febf7a73d3fdb70f3cb49dbecacaa3e9adba6d727186c2aff531c38b7c35b81e245861683c2b21d41a39e7","ssdeep":"96:cIcqCelYtRuAAW+UFDZiDgyiZQcjHvjByukSBEISKfVJ7J94C:cIcVelYtRuAAW+UFtIghXjHvjBtkSBEk","tlshash":"9dc16245f31af4be5c536a1dd9c4966ca42aeba3f6160a96f7c5573080e3af90520c3c","first_seen":"2025-01-21T05:38:26.313764Z","last_seen":"2026-05-17T03:06:15.847448Z","times_seen":558,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/deepLink-8aeabd87.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/deepLink-8aeabd87.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9056503AD31DCFF2B6A36\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FlUOUGP2YV8ABN0H3iQgmriGS59%2BMttfi9JsfwhAvrRhRG%2FzrwVJckr3C%2FQBphMCrs9aqHPBZDl4kN8H0wfHuAMf6cBYoHdoQX3pi75jwmLf6oG4at7N\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE4[4],EA-SGP-EDGE7-CACHE6[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE6[1067],EA-SGP-GLOBAL1-CACHE20[700,TCP_MISS,1067]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 1f7f9562503d290f4c7a2c3434973002\r\nnginx-hit: 1\r\nage: 49966\r\nx-ccdn-expires: 2542034\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"e9864bb2528487370e12e842161eeaae\"\r\ncf-ray: 9845638b8a41120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36924,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (36923)","md5":"e9864bb2528487370e12e842161eeaae","sha1":"192d9e4eb4e22a1c9a8405df111f2b203485a151","sha256":"41646e93b6566cdb8ec0e1403806810e7d55db403146fa21bb50766997766b90","sha512":"45071192836737ee46c4c1c6fbbce577b4a9331fa40cf07a3f2f7374f691b9f4066fcd11fc9342085ce9d8143075ab2dcb6bc072cc9206f821572727ba50ff4b","ssdeep":"768:1SaywWoRWpK9FZgj+dur/WgGxrfKFYBaxtAauo51lfaNi/adaU7avsFf38:waNdFuSZxrMOaxSauO1lfaNi/adaaavD","tlshash":"09f25b33b90aa46eb7634880605145413d182fdbeb64c4fef1be4e32639dca0d7e6768","first_seen":"2025-09-24T17:02:26.88496Z","last_seen":"2025-09-24T21:31:53.899841Z","times_seen":3,"resource_available":true,"data":null}},"time_used":832,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":568,"receive":264,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-overlay-b5e4bce3.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-overlay-b5e4bce3.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF6303CAD8CE8C0B0DC6\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3qTLi8%2Fj9zCzdDIbjP58K2QXcxD0c9c1BXc8Pta%2FXItFHHkUE%2BMCB9E30mRiZZwfEcDrANAUB%2Bsbyfd%2BzHRp0hy9VCW%2BW%2BHrkpmbuamK3oRcw4tVlbQJ\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE1[4],EU-FRA-marseille-EDGE1-CACHE2[0,TCP_HIT,3],EU-FRA-paris-GLOBAL1-CACHE3[4],EU-FRA-paris-GLOBAL1-CACHE12[0,TCP_HIT,4]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 676a33a808d2c07a55cfc0e606e0086f\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"8e3d075add1d46ad07067ade2732c672\"\r\ncf-ray: 9845638c8a5d120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13340,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (13339)","md5":"8e3d075add1d46ad07067ade2732c672","sha1":"562e840508a00be69b54d7424a4ed0ee87f0858a","sha256":"d45a75d5da1b5fca300b497488bdc0e93cdab59c7159d906cb3d993399858e29","sha512":"beeaeee2ca8290c5e523df280ef1dd35ffeee29b4547d0fb5279e0e13cc8b71c4756576cdc577c8d5d0ad68b66da8e67d262bcd58f66b055ccbf004a8ee136c5","ssdeep":"384:kObai5ZibCoa5WfOUsLEP/LQya+BS9PQGWapeSXXWL4SokkJkZrIeWKD71X:kObai5Q+oa5WfOUswnLLNBO/Wape6WLp","tlshash":"74524b90f15edb32c5df0d4eb02e45057a240b88e605a8d0b0bfce3913eed94b265b6a","first_seen":"2025-09-24T17:02:26.971824Z","last_seen":"2025-09-24T21:31:53.900438Z","times_seen":3,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/function-call-20ba0bbb.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/function-call-20ba0bbb.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA905C703AA6AFD26E68060\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qTqyPxCP0mY6vBWVsIL4MA5ALXOdCHMaoKGpjtAuOs%2FE6dYogfyIAiWv%2FOQri4ut60plM%2B%2FZ1ScFxkEQFOZPszAeWHBy5XZYRTj%2BKFirWpiSyNRWOu5I\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:08 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542648\r\nvia: EA-SGP-EDGE7-CACHE9[3],EA-SGP-EDGE7-CACHE14[0,TCP_HIT,3],EA-SGP-GLOBAL1-CACHE13[4],EA-SGP-GLOBAL1-CACHE17[0,TCP_HIT,4]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 7be6f2e87be4b7fd74e37d1933cfe8e5\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"7dfbd1340875abc6246ccacbead3c70b\"\r\ncf-ray: 9845638caa63120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12025,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (10346)","md5":"7dfbd1340875abc6246ccacbead3c70b","sha1":"03efa31737143294877f6f2b2975328924849ce0","sha256":"03a25634abc8ea75bfc588037813cfd22c35d0ea94a5545e70d77932bee2ca64","sha512":"5bf96adce57c44fb8973cab43155426a988a8c99e02c7a034165af23badd394e61e3d4b4b6558d57614945b732508210d52ae76c71692e7e5c8710548e09850b","ssdeep":"192:UQv6CUqU5QhdidIKT1B06UQrisS0ZWjcmlBeF0sdA3F+KOqMcQle0gLeLmRS:+NP5QbidI6lDu2ZWjcm+rSb/QlqeL2S","tlshash":"7742fcac70651679d7f799cd61a46b00632c27085c22d5d2d0bbdd2833d7e8060e7bae","first_seen":"2025-09-24T17:02:26.927418Z","last_seen":"2025-09-24T21:31:53.902693Z","times_seen":3,"resource_available":true,"data":null}},"time_used":394,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":394,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/index-4469ee0a.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:26.983Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/index-4469ee0a.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8C48D03A9E9FCF6F3F83E\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=srx7BtpiqK9%2FW7wXW1t%2B8VxYgUc8Xk9v85WibzQD8uyReSyCW%2BHYU84EX1r%2F6pUuzwa8gWrZna270beGivx1v%2BW20S%2BOhe1ouT92TNMnv1fySBuyuS7f\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:09 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542136\r\nvia: EU-FRA-marseille-EDGE1-CACHE4[6],EU-FRA-marseille-EDGE1-CACHE1[0,TCP_HIT,5],EU-FRA-paris-GLOBAL1-CACHE7[7],EU-FRA-paris-GLOBAL1-CACHE2[0,TCP_HIT,6]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 631bb94f5edea4bd5913f4f111740acd\r\nnginx-hit: 1\r\nage: 49864\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"e755262eb71bcaf2ad6ce1691704bcfe\"\r\ncf-ray: 9845638599a9120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1015830,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (44288)","md5":"e755262eb71bcaf2ad6ce1691704bcfe","sha1":"de90ac152781dcfe7c6c9069964eaf204036400e","sha256":"67f0af61edb8db7d53071b6fbb8f078bf586ab4f68407117f85985ba5f32a29c","sha512":"5b59d131ba93cc9f60dde981db3710e2a86e551ffbc82bd60827e88bfc7a5228b82aeb7a96f429cb8f430f253db9241015257cbd3563e2c27210cd3d58b858b8","ssdeep":"24576:iZUigV55mMiA8Z2+LRbUhJZ8k3yc8be+d01i/t9orgSHZPbcqs:iZUigV55mMXa2+RUhJZ8k378be60o/tt","tlshash":"34255bdd7292b07243bb20f5507f040bf23a2a59a84dc4a0f16ad9d93d7d889917bf6c","first_seen":"2025-09-24T17:02:26.981429Z","last_seen":"2025-09-24T21:31:53.904144Z","times_seen":3,"resource_available":true,"data":null}},"time_used":581,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":312,"receive":269,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/function-call-20ba0bbb.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.960Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/function-call-20ba0bbb.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA905C703AA6AFD26E68060\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RXcR1gtCFGncmD4qCeId8P68Dggks%2FHQ9M%2FjkFXR47ehdxFvIRyEZ3VVSSiX3ekiTmLevvrnI6X3vYW1uIfMLaAF8s25KS6yXVHd2AWQP5%2BZhasOeGJN\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:08 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542648\r\nvia: EA-SGP-EDGE7-CACHE9[3],EA-SGP-EDGE7-CACHE14[0,TCP_HIT,3],EA-SGP-GLOBAL1-CACHE13[4],EA-SGP-GLOBAL1-CACHE17[0,TCP_HIT,4]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 7be6f2e87be4b7fd74e37d1933cfe8e5\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"7dfbd1340875abc6246ccacbead3c70b\"\r\ncf-ray: 9845638b8a47120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12025,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (10346)","md5":"7dfbd1340875abc6246ccacbead3c70b","sha1":"03efa31737143294877f6f2b2975328924849ce0","sha256":"03a25634abc8ea75bfc588037813cfd22c35d0ea94a5545e70d77932bee2ca64","sha512":"5bf96adce57c44fb8973cab43155426a988a8c99e02c7a034165af23badd394e61e3d4b4b6558d57614945b732508210d52ae76c71692e7e5c8710548e09850b","ssdeep":"192:UQv6CUqU5QhdidIKT1B06UQrisS0ZWjcmlBeF0sdA3F+KOqMcQle0gLeLmRS:+NP5QbidI6lDu2ZWjcm+rSb/QlqeL2S","tlshash":"7742fcac70651679d7f799cd61a46b00632c27085c22d5d2d0bbdd2833d7e8060e7bae","first_seen":"2025-09-24T17:02:26.927418Z","last_seen":"2025-09-24T21:31:53.902693Z","times_seen":3,"resource_available":true,"data":null}},"time_used":568,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":568,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-24T21:31:25.343Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:25 GMT\r\ncontent-type: text/html;charset=utf-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nx-powered-by: Nuxt\r\nserver: cloudflare\r\nage: 4\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nlast-modified: Wed, 24 Sep 2025 21:31:21 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yZblJhhr8Y1wyBRP1pjGt1F%2BITqgVnIB28HKS2WwNiaOxCieMVsWyXw8bq0z6%2Bkac%2F%2BUz80KByNr06KksHChp3fxnZScHuqjd%2BzvvfnrGw%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9845637bd98a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]}],"data":{"size":4417,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (2156)","md5":"bb1ddc568c9e45043e315a93eab90803","sha1":"163f7a5a37e6700bd481ba8ccffbc138b9f682e2","sha256":"085261a7101243db7f1774fae3e4ec92cc11cc787db15c1fba91ed4613ce0338","sha512":"0eb0cc47ad999bf4f611679657794f155401c504b9b232875392604d5f831e6e2fb52113552dde52ae5f153eb8e58caa7e5f932e728c2edba7e2998df7dd75fd","ssdeep":"96:NCi41jA+PqQEbZIQfrff+TosN5VorsoIKfjmf7ojo7nqgu+wkWU:UjZA+yQoIKr3he5ihIYjmfMUrOS","tlshash":"16919975263cd93b5b207d897b90950c68eaf7974e0df4a080ae7a75ce81b7805d014f","first_seen":"2025-09-24T21:31:51.714477Z","last_seen":"2025-09-24T21:31:53.905198Z","times_seen":2,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":74,"dns":1,"connect":1,"send":0,"wait":10,"receive":0,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/X3BV-MzC.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://purecloudqc.com/","date":"2025-09-24T21:31:25.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET /_nuxt/X3BV-MzC.js HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://purecloudqc.com/_nuxt/DET9EZ0_.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:25 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3y%2FyN6ozDge9SWmZjin7t1iwYkqGudlctQtWOPntgP1GcgQ08lLg9UQNk3pk%2FiIFRjNREbkGS5vNNxcJwpWDpF5U8fntm5ClThoifzo%3D\"}]}\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 28 Aug 2025 07:44:10 GMT\r\nserver: cloudflare\r\nage: 0\r\ncf-cache-status: HIT\r\netag: W/\"1ac-zgFOdHE1pNYsmbEpOYAgrm//62Q\"\r\ncf-ray: 9845637d6fd1568b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":428,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (427)","md5":"3781af49baff57a0b1ac0d2614601ae3","sha1":"ce014e747135a4d62c99b129398020ae6fffeb64","sha256":"fec80d4c2ec342c06934d1cebfffbdb6855e0cf2d4989138a63ab3b636ab7dd8","sha512":"8e10e7430d0137cc5061742ed4ca0eeea4b94ae25cf52439daa6dd50d50998222235d996a716e2ec17d50427fd2e1a45609eb55f8efefefe59fd847c6585dcf7","ssdeep":"","tlshash":"4ae0ab0d9de2e5b079f0cc484b612a3223263ac77315ad98974d1e203340a06e71fb2e","first_seen":"2025-09-02T07:32:52.758345Z","last_seen":"2025-12-01T03:49:38.341634Z","times_seen":48,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/mount-component-6f8c2862.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.961Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/mount-component-6f8c2862.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA905A603CD7A0104BEAF1B\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=icV0fuVYEnbZaKM1zYdBCP5FrKckiEzZzxjo51DTy7aImaq0drLomP8M%2BxMcdm2A0OZsNQ7UZmrGmLf%2FMeBYyguCi9H%2F0op6fyhAyyhaf3Z%2Fn2ZqO4oo\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:10 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE10[2],EA-SGP-EDGE7-CACHE2[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE24[876],EA-SGP-GLOBAL1-CACHE4[870,TCP_MISS,873]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 5554ac43136ee9fa432fe6940182e045\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542033\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"b4c73d318e2b1d48fb44e678bc65ff5f\"\r\ncf-ray: 9845638b8a48120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":430,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (429)","md5":"b4c73d318e2b1d48fb44e678bc65ff5f","sha1":"d16d09417d4673c1632537cd13a308f470a4369f","sha256":"fd63e9245bb9a272f5bd9d26706d92ff5eb7d4338906d696f18d101259ea9001","sha512":"88acf2a0e934810d7d347321ddeeabf9958c743128dc5fad1181775b74fd662240cb85d6286fbd0190eeea9fd69c2ed165845433c60f6a5e642dbee01b09ad0b","ssdeep":"","tlshash":"6ee0551dab205330d14500e861b59f6caab2052c745a8941f0dd68a87ab2c8687afe78","first_seen":"2025-09-24T17:02:26.914628Z","last_seen":"2025-09-24T21:31:53.891825Z","times_seen":3,"resource_available":true,"data":null}},"time_used":564,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":564,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-scrollbar-b52e51de.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-scrollbar-b52e51de.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9058003E570A5F2BB2A14\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nc8TmO5k3La%2FsgapKku%2BWOyYYdTndOyGZQ1bzSSEsQWzJpbJlRDCsGcbl4g%2FiiGn92J7YJY23ogPfZyLz7O9sHtvgOHOoYQsFk3TDgdEU%2BgZXrc2bPzt\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE8[7],EA-SGP-EDGE7-CACHE9[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE16[1122],EA-SGP-GLOBAL1-CACHE24[738,TCP_MISS,1121]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 62b0e23970ac6dd50690598e70d61a60\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542034\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"f4e903ac2ea92dd719309e94ff55c02d\"\r\ncf-ray: 9845638c8a5c120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":52319,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (52318)","md5":"f4e903ac2ea92dd719309e94ff55c02d","sha1":"6a6507b8ef7c3e8fc857cf928902ed5eba499772","sha256":"a76e57a0f938796136e22173152eaaca88f0e61e2a461ef3267726beb9ca91a2","sha512":"c33745b90c982acfe4cb6b6c8920200245614bdebe10400afa00a50446f46f711ab3229d9054547dd4b258fc4b6448cc7dfe589abc35f2c550dc9560f7a42480","ssdeep":"1536:nDed3s12vqDXTTq+Y0GKs/8uL3FetiN5F9rswZRdIndiJbZ7W:aS/dsLrZxVROne0","tlshash":"0a330c983194b1b147ff8aeb603b0105b1361714e10ee5e0f16bddac35b5e64626bb3e","first_seen":"2025-09-24T17:02:26.901374Z","last_seen":"2025-09-24T21:31:53.906737Z","times_seen":3,"resource_available":true,"data":null}},"time_used":777,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":399,"receive":378,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"purecloudqc.com/_nuxt/Bkg_ohyQ.js","fqdn":"purecloudqc.com","domain":"purecloudqc.com","tld":"com"},"ip":{"addr":"104.21.0.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://purecloudqc.com/","date":"2025-09-24T21:31:25.693Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"purecloudqc.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Sep 2025 14:19:26 GMT","end":"Fri, 05 Dec 2025 15:17:56 GMT"},"fingerprint":{"sha1":"83:1C:D5:6F:5C:CB:77:83:DC:06:1D:92:F6:BF:41:B0:34:30:DC:81","sha256":"90:4C:C9:14:0F:C7:21:B3:B0:18:94:2E:45:19:E4:02:A4:B3:30:59:09:19:81:76:BC:0A:B7:A0:91:4D:1B:53"}}},"request":{"raw":"GET /_nuxt/Bkg_ohyQ.js HTTP/1.1\r\nHost: purecloudqc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://purecloudqc.com/_nuxt/X3BV-MzC.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:25 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lhXzdM5C1jHiKh1JXJ5I1Ob4H6C5S6nBQPfT%2BTTjag%2F%2FXi%2Fv76fEIwDMP%2FwoQKhQSfbl04mYaqSADvtwj9eKTJaUFS%2FQfUNXPDyxqFg%3D\"}]}\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 28 Aug 2025 07:44:10 GMT\r\nserver: cloudflare\r\nage: 0\r\ncf-cache-status: HIT\r\netag: W/\"4e4-XCDispe4Sc+YDud23b8A31bWeyo\"\r\ncf-ray: 9845637d8fd3568b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1252,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1251)","md5":"5ed85994920b4d9c8c497699ccd260d1","sha1":"5c20e2b297b849cf980ee776ddbf00df56d67b2a","sha256":"39ba8f92d3c0fb9eaa68f64109580e13bdd5e0870a41572e14568384d25cfe3f","sha512":"753eab8cb090d2167de5ad25037c9da37e171c31418926a21de964152ee6d6b6f409d4419f122bbf009c91018a48646801703433631cdf50bfbac3a7d3cac9bc","ssdeep":"","tlshash":"d221325f50b9649ab3d31120857b4248e072de752868c058f01886ea7fa4b1eaa27f6c","first_seen":"2025-08-29T10:46:28.989275Z","last_seen":"2025-12-27T22:36:58.498928Z","times_seen":202,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-overlay-b5e4bce3.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-overlay-b5e4bce3.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF6303CAD8CE8C0B0DC6\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=z20UYrwkiTJECDSW11KQsxH5%2Byve7Q8jvmnU8OBXQcfCtpnpWTU1%2BePvBY4P8sF0sU8im5OJgzn5I4TjTw2cNRsykzPmPXhv60a5XwG9iapwONW7SbC8\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE1[4],EU-FRA-marseille-EDGE1-CACHE2[0,TCP_HIT,3],EU-FRA-paris-GLOBAL1-CACHE3[4],EU-FRA-paris-GLOBAL1-CACHE12[0,TCP_HIT,4]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 676a33a808d2c07a55cfc0e606e0086f\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"8e3d075add1d46ad07067ade2732c672\"\r\ncf-ray: 9845638b7a3d120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13340,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (13339)","md5":"8e3d075add1d46ad07067ade2732c672","sha1":"562e840508a00be69b54d7424a4ed0ee87f0858a","sha256":"d45a75d5da1b5fca300b497488bdc0e93cdab59c7159d906cb3d993399858e29","sha512":"beeaeee2ca8290c5e523df280ef1dd35ffeee29b4547d0fb5279e0e13cc8b71c4756576cdc577c8d5d0ad68b66da8e67d262bcd58f66b055ccbf004a8ee136c5","ssdeep":"384:kObai5ZibCoa5WfOUsLEP/LQya+BS9PQGWapeSXXWL4SokkJkZrIeWKD71X:kObai5Q+oa5WfOUswnLLNBO/Wape6WLp","tlshash":"74524b90f15edb32c5df0d4eb02e45057a240b88e605a8d0b0bfce3913eed94b265b6a","first_seen":"2025-09-24T17:02:26.971824Z","last_seen":"2025-09-24T21:31:53.900438Z","times_seen":3,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/usePageSetting-d39e1663.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/usePageSetting-d39e1663.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF8E03A628852682168A\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5BuGd4dm9ZGTBosYGiZlASGQJdncYVT7nQvY2ejJ2FJ9FdD4XS8mj0%2FDzsQa5vDBsigKLyEAFfMrElvsDVmeO2fGL1h4gGmXYh9GP68TTKM4vpWcqko6\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:12 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE3[4],EU-FRA-marseille-EDGE1-CACHE4[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE25[4],EU-FRA-paris-GLOBAL1-CACHE14[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 1695610672a4790a285d342606b085c2\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"e4da2bcac29140148ae6d23df6864703\"\r\ncf-ray: 9845638c9a5f120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":115786,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"e4da2bcac29140148ae6d23df6864703","sha1":"548c4eaeee862a9d712c4bae7303c6316340199f","sha256":"de8f1c0e0671f03cdd4a7de392e041da14858432ff0eee7bd8269c6bffedec3f","sha512":"7234937abaceb1f5f18222236fd0fe3a7372243d6e0ebedaff35eff748580394eb7a1dffad9a3b846f5137de2aed28ba30086429ff58ef79a92e84e5be0002a4","ssdeep":"1536:bzzlvAQ1WsduLfctGm4g2NVKQgs4n+ImJqU50JPvX4BWa8SIvTd4EvGfHf30SK8I:fzlnL9tKgEKKJIn3HX9a8SIJ4qAp6","tlshash":"7db39eb47114bca652d7748090098401fe4c5f9be2ecfaacf6bdcd403ae8895265bf79","first_seen":"2025-09-24T17:02:26.906564Z","last_seen":"2025-09-24T21:31:53.907873Z","times_seen":3,"resource_available":true,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-avatar-55e4ee6e.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-avatar-55e4ee6e.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9037703A6255A225B30A1\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WUXMgd%2BXm8WZsPzcyb7NnGh9BVgpMOC3MlHHZl0lNrSjiKK7RG3xAFFCz7Pm3SN6vKAeqDYmHZ6PIKrbmWCPvcZMuGmNM3WWYSKlmds%2BRKP%2BAXaAf644\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2545285\r\nvia: EA-IDN-kabbekasi-EDGE4-CACHE25[23],EA-IDN-kabbekasi-EDGE4-CACHE4[0,TCP_HIT,19],EA-SGP-GLOBAL1-CACHE3[4],EA-SGP-GLOBAL1-CACHE6[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 6b4119c83f5da2920255e7e95b4e020e\r\nnginx-hit: 1\r\nage: 1967\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"dbb484f87ebbb2cfa5ef8ebaea132aaf\"\r\ncf-ray: 9845638b4a34120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":854,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (853)","md5":"dbb484f87ebbb2cfa5ef8ebaea132aaf","sha1":"3aa40c0b88519eeab43a8ffe6079b0bb13cd3134","sha256":"55e4ee6ed0ff4492d0a7e832fa3093197794a485876edaa3a26841b6c747edd2","sha512":"69b4a6e876869e7daaa493ab87b2e601b01986bbea9b3da8b539446f5b409028f68eefbb19a76d4bf795daac9add5e283104f6679a22c638526385745bb801fe","ssdeep":"","tlshash":"1901a5aaef754031fa21943cde44fbd41440d9c1db156674ee80ac14a4d69f735d3e38","first_seen":"2024-11-18T23:20:55.791733Z","last_seen":"2026-05-17T03:06:15.854112Z","times_seen":565,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?l=dataLayer\u0026id=G-1RPGBCH5CQ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:29.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Sep 2025 08:34:53 GMT","end":"Mon, 01 Dec 2025 08:34:52 GMT"},"fingerprint":{"sha1":"DF:7E:8A:F9:1C:B5:DC:9E:90:E3:71:A7:92:85:2C:8F:2B:B4:42:8E","sha256":"3A:65:11:10:B9:58:2F:E1:BF:38:98:8D:2E:3E:A2:01:9D:C6:BE:69:5B:AD:F7:99:53:F9:AB:A6:6B:82:47:F1"}}},"request":{"raw":"GET /gtag/js?l=dataLayer\u0026id=G-1RPGBCH5CQ HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Wed, 24 Sep 2025 21:31:29 GMT\r\nexpires: Wed, 24 Sep 2025 21:31:29 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 142319\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":432736,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (8032)","md5":"7e1d1461b309eb6d701084cf4ad8581e","sha1":"127845909cf603805809b81b5991306e356ea091","sha256":"27c72b601c3ab20972a56416f66077622d369d7d0bbea85397d059c1f9481f1e","sha512":"1278fb8ade0dfefa2e48937bdeaeaa3b0c2eb382566e77ae6ce821c547226ac8364a2304ba1ca8deb0f3b3d6d07ef72e8b5cf0497ac066f9d7f5b3f9955c9e00","ssdeep":"6144:RB2pmM2/RYMbwqkppCALUJ1lvyVcubCn3XPk:f0mLLwvdLil8","tlshash":"d3940ace73c674265396e478906f018ba5bb28e2f45cc89af189cce42d7499a4137f7c","first_seen":"2025-09-24T21:31:51.701656Z","last_seen":"2025-09-24T21:31:53.909005Z","times_seen":2,"resource_available":true,"data":null}},"time_used":157,"timings":{"blocked":49,"dns":0,"connect":8,"send":0,"wait":28,"receive":25,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.qckenacio.to/v1/h5_open_data","fqdn":"api.qckenacio.to","domain":"qckenacio.to","tld":"to"},"ip":{"addr":"47.88.107.85","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:30.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.qckenacio.to","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Thu, 15 May 2025 00:00:00 GMT","end":"Thu, 14 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7E:99:CB:89:89:0C:FC:FA:2F:77:AC:EC:B8:9F:E3:9C:87:97:37:06","sha256":"59:EC:FD:C3:A2:A6:AB:CE:61:D6:50:6E:9B:B8:D8:9B:68:5A:8B:A7:D4:EA:36:BD:CE:34:5E:3F:85:53:D3:0A"}}},"request":{"raw":"POST /v1/h5_open_data HTTP/1.1\r\nHost: api.qckenacio.to\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 84\r\nOrigin: https://www.uhzr96gdzmxav4u.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:30 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.uhzr96gdzmxav4u.com\r\naccess-control-allow-credentials: true\r\nx-xbox-platform: quickearn\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":78,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"fb68109af1087d16687a05590d37ddc0","sha1":"8b0f3ddcf9c0905564c644ea0c0ef42ad16acdcc","sha256":"5c19a1e0ef3b6dad65b8baddc8f8188606bb0f9b7259fb2e2c0d46163d658908","sha512":"5c3854c0c6f4e01b06c28843909ecc1eee17f436768c089d658a2c5cfb964abf124417edde825e75d8a98788f4e31a47a7e492a815ed66da7e8d8e4212f5d495","ssdeep":"","tlshash":"89a01215086059225c50811f4003131109c04286c2820184f5e82a1cca083d60000160","first_seen":"2025-09-21T13:03:45.336178Z","last_seen":"2026-03-28T19:05:41.494371Z","times_seen":38,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/base-b6e288d4.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/base-b6e288d4.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF5F03AC18F575BEEFF3\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=u%2FFIQnNLy2cgbZ01F5NPxODJ7PGm%2FgF0cLNZGD7AdffH5PVRH2WnRN4gbow0FqYBrqfUJg893k4casBSDN1C5U60XCmxdEOaAl50UUhBziyX8r%2Frw02U\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2571825\r\nvia: EU-FRA-marseille-EDGE1-CACHE4[3],EU-FRA-marseille-EDGE1-CACHE1[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE18[7],EU-FRA-paris-GLOBAL1-CACHE11[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 0880ea0713938d57296ed1806de892c0\r\nnginx-hit: 1\r\nage: 29688\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"e6cc77527df0285af7e5804dcf7de387\"\r\ncf-ray: 9845638b3a31120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7949,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (7940)","md5":"e6cc77527df0285af7e5804dcf7de387","sha1":"d01ff892a5d53f0a5b60f451f7d1bbd080513b06","sha256":"b6e288d4d623fe82272d5a39827adbd773b93456d13343515c6595be63e33acf","sha512":"23c1b71ab1f9dce878da1d620d87929126c2c37a354b8e1741ac392658f3f3a39e17e7cf9400cbc905734dda8d0e241e4b5805705020e343bfc29151756f8420","ssdeep":"192:3FGGPN0VbXbTGTQ+4LTSiWFuL8l898hh0rUGEJ8jGdGn+MkQwP25oXeqJj:3FGfnTGs+4LTSiWwoM2j","tlshash":"2ef1ed0dff02153358234aad2ac6dd359b79dee2df161a8af645620271866a602c3f73","first_seen":"2024-08-20T02:30:34.084969Z","last_seen":"2026-05-17T03:06:15.876349Z","times_seen":573,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/deepLink-915a6e78.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.929Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/deepLink-915a6e78.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA903AB03E848CC716A17CB\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ohNsOr%2F5lj3rYUnhmenm4Ul78OwhC3mLdUyn1qnpHf1gnO91ZFW0qWbS4Zmjv%2FL4UD4oP6aWrYABhPmlYlpCs%2Bw0n6apCMa8UzEuv8ajrILuOeSxl3Ir\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE2[3],EA-SGP-EDGE7-CACHE9[0,TCP_HIT,1],EA-SGP-GLOBAL1-CACHE3[385],EA-SGP-GLOBAL1-CACHE21[358,TCP_MISS,384]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 3a39c7826819191f7100ff484cf8af5c\r\nnginx-hit: 1\r\nage: 29687\r\nx-ccdn-expires: 2571722\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"00e52a10485914219ea9bfe8eea209aa\"\r\ncf-ray: 9845638b6a36120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12355,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (12354)","md5":"00e52a10485914219ea9bfe8eea209aa","sha1":"ca40311ca77750a2edb85534cffbb9e2d2fda28b","sha256":"915a6e786b4d0626f7ad1f54351548676c8d2d13d4cefd684ec257881283351d","sha512":"2767fac3c90966ec590ef5825ca817f585d3182b856d8e8f9f7098e5ccbb4565b3ca90c560396c814f7897fafeca35e4784e52ba353d213a714d57169ee85a91","ssdeep":"384:o13E813v906td4y13LrTgs13h37Jd13OL13s:4EUv906j4CLr7d1Ws","tlshash":"674275691e1621297c37e6b6be71958dc341f485cf9e961ce2037b28dadb3532cb1388","first_seen":"2025-09-24T17:02:26.96222Z","last_seen":"2026-05-17T03:06:15.848286Z","times_seen":318,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-input-f5b10bf5.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-input-f5b10bf5.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8ABCF03A7B972FD45FBC5\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bcjNcswuWGEa%2FfQsY%2FkbNtaUS90vtg1B%2BimVg%2FTsUFGwGAC%2FCQwUyIGy2gGOY162hmPk3nu5s5VgWGdUs2BQ0mGhv4F0rQznGwgAF2gWry4Kf8zt9TIs\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2571721\r\nvia: EA-SGP-EDGE7-CACHE9[2],EA-SGP-EDGE7-CACHE6[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE6[16],EA-SGP-GLOBAL1-CACHE15[0,TCP_HIT,15]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 10143f8f4e76103f0dd03866155121dd\r\nnginx-hit: 1\r\nage: 29687\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"7c85a17c412e85f170f0f034939db957\"\r\ncf-ray: 9845638b7a39120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12437,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (12436)","md5":"7c85a17c412e85f170f0f034939db957","sha1":"2cfe5d4a5e90957974b57b64b99826567907c428","sha256":"f5b10bf56f47a914a1ea60fc802a99d74aec7adf5f33a344cdee7b18e2eee228","sha512":"750d4ee7579f2db2bf498d8d54e5673c2d63b6482eb69cf77c9cd5e8647b2a924e7155850e61539471a9cdbb95f247a84392f6edf6fbed46f30f077a00f76105","ssdeep":"96:jk2zvwlR2JRuYna5q1bQHqbQcooYV2zj+VWoa3UjjWNoBjQ9LJRSFwPDyd2KoD+E:I2zI+0J2zmWtNhZi2eYi3+iHzZS","tlshash":"0f4277b9e3d2a13b2c439f7c5ac8db795a09db12cd018240f694910cd0e9aa257ffd78","first_seen":"2023-08-14T19:07:38Z","last_seen":"2026-05-17T03:06:15.855483Z","times_seen":669,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/AndroidHome-953d7393.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/index-4469ee0a.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF5E03A7B919EC4C37A6\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5Gi9oQxap7le4n36hMjNgfPvGcpD98e2acacN64SeC819Tqc%2F%2BUbpiQvPVArG7Lf2D2%2B8z0ZNYvyPuSZwRDVhzNE42vMKLXgLeZ7xyzlaN5z0KiFlfqS\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:05 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE2[3],EU-FRA-marseille-EDGE1-CACHE4[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE5[5],EU-FRA-paris-GLOBAL1-CACHE23[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 61b441c57a027c4865b1ab352c861076\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"44390bd5daed64f21cdabfb1c422100f\"\r\ncf-ray: 9845638bea4f120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40842,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Unicode text, UTF-8 text, with very long lines (40837)","md5":"44390bd5daed64f21cdabfb1c422100f","sha1":"4ad2def20399a790d6773fec26e5bf734d0c9261","sha256":"75580314d3213a2eaf99d1c67fbe3ef5aa54397e4b99fed401d22a1c810347f8","sha512":"fee89e2154084d9bf1de6894ffec36fa84aa740968b0c9a6ba8169f9255d4cef54e11c04dcd985c549a605c4b2f2c9ef2264e49670244723acd3bc266407c4fd","ssdeep":"768:0+eHUFM0YrmIsUdaDqZRHFBlaPlbjgF3hiMnFiMnFsIs/KMepgnNxgHrZ:20Yr7rdaW3hPxs/G0qd","tlshash":"6f035c25f050a97af5b76048b4284150798c1f9bc250cda5f2fd8b2277e5ce287ebb39","first_seen":"2025-09-24T17:02:26.898101Z","last_seen":"2025-09-24T21:31:53.896845Z","times_seen":3,"resource_available":true,"data":null}},"time_used":86,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":60,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/usePageSetting-4352afb8.css","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.920Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/usePageSetting-4352afb8.css HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8D05D03AB91667834A3F8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=a6NkuCjHx5NFfj700Tb%2BZdBu6HD6bWKIzDqIrvs4Sg1oGM9axLgJ%2FXD89GACeYb3%2BuQv6HCBTcPM63trM1wdyaSi5Jk8UgJo5qExKj7l3IvikFev0vhS\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:12 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2571825\r\nvia: EU-FRA-marseille-EDGE1-CACHE4[20],EU-FRA-marseille-EDGE1-CACHE3[0,TCP_HIT,17],EU-FRA-paris-GLOBAL1-CACHE19[4],EU-FRA-paris-GLOBAL1-CACHE8[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 22e51baf01679f6a53f1ab1b66478697\r\nnginx-hit: 1\r\nage: 29688\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"93482a584be9a5e23449b67e40ed94f1\"\r\ncf-ray: 9845638b5a35120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7452,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (7451)","md5":"93482a584be9a5e23449b67e40ed94f1","sha1":"e398fec99dab28aae93e4e19e1174ecea8786e6c","sha256":"4352afb8ac2f1b64f21252c07ea3d1118be3745571aed05bfdcc9bd776a1d0ff","sha512":"e7ec574e8a47dd3974b6bbbd4c9aafea8ae40e3d475c37b99605eb77e53ed56bd9c99b146ee5dc51326d814c1982f654f4ea711fe35ee1539624f945c0a67400","ssdeep":"96:hvirMzoUEAr1GJu12u2rctDT5zpPPRze2XcBxNT0:Jz9GJuEu2UT5zt5e2XcB4","tlshash":"0ff1c628a31b603b6c3be57c3d55c6ecca49ff42e742c744f941611840c7ae3a2f5aa4","first_seen":"2025-09-24T17:02:26.969208Z","last_seen":"2026-05-17T03:06:15.856661Z","times_seen":318,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-avatar-90eada9d.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.949Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-avatar-90eada9d.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8D02D03E9B3DFE8FA7900\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6%2BqCVF2fUYprSLeItmerjgfzGZoHlSnemnue3FRyQhlXoXbCYGmCaZL4hSr%2BX6chZEi7iG4UpSWLXnNSVPeqmSbHnwPn72p0vdvq3WiSqZhfuAnUGQaq\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE4[4],EU-FRA-marseille-EDGE1-CACHE3[0,TCP_HIT,3],EU-FRA-paris-GLOBAL1-CACHE3[3],EU-FRA-paris-GLOBAL1-CACHE11[0,TCP_HIT,1]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 4e866d2e4bb6c88f70c37b325cd78ba7\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"eb69db01fe759fa00d3082b89a230c2a\"\r\ncf-ray: 9845638b7a3e120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1342,"size_decoded":0,"mime_type":"application/x-javascript","magic":"Java source, ASCII text, with very long lines (1341)","md5":"eb69db01fe759fa00d3082b89a230c2a","sha1":"6fb0b3227f2801c21fa443e519356fd8af19ff85","sha256":"0aaab7ecec4cdba194269816fe9704bbd16e6456878c260d3ee7a79f0122bdba","sha512":"51e5275347789de20f2f4f04fa269f07be1d4f6a64b8fdf7c1be04c4f62796ff7c6373b91adbf46a37033b7f67d088e754194e5714e0dc7b607503f44d20121b","ssdeep":"","tlshash":"2a21b72d389ddb320cd62cc440255a41e3291a6cde36b8e0d1bfc5b403b247a750db08","first_seen":"2025-09-24T17:02:26.964212Z","last_seen":"2025-09-24T21:31:53.893643Z","times_seen":3,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/Footer-db7f551b.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.121Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/Footer-db7f551b.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9059C03A545F269A7ADF5\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7dnsFF5f7XSwubo87tHbnDcmm59K6g7AR%2BHX3sNUI00BleDnXUDHlrjRhDF1I2eDHMUxOD9Ym%2FENeJAf%2BiG4GG9WxVRj8p8r2dmFVCB2rZbQhf6kRsfS\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:05 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE16[3],EA-SGP-EDGE7-CACHE10[0,TCP_HIT,1],EA-SGP-GLOBAL1-CACHE19[1064],EA-SGP-GLOBAL1-CACHE20[697,TCP_MISS,1062]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 79aa583b6edd3ac5768f24327a66b9ac\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542034\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"4140c30d55e912694a2fb28d60a2901c\"\r\ncf-ray: 9845638c9a61120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36358,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (36355)","md5":"4140c30d55e912694a2fb28d60a2901c","sha1":"ab5dff790d9ffb965eb3fd4118a413e5139404de","sha256":"e244f34e638124cbdd374fee523437e6ffdd89f3b81589d10b9eae76ff792eeb","sha512":"cdf9c18bac66c33aa956312589a9258ed93d9c152b21ffb0dab1a3a12ef77471175119f948875f69ce49b02c5bf5d5f2557b209473a99ada19de48dafe211bcc","ssdeep":"768:54Y09WF65nDlOWOjEb9QnJOhHeqL3SNL2bpKpNXMdu4cGSlcBBbe:5FkDmEbSMHeqO/","tlshash":"3bf219947099b5b557df88a921070801e32b2a6e542d84f0f4bbc8f439fda14937bf79","first_seen":"2025-09-24T17:02:26.953273Z","last_seen":"2025-09-24T21:31:53.885666Z","times_seen":3,"resource_available":true,"data":null}},"time_used":643,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":392,"receive":251,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/el-scrollbar-b52e51de.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/el-scrollbar-b52e51de.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9058003E570A5F2BB2A14\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Nu7TBntizRXn27gXQitSfA3oDvqFt6Nef%2FlOofx2cM%2Fq9rEXzT%2F1SdqrvJy%2F4YJd%2B2esCwb5ABxBwr4HA8daeGtf%2FYK1C4Kj%2FcOnVzMpNP86PSCcl59O\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE8[7],EA-SGP-EDGE7-CACHE9[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE16[1122],EA-SGP-GLOBAL1-CACHE24[738,TCP_MISS,1121]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 62b0e23970ac6dd50690598e70d61a60\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542034\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"f4e903ac2ea92dd719309e94ff55c02d\"\r\ncf-ray: 9845638b7a3c120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":52319,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (52318)","md5":"f4e903ac2ea92dd719309e94ff55c02d","sha1":"6a6507b8ef7c3e8fc857cf928902ed5eba499772","sha256":"a76e57a0f938796136e22173152eaaca88f0e61e2a461ef3267726beb9ca91a2","sha512":"c33745b90c982acfe4cb6b6c8920200245614bdebe10400afa00a50446f46f711ab3229d9054547dd4b258fc4b6448cc7dfe589abc35f2c550dc9560f7a42480","ssdeep":"1536:nDed3s12vqDXTTq+Y0GKs/8uL3FetiN5F9rswZRdIndiJbZ7W:aS/dsLrZxVROne0","tlshash":"0a330c983194b1b147ff8aeb603b0105b1361714e10ee5e0f16bddac35b5e64626bb3e","first_seen":"2025-09-24T17:02:26.901374Z","last_seen":"2025-09-24T21:31:53.906737Z","times_seen":3,"resource_available":true,"data":null}},"time_used":946,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":569,"receive":377,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/usePageSetting-d39e1663.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:27.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/usePageSetting-d39e1663.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.uhzr96gdzmxav4u.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA8CF8E03A628852682168A\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fpL%2BzThfnZBWHR9E93rchgLiutA8UEcPdhRLZCUg02NjzpW%2BDgT4b6p485%2BUZ5Oq%2FlUxv5Sg97OjryVQ5hYtO5Fib%2F9lgJUynSWbiDjCVCzHk7JATohl\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:12 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2542137\r\nvia: EU-FRA-marseille-EDGE1-CACHE3[4],EU-FRA-marseille-EDGE1-CACHE4[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE25[4],EU-FRA-paris-GLOBAL1-CACHE14[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 1695610672a4790a285d342606b085c2\r\nnginx-hit: 1\r\nage: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"e4da2bcac29140148ae6d23df6864703\"\r\ncf-ray: 9845638b7a3f120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":115786,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"e4da2bcac29140148ae6d23df6864703","sha1":"548c4eaeee862a9d712c4bae7303c6316340199f","sha256":"de8f1c0e0671f03cdd4a7de392e041da14858432ff0eee7bd8269c6bffedec3f","sha512":"7234937abaceb1f5f18222236fd0fe3a7372243d6e0ebedaff35eff748580394eb7a1dffad9a3b846f5137de2aed28ba30086429ff58ef79a92e84e5be0002a4","ssdeep":"1536:bzzlvAQ1WsduLfctGm4g2NVKQgs4n+ImJqU50JPvX4BWa8SIvTd4EvGfHf30SK8I:fzlnL9tKgEKKJIn3HX9a8SIJ4qAp6","tlshash":"7db39eb47114bca652d7748090098401fe4c5f9be2ecfaacf6bdcd403ae8895265bf79","first_seen":"2025-09-24T17:02:26.906564Z","last_seen":"2025-09-24T21:31:53.907873Z","times_seen":3,"resource_available":true,"data":null}},"time_used":233,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":133,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.uhzr96gdzmxav4u.com/assets/deepLink-8aeabd87.js","fqdn":"www.uhzr96gdzmxav4u.com","domain":"uhzr96gdzmxav4u.com","tld":"com"},"ip":{"addr":"172.67.128.248","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.uhzr96gdzmxav4u.com/#/?linkId=","date":"2025-09-24T21:31:28.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uhzr96gdzmxav4u.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 03:08:48 GMT","end":"Wed, 26 Nov 2025 04:06:21 GMT"},"fingerprint":{"sha1":"6D:C1:35:BA:51:2D:42:90:E9:D6:7B:CD:31:49:DC:43:30:70:12:71","sha256":"9D:22:85:8E:EF:C9:31:CB:13:80:15:3C:C7:E3:FC:79:22:53:02:1F:AF:DC:05:11:53:0A:39:50:6E:E6:F5:37"}}},"request":{"raw":"GET /assets/deepLink-8aeabd87.js HTTP/1.1\r\nHost: www.uhzr96gdzmxav4u.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.uhzr96gdzmxav4u.com/assets/AndroidHome-953d7393.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 24 Sep 2025 21:31:28 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 000001997AA9056503AD31DCFF2B6A36\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vh89XQ3XhB%2FFb1eHoWUQFvy5KH9TEKt4PgcDB04dsXwwLen8KzlRBKR%2FF0s0AjX1ZGhkU1GdrZ40XKCHN8Oa%2BemCu2Hn2dseerH4klCz%2FIUF2wO3JYEP\"}]}\r\nlast-modified: Wed, 24 Sep 2025 07:35:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EA-SGP-EDGE7-CACHE4[4],EA-SGP-EDGE7-CACHE6[0,TCP_HIT,2],EA-SGP-GLOBAL1-CACHE6[1067],EA-SGP-GLOBAL1-CACHE20[700,TCP_MISS,1067]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 1f7f9562503d290f4c7a2c3434973002\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2542034\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"e9864bb2528487370e12e842161eeaae\"\r\ncf-ray: 9845638c9a60120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36924,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (36923)","md5":"e9864bb2528487370e12e842161eeaae","sha1":"192d9e4eb4e22a1c9a8405df111f2b203485a151","sha256":"41646e93b6566cdb8ec0e1403806810e7d55db403146fa21bb50766997766b90","sha512":"45071192836737ee46c4c1c6fbbce577b4a9331fa40cf07a3f2f7374f691b9f4066fcd11fc9342085ce9d8143075ab2dcb6bc072cc9206f821572727ba50ff4b","ssdeep":"768:1SaywWoRWpK9FZgj+dur/WgGxrfKFYBaxtAauo51lfaNi/adaU7avsFf38:waNdFuSZxrMOaxSauO1lfaNi/adaaavD","tlshash":"09f25b33b90aa46eb7634880605145413d182fdbeb64c4fef1be4e32639dca0d7e6768","first_seen":"2025-09-24T17:02:26.88496Z","last_seen":"2025-09-24T21:31:53.899841Z","times_seen":3,"resource_available":true,"data":null}},"time_used":657,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":392,"receive":265,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-24","alert":"Sinkholed","trigger":"www.uhzr96gdzmxav4u.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}