{"report_id":"6bb00b84-b525-4b9c-9322-adcd35754f9f","version":6,"status":"done","tags":[],"date":"2026-05-10T17:20:43Z","url":{"schema":"https","addr":"verify-auth30-cookies.info/","fqdn":"verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"172.67.179.24","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"verify-auth30-cookies.info/","fqdn":"verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"title":"Microsoft Security - Verify Your Identity","dom":{"size":34882,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1337)","md5":"fa3c9ec020f9d5dc30f07a14496dfffd","sha1":"355e42fc7d30509583a075a5a5e18979cb908e07","sha256":"9ac101baf488c3b1502470428a59d73f5af724be4a17cee65490adffe1a63e87","sha512":"e1e756719fa4ff97b94c0f4b059ee89f8bff05a7822a6b118edb6da8a828833d948ee4649d60e2c2144036711c6b476ff950b49810752f00322092abedde2d20","ssdeep":"384:k4cYdSbImblxmHluBrGaUyqyqvOOcY2R+knRM2Y2Z1FuV0Xibk+k6jDOf9:k4cwSbImblxmHYCmyp3W9","tlshash":"60f2a55a35b710125ba7617aabef23493232910b2806dd543e9d5340dfc2f54eba3bec","dom_hash":"domhash1ef6abe616d6002f05a46c80d59b553a","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"verify-auth30-cookies.info/","fqdn":"verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"172.67.179.24","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-14T17:20:43Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"verify-auth30-cookies.info","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":2,"request_count":1,"received_data":36026,"sent_data":495,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.brandfetch.io","ip":{"addr":"52.84.50.78","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2019-04-17","domain_rank":443360,"first_seen":"2024-11-15T13:00:59Z","last_seen":"2026-05-04T10:00:08.787362Z","alert_count":0,"request_count":1,"received_data":1159,"sent_data":494,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"panel.verify-auth30-cookies.info","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":12,"request_count":6,"received_data":10798,"sent_data":3262,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"verify-auth30-cookies.info/","fqdn":"verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e2b497ac439203e3d246bdba561db3a1","sha1":"9b3d525d38dce72a6a59867f8bf048a0b1b1e3a7","sha256":"484ed9cf33940bf46a7f7b1d9af459eed7230247019950363cae487c9cf16ef7","sha512":"dcdb774f2f81e9a4aa79434774f2ba46e272a28899bda16a1b926c94e7e7f21cd4da0e36a1bcb8a6e73b023dc836b08f5636f1768c298c0a9f794fe70ce22e01","ssdeep":"384:4uBrGaUyqyqvOOcY2R+knRM2Y2Z1FuV0Xibk+k6jDOh:PCmyp3w","tlshash":"56922f5a31bb11124be7617b9b9b23983136510b3d0adc843e5d43409fd2e21eba3bec","size":20000,"data":"","first_seen":"2026-05-10T17:20:50.035244Z","last_seen":"2026-05-10T17:20:50.035244Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"verify-auth30-cookies.info/","fqdn":"verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"232c805330390a8f20ff72b92ef9e047","sha1":"6bd652c191bd563cab7b6d189669ba8aa286f9d7","sha256":"be1c072a19ef30ebf003e8a96457c177e6857fe5015d491c96860f8473cee4ed","sha512":"0d0ad168983afe866d952d957058e71d1a4183a61d07dfbf7b1f80d8947faca9935d87acebd2f3f7e8912a889b2ca1541a2c1b1a3c315b563f0afeb770e51c2e","ssdeep":"","tlshash":"2c61e15e29b33069117260b75a272104a33395573c95bca5b6dd02002f9da2fb373be8","size":3463,"data":"","first_seen":"2026-05-10T17:20:50.036613Z","last_seen":"2026-05-10T17:20:50.036613Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cdn.brandfetch.io/idchmboHEZ/theme/dark/symbol.svg?c=1dxbfHSJFAPEGdCLU4o5B","fqdn":"cdn.brandfetch.io","domain":"brandfetch.io","tld":"io"},"ip":{"addr":"52.84.50.78","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://verify-auth30-cookies.info/","date":"2026-05-10T17:20:22.995Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.brandfetch.io","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Thu, 23 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"16:F2:DF:8B:7B:F2:05:42:93:2B:E8:AE:7D:92:38:A0:B7:BE:2F:D2","sha256":"6A:D1:91:2C:6C:2F:C8:4B:62:FF:BD:D2:92:2D:DF:99:02:68:AE:40:2E:C5:DC:C4:37:AF:12:BE:BB:16:DD:3A"}}},"request":{"raw":"GET /idchmboHEZ/theme/dark/symbol.svg?c=1dxbfHSJFAPEGdCLU4o5B HTTP/1.1\r\nHost: cdn.brandfetch.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verify-auth30-cookies.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: CloudFront\r\ncontent-type: image/svg+xml\r\ncontent-length: 462\r\ndate: Tue, 28 Apr 2026 18:40:42 GMT\r\napigw-requestid: cizOwi21IAMEZSg=\r\netag: \"268-3nUlBeE4OuqAPmRBT3EI2/6xy2I\"\r\nlast-modified: Mon, 30 Sep 2024 14:31:13 GMT\r\nreferrer-policy: no-referrer-when-downgrade\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-content-type-options: nosniff\r\ncache-control: public, max-age=86400, immutable\r\nvia: 1.1 d229ccc15dd984a81023d1b57fa0adbc.cloudfront.net (CloudFront)\r\nalt-svc: h3=\":443\"; ma=86400\r\nvary: Origin\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: f1kJEbwUE3XOkcHgBHg9Oq4nj4ToWpyshjuUsOEwOUCa23SMyxV2JA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":462,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"52541b38358bd68de23b0914e92b1052","sha1":"2a064fa943445b57af9ff9f3e079a2659aa80375","sha256":"eb85b7b9918d5587c552b9977f837865c1cf79f01a049a9ef5020c5b224aba2d","sha512":"33b8cc900e8dd99932e4614b4cf56cc32921e649618b05ae3443d58afcf616bcc06272520d25cb7c37ce17c6f2ffca44b2e006e942b7a5569cfa9e0c33064a65","ssdeep":"","tlshash":"bcf0a05cb0492575e10983d06afc3b1bdb1fd0c3248a0dd4fc660860a260cdb0197ed8","first_seen":"2025-05-14T11:51:03.459511Z","last_seen":"2026-05-10T17:20:50.021168Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1020,"timings":{"blocked":504,"dns":62,"connect":1,"send":0,"wait":10,"receive":0,"ssl":440},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"panel.verify-auth30-cookies.info/api/verification/fingerprint","fqdn":"panel.verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://verify-auth30-cookies.info/","date":"2026-05-10T17:20:23.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verify-auth30-cookies.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 16:21:47 GMT","end":"Thu, 06 Aug 2026 16:21:46 GMT"},"fingerprint":{"sha1":"AF:E9:9F:0A:7B:4A:0A:95:9B:A3:36:62:35:49:37:8A:EC:4F:BB:E8","sha256":"78:3E:14:35:A6:32:6B:5A:53:F8:A5:20:E0:64:7A:3F:2A:27:04:AB:B0:38:79:57:D9:80:D9:64:3E:A4:35:C2"}}},"request":{"raw":"OPTIONS /api/verification/fingerprint HTTP/1.1\r\nHost: panel.verify-auth30-cookies.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://verify-auth30-cookies.info/\r\nOrigin: https://verify-auth30-cookies.info\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 May 2026 17:20:24 GMT\r\ncontent-length: 0\r\nserver: cloudflare\r\ncontent-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;script-src-attr 'unsafe-inline';script-src-elem 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline';img-src 'self' data: https://acrobatsign.adobe.com;connect-src 'self';font-src 'self';object-src 'none';media-src 'self';frame-src 'none';base-uri 'self';form-action 'self';frame-ancestors 'self';upgrade-insecure-requests\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\nreferrer-policy: no-referrer\r\nstrict-transport-security: max-age=15552000; includeSubDomains\r\nx-content-type-options: nosniff\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nx-frame-options: SAMEORIGIN\r\nx-permitted-cross-domain-policies: none\r\nx-xss-protection: 0\r\naccess-control-allow-origin: https://verify-auth30-cookies.info\r\nvary: Origin, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-headers: content-type\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zSbUSkyGsjK3VQQIfIkHueU1HHJ%2Fcfs8%2By1AwHMoKkOZ2couKchgZsD2zUOzsftBuc3cnRZF9qYJr8pLs%2F74ra%2FytkJhY1Vf2rN6XQgZjeGE6J1DnEUGCaylfApDyc%2FmE7i%2BAlwMnAGdSGVDXHr8gebn0Q%3D%3D\"}]}\r\ncf-ray: 9f9a9d45b8eca0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-10T21:28:26.225606Z","times_seen":14974356,"resource_available":true,"data":null}},"time_used":303,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":303,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"panel.verify-auth30-cookies.info/api/verification/check?session=45g3y01rg78mp01glvq","fqdn":"panel.verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://verify-auth30-cookies.info/","date":"2026-05-10T17:20:26.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verify-auth30-cookies.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 16:21:47 GMT","end":"Thu, 06 Aug 2026 16:21:46 GMT"},"fingerprint":{"sha1":"AF:E9:9F:0A:7B:4A:0A:95:9B:A3:36:62:35:49:37:8A:EC:4F:BB:E8","sha256":"78:3E:14:35:A6:32:6B:5A:53:F8:A5:20:E0:64:7A:3F:2A:27:04:AB:B0:38:79:57:D9:80:D9:64:3E:A4:35:C2"}}},"request":{"raw":"GET /api/verification/check?session=45g3y01rg78mp01glvq HTTP/1.1\r\nHost: panel.verify-auth30-cookies.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verify-auth30-cookies.info/\r\nOrigin: https://verify-auth30-cookies.info\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 May 2026 17:20:27 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\ncontent-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;script-src-attr 'unsafe-inline';script-src-elem 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline';img-src 'self' data: https://acrobatsign.adobe.com;connect-src 'self';font-src 'self';object-src 'none';media-src 'self';frame-src 'none';base-uri 'self';form-action 'self';frame-ancestors 'self';upgrade-insecure-requests\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\nreferrer-policy: no-referrer\r\nstrict-transport-security: max-age=15552000; includeSubDomains\r\nx-content-type-options: nosniff\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nx-frame-options: SAMEORIGIN\r\nx-permitted-cross-domain-policies: none\r\nx-xss-protection: 0\r\naccess-control-allow-origin: https://verify-auth30-cookies.info\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nratelimit-policy: 100;w=900\r\nratelimit-limit: 100\r\nratelimit-remaining: 98\r\nratelimit-reset: 899\r\netag: W/\"53-sM+Ld5ZwKbqAWsrxH1YDqreiHBM\"\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i4xZ3lJEJF1QacUZLEDuUFtAgO6WoNbDq5ii1Q3EGdqq2wMcN%2BU1gpt8wKNoxEJ9x%2FWWKPQBZKGpOLJBphfl43YoKeBZjoAtI5cIMkxeTTvCGrtRzOYdm%2FODySW13Gcv%2BX8%2FRplC5LwOE6K8ITbOMAi3Uw%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9f9a9d52af22a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":83,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"edb864b9e9dceac362403b1c82a4ba59","sha1":"b0cf8b77967029ba805acaf11f5603aab7a21c13","sha256":"1debcaf354d04a250d25321ce3aebd5037fb7c69408582183dbfdf8cc7a6a332","sha512":"a9c5a43e3aa27da86a57d54d86d3cfc657f0e54d7625501814f87e420efc628ca0bcf4ea9445a8d9afa0e6b93c27312b159535cb822eb60f257687ba77a82c58","ssdeep":"","tlshash":"b1a0240fc3043c7dc34507c3dc10154015dd077145401005f40d110c4f410407573143","first_seen":"2026-05-03T07:39:55.014136Z","last_seen":"2026-05-10T17:20:50.024141Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1466,"timings":{"blocked":11,"dns":0,"connect":0,"send":0,"wait":1455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"panel.verify-auth30-cookies.info/api/verification/check?session=45g3y01rg78mp01glvq","fqdn":"panel.verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://verify-auth30-cookies.info/","date":"2026-05-10T17:20:32.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verify-auth30-cookies.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 16:21:47 GMT","end":"Thu, 06 Aug 2026 16:21:46 GMT"},"fingerprint":{"sha1":"AF:E9:9F:0A:7B:4A:0A:95:9B:A3:36:62:35:49:37:8A:EC:4F:BB:E8","sha256":"78:3E:14:35:A6:32:6B:5A:53:F8:A5:20:E0:64:7A:3F:2A:27:04:AB:B0:38:79:57:D9:80:D9:64:3E:A4:35:C2"}}},"request":{"raw":"GET /api/verification/check?session=45g3y01rg78mp01glvq HTTP/1.1\r\nHost: panel.verify-auth30-cookies.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verify-auth30-cookies.info/\r\nOrigin: https://verify-auth30-cookies.info\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 17:20:33 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\ncontent-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;script-src-attr 'unsafe-inline';script-src-elem 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline';img-src 'self' data: https://acrobatsign.adobe.com;connect-src 'self';font-src 'self';object-src 'none';media-src 'self';frame-src 'none';base-uri 'self';form-action 'self';frame-ancestors 'self';upgrade-insecure-requests\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\nreferrer-policy: no-referrer\r\nstrict-transport-security: max-age=15552000; includeSubDomains\r\nx-content-type-options: nosniff\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nx-frame-options: SAMEORIGIN\r\nx-permitted-cross-domain-policies: none\r\nx-xss-protection: 0\r\naccess-control-allow-origin: https://verify-auth30-cookies.info\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nratelimit-policy: 100;w=900\r\nratelimit-limit: 100\r\nratelimit-remaining: 99\r\nratelimit-reset: 900\r\netag: W/\"53-sM+Ld5ZwKbqAWsrxH1YDqreiHBM\"\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wS3dI5zprEhkF3vN3jWGnLrkoAUUUpNtCnpMcBiRz8AcO6LQRZNcExASpxVvpQSTgsSqAj%2FW2mkkoBinH80pBVJ0NDLDVuWEcwwJAKyOlFDL7R8ciO%2FtXliJy36ZwmKUXyhqXW9sk5GVuVjW0S3Dv%2FO0Qg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9f9a9d7b0980569c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":83,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"edb864b9e9dceac362403b1c82a4ba59","sha1":"b0cf8b77967029ba805acaf11f5603aab7a21c13","sha256":"1debcaf354d04a250d25321ce3aebd5037fb7c69408582183dbfdf8cc7a6a332","sha512":"a9c5a43e3aa27da86a57d54d86d3cfc657f0e54d7625501814f87e420efc628ca0bcf4ea9445a8d9afa0e6b93c27312b159535cb822eb60f257687ba77a82c58","ssdeep":"","tlshash":"b1a0240fc3043c7dc34507c3dc10154015dd077145401005f40d110c4f410407573143","first_seen":"2026-05-03T07:39:55.014136Z","last_seen":"2026-05-10T17:20:50.024141Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1484,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1484,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"panel.verify-auth30-cookies.info/api/verification/check?session=45g3y01rg78mp01glvq","fqdn":"panel.verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://verify-auth30-cookies.info/","date":"2026-05-10T17:20:38.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verify-auth30-cookies.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 16:21:47 GMT","end":"Thu, 06 Aug 2026 16:21:46 GMT"},"fingerprint":{"sha1":"AF:E9:9F:0A:7B:4A:0A:95:9B:A3:36:62:35:49:37:8A:EC:4F:BB:E8","sha256":"78:3E:14:35:A6:32:6B:5A:53:F8:A5:20:E0:64:7A:3F:2A:27:04:AB:B0:38:79:57:D9:80:D9:64:3E:A4:35:C2"}}},"request":{"raw":"GET /api/verification/check?session=45g3y01rg78mp01glvq HTTP/1.1\r\nHost: panel.verify-auth30-cookies.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verify-auth30-cookies.info/\r\nOrigin: https://verify-auth30-cookies.info\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 17:20:40 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\ncontent-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;script-src-attr 'unsafe-inline';script-src-elem 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline';img-src 'self' data: https://acrobatsign.adobe.com;connect-src 'self';font-src 'self';object-src 'none';media-src 'self';frame-src 'none';base-uri 'self';form-action 'self';frame-ancestors 'self';upgrade-insecure-requests\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\nreferrer-policy: no-referrer\r\nstrict-transport-security: max-age=15552000; includeSubDomains\r\nx-content-type-options: nosniff\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nx-frame-options: SAMEORIGIN\r\nx-permitted-cross-domain-policies: none\r\nx-xss-protection: 0\r\naccess-control-allow-origin: https://verify-auth30-cookies.info\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nratelimit-policy: 100;w=900\r\nratelimit-limit: 100\r\nratelimit-remaining: 98\r\nratelimit-reset: 894\r\netag: W/\"53-sM+Ld5ZwKbqAWsrxH1YDqreiHBM\"\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rZUNP9mvTTjQ3juV3QB0him4HyByKW6AEj0LyYFlBlMZuR0hzLuxnN7kcjSu4EI0ffHdCQwBcViJP4EBZktFn2LdVAUn6Z2qX6wF7rrwzfXETT7vB2KxJepNUQoALo8cjuXxZhszcNjMM4OvS%2FLWujEJyQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9f9a9da39d32569c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":83,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"edb864b9e9dceac362403b1c82a4ba59","sha1":"b0cf8b77967029ba805acaf11f5603aab7a21c13","sha256":"1debcaf354d04a250d25321ce3aebd5037fb7c69408582183dbfdf8cc7a6a332","sha512":"a9c5a43e3aa27da86a57d54d86d3cfc657f0e54d7625501814f87e420efc628ca0bcf4ea9445a8d9afa0e6b93c27312b159535cb822eb60f257687ba77a82c58","ssdeep":"","tlshash":"b1a0240fc3043c7dc34507c3dc10154015dd077145401005f40d110c4f410407573143","first_seen":"2026-05-03T07:39:55.014136Z","last_seen":"2026-05-10T17:20:50.024141Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1283,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1283,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"verify-auth30-cookies.info/","fqdn":"verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-10T17:20:22.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verify-auth30-cookies.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 16:21:47 GMT","end":"Thu, 06 Aug 2026 16:21:46 GMT"},"fingerprint":{"sha1":"AF:E9:9F:0A:7B:4A:0A:95:9B:A3:36:62:35:49:37:8A:EC:4F:BB:E8","sha256":"78:3E:14:35:A6:32:6B:5A:53:F8:A5:20:E0:64:7A:3F:2A:27:04:AB:B0:38:79:57:D9:80:D9:64:3E:A4:35:C2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: verify-auth30-cookies.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 May 2026 17:20:22 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Sat, 09 May 2026 21:33:56 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=g71NKdEMe2QABtPcaU402jre%2BRme1LeZ0U49qH94J5uoZHbyT7AKPcBQkHHUuJ4YDjUEDobxSK8tFE63ogK%2B4wUe09Jo7BkIsVxKIQImjdLbWtl1WcKPoJ5Ylz3hyx7pf5APLYN0lpj1jbG6Bw%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9f9a9d3a88bc5688-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":35346,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1891)","md5":"d2af4c9a55e07b53ffd993aa44bfa124","sha1":"0803bda248f4b953c671294fcb6a961b73fd8ec9","sha256":"164ccf0ef13b3510b1e781b08bb18ff8c4bcfda0cdaf668577b2a48280d83f9c","sha512":"93596e52b7c87ab97f371e367c0e8fb06f6c17f374a4b0d5e8f4dc6607058a05a427938940c74420ab888436d8dad3c0fd00336ae59a052bcb3912c69ce94d07","ssdeep":"384:Q4cYbTbImLI/mIluBrGaUyqyqvOOcY2R+knRM2Y2Z1FuV0Xibk+k6jDOfr:Q4cmbImLI/mIYCmyp3Wr","tlshash":"87f2a55a35b720125ba7617aabaf23493231810b2806dd543e9d5340dfc2f54fba3bec","first_seen":"2026-05-10T17:20:50.028681Z","last_seen":"2026-05-10T17:20:50.028681Z","times_seen":1,"resource_available":true,"data":null}},"time_used":435,"timings":{"blocked":65,"dns":50,"connect":1,"send":0,"wait":302,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"panel.verify-auth30-cookies.info/api/verification/init?session=45g3y01rg78mp01glvq\u0026flow=first_party\u0026prompt_profile=default","fqdn":"panel.verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://verify-auth30-cookies.info/","date":"2026-05-10T17:20:22.997Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verify-auth30-cookies.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 16:21:47 GMT","end":"Thu, 06 Aug 2026 16:21:46 GMT"},"fingerprint":{"sha1":"AF:E9:9F:0A:7B:4A:0A:95:9B:A3:36:62:35:49:37:8A:EC:4F:BB:E8","sha256":"78:3E:14:35:A6:32:6B:5A:53:F8:A5:20:E0:64:7A:3F:2A:27:04:AB:B0:38:79:57:D9:80:D9:64:3E:A4:35:C2"}}},"request":{"raw":"GET /api/verification/init?session=45g3y01rg78mp01glvq\u0026flow=first_party\u0026prompt_profile=default HTTP/1.1\r\nHost: panel.verify-auth30-cookies.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verify-auth30-cookies.info/\r\nOrigin: https://verify-auth30-cookies.info\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 May 2026 17:20:24 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\ncontent-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;script-src-attr 'unsafe-inline';script-src-elem 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline';img-src 'self' data: https://acrobatsign.adobe.com;connect-src 'self';font-src 'self';object-src 'none';media-src 'self';frame-src 'none';base-uri 'self';form-action 'self';frame-ancestors 'self';upgrade-insecure-requests\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\nreferrer-policy: no-referrer\r\nstrict-transport-security: max-age=15552000; includeSubDomains\r\nx-content-type-options: nosniff\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nx-frame-options: SAMEORIGIN\r\nx-permitted-cross-domain-policies: none\r\nx-xss-protection: 0\r\naccess-control-allow-origin: https://verify-auth30-cookies.info\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nratelimit-policy: 100;w=900\r\nratelimit-limit: 100\r\nratelimit-remaining: 99\r\nratelimit-reset: 900\r\netag: W/\"103-vveHMl9Ta0LAbKiYDkKm0/RGOCQ\"\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AR4UGUM%2FTS32qCBWz77l6B2IvVrUwAerSNnmrrrwYtip5wd3juVQ%2FN0eyN2q8oJS7bwKDhenYBBwdGaRZcDs3WgEsWlQPu9Pyv7Zn%2B0bk%2B3LJ9su1j0dYwEP3AUkaEFPbXCZ%2FawA1HcfVRXdJvUmBzx%2FzQ%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9f9a9d4019dfa0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":259,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5b19f188203da12f7f529ffcb7f08235","sha1":"bef787325f536b42c06ca8980e42a6d3f4463824","sha256":"18b1ec08f5c495c3b64fdaa4d8661d2cf57f80d99d033821edcdc2a0b36aeb8d","sha512":"d27aa2bd7ea4b6d11d4f6b152fa837052bdab5b8c147602ceabec37c6674bc0b2e07c297278e0249ced6fc3d410da69b27a48e06114f5b09088eb5622b64a7d9","ssdeep":"","tlshash":"94d09597464d5cc28fd70390ded47e0441fd0557adc6204191bd811d8a34803f15b1cc","first_seen":"2026-05-10T17:20:50.031582Z","last_seen":"2026-05-10T17:20:50.031582Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1561,"timings":{"blocked":56,"dns":41,"connect":1,"send":0,"wait":1446,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"panel.verify-auth30-cookies.info/api/verification/fingerprint","fqdn":"panel.verify-auth30-cookies.info","domain":"verify-auth30-cookies.info","tld":"info"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://verify-auth30-cookies.info/","date":"2026-05-10T17:20:24.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verify-auth30-cookies.info","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 08 May 2026 16:21:47 GMT","end":"Thu, 06 Aug 2026 16:21:46 GMT"},"fingerprint":{"sha1":"AF:E9:9F:0A:7B:4A:0A:95:9B:A3:36:62:35:49:37:8A:EC:4F:BB:E8","sha256":"78:3E:14:35:A6:32:6B:5A:53:F8:A5:20:E0:64:7A:3F:2A:27:04:AB:B0:38:79:57:D9:80:D9:64:3E:A4:35:C2"}}},"request":{"raw":"POST /api/verification/fingerprint HTTP/1.1\r\nHost: panel.verify-auth30-cookies.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 714\r\nOrigin: https://verify-auth30-cookies.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://verify-auth30-cookies.info/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":714,"data":"{\"screen\":{\"width\":1280,\"height\":1024,\"availWidth\":1280,\"availHeight\":1024,\"colorDepth\":24,\"pixelDepth\":24},\"navigator\":{\"userAgent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"language\":\"en-US\",\"languages\":[\"en-US\",\"en\"],\"platform\":\"Win32\",\"hardwareConcurrency\":48,\"maxTouchPoints\":0,\"cookieEnabled\":true,\"doNotTrack\":\"1\"},\"timezone\":{\"offset\":0,\"name\":\"UTC\"},\"plugins\":\"PDF Viewer,Chrome PDF Viewer,Chromium PDF Viewer,Microsoft Edge PDF Viewer,WebKit built-in PDF\",\"canvas\":\"iVBORw0KGgoAAAANSUhEUgAAASwA\",\"webgl\":\"llvmpipe\",\"session\":{\"storage\":true,\"localStorage\":true,\"indexedDB\":true,\"serviceWorker\":false},\"sessionId\":\"12upd9wtkyohmp01gllc\",\"timestamp\":1778433622950}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 May 2026 17:20:24 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 49\r\nserver: cloudflare\r\ncontent-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;script-src-attr 'unsafe-inline';script-src-elem 'self' 'unsafe-inline' https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline';img-src 'self' data: https://acrobatsign.adobe.com;connect-src 'self';font-src 'self';object-src 'none';media-src 'self';frame-src 'none';base-uri 'self';form-action 'self';frame-ancestors 'self';upgrade-insecure-requests\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\nreferrer-policy: no-referrer\r\nstrict-transport-security: max-age=15552000; includeSubDomains\r\nx-content-type-options: nosniff\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nx-frame-options: SAMEORIGIN\r\nx-permitted-cross-domain-policies: none\r\nx-xss-protection: 0\r\naccess-control-allow-origin: https://verify-auth30-cookies.info\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nratelimit-policy: 100;w=900\r\nratelimit-limit: 100\r\nratelimit-remaining: 99\r\nratelimit-reset: 900\r\netag: W/\"31-QiGh8cAciHxB2q1I45jrxPk3gOI\"\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Tzlf5a24Yk8GJiW%2F5vlAxg0%2Fh15K4VZ6VIeuuhnWvPSNiJ3JD3bSndZ5aGaXm7TMISsIh8ZV9K%2BcbB9m9N1eyH1vpKGewmaEE9d96ytVAGQgtIH3lEyttkqO4rdiD5OFlOa%2BpSLBJloJskWRTqMhnriv7g%3D%3D\"}]}\r\ncf-ray: 9f9a9d47adf6a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":49,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"6e27a588062ce91bb00477356ad23eab","sha1":"4221a1f1c01c887c41daad48e398ebc4f93780e2","sha256":"63e76f558d6252de28a70d6edec7a9fa6a1b36228b3872ec85edef9b69fd1d0d","sha512":"217ac3e2c100bd2c183406d87b1d106e4d55514f096b76124824fb2794c811b33893712aa2bac85a62fc030297e6ad3e7f6d1d369fbcc886a78aff67519d9d79","ssdeep":"","tlshash":"4690020111027c67d645160170243a0018e540e681d03085956d05284614451605b68a","first_seen":"2026-05-03T07:39:55.031433Z","last_seen":"2026-05-10T17:20:50.033346Z","times_seen":2,"resource_available":false,"data":null}},"time_used":737,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":737,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"panel.verify-auth30-cookies.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}