{"report_id":"6ddba3d2-ceae-4115-87bf-a9c97ea8ab46","version":0,"status":"done","tags":[],"date":"2026-06-09T18:06:00Z","url":{"schema":"http","addr":"uhkjyx.blogspot.ca/","fqdn":"uhkjyx.blogspot.ca","domain":"blogspot.ca","tld":"ca"},"ip":{"addr":"216.58.201.225","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"uhkjyx.blogspot.com/","fqdn":"uhkjyx.blogspot.com","domain":"uhkjyx.blogspot.com","tld":"blogspot.com"},"title":"uhkjyx.blogspot.com/","dom":{"size":287,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"13fee57c241defea1a7559a789c493d6","sha1":"804e82bb0334a1bcd26216a15039e400472965eb","sha256":"45b882351767f1a8ae4f2e7019e91c15c5860a3b8801a66be45612d0707d0536","sha512":"42c34888acb917662c85af0a7f4fd4e163c5760bf1b337b2e80946c77fb15108b742df13863c9d5d9450999607bcce172834a76476b95b75cbf4bd7406f1b133","ssdeep":"","tlshash":"f1d012ef6c45cd0136e2dc9675f0a60bc86612db888993c6b5d0896974716c725112d4","dom_hash":"domhashe7878feada357c83b98d617f7576c066","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"uhkjyx.blogspot.ca/","fqdn":"uhkjyx.blogspot.ca","domain":"blogspot.ca","tld":"ca"},"ip":{"addr":"216.58.201.225","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-14T18:06:00Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-09","alert":"Sinkholed","trigger":"uhkjyx.blogspot.ca","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-09","alert":"Sinkholed","trigger":"uhkjyx.blogspot.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-09","alert":"Sinkholed","trigger":"getk100.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-09","alert":"Sinkholed","trigger":"getk100.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"uhkjyx.blogspot.ca","ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2006-10-18","domain_rank":0,"first_seen":"2026-06-09T18:06:00.993922Z","last_seen":"2026-06-09T18:06:00.993922Z","alert_count":1,"request_count":1,"received_data":486,"sent_data":487,"comment":"","tags":null,"fingerprints":[{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}]},{"fqdn":"uhkjyx.blogspot.com","ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2000-07-31","domain_rank":0,"first_seen":"2026-01-01T21:51:21.488459Z","last_seen":"2026-05-16T10:09:38.68535Z","alert_count":1,"request_count":1,"received_data":492,"sent_data":488,"comment":"","tags":null,"fingerprints":[{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}]},{"fqdn":"getk100.cc","ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-06-04","domain_rank":3318541,"first_seen":"2025-06-04T22:00:32.39979Z","last_seen":"2026-06-09T07:04:36.527397Z","alert_count":2,"request_count":1,"received_data":0,"sent_data":530,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"uhkjyx.blogspot.com/","fqdn":"uhkjyx.blogspot.com","domain":"uhkjyx.blogspot.com","tld":"blogspot.com"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0d8e2b3c8447bb7518a4518a933f4770","sha1":"fef297814378b2746f5f99ba5eecca7a98ebdb64","sha256":"66c81a9cb73b1bb081969c5493aa0a319083e33d9e95ad24690241b1ff2bbc83","sha512":"66fac831ee496a7c848c14fe7a9a62b8dbd4dcb0367847eb339bc95b1cd327a609bfcdeab60c53db40ad6163f8b0a66ca7eb4af49ffb6e1468895ac8ce975387","ssdeep":"","tlshash":"f99004f71441051033d1d047c7013104501300cfcd4454c55d01c30774543ff137d54d","size":44,"data":"","first_seen":"2026-05-25T18:56:08.763949Z","last_seen":"2026-06-13T10:12:21.986833Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uhkjyx.blogspot.com/","fqdn":"uhkjyx.blogspot.com","domain":"uhkjyx.blogspot.com","tld":"blogspot.com"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"2536df5500472e1de28034f4c07a067d","sha1":"c5fa7462aa7e964efd6dbf6e56caff6a128158c0","sha256":"b815fbb81f71ce5cdff4631273a38f936b6c85ab06cd3d045d4de7bc41dfd3d9","sha512":"5eeca9855bb1ed2ad469634d09ec143f6580e1c301f6c7695c72bafaf5b5fd0c5014cc00b5ba9f47bc229e84c63afbe1d2ae2afd4d5301d94341182494644f15","ssdeep":"","tlshash":"c0d02ef7f4d5ac218809a3200825e9083032e6feb3a04de094c0053a088a8ba9306fa0","size":271,"data":"","first_seen":"2026-05-25T18:38:39.672755Z","last_seen":"2026-06-13T10:32:52.156735Z","times_seen":850,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uhkjyx.blogspot.com/","fqdn":"uhkjyx.blogspot.com","domain":"uhkjyx.blogspot.com","tld":"blogspot.com"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"87fecb72fc66afeed4e3c67d8bf07348","sha1":"1a6e5c407df475125d22da377dc5fffc306d9c35","sha256":"46fc7d54c764103aa52d10c56764fdf7b07f2adf9d81d1be2dee1a686534c24b","sha512":"c6394150fe784d323d1984c6b79de6279396c58576504af9f42610a034eba9ffc34615f10278471f7d65d697052ea500fc171fed1c9819a1f8e5d2d09728beb4","ssdeep":"","tlshash":"5701bd137008e71421a314307b8bba18fd2ac2520895453b391cf5324f07b63ced6be3","size":790,"data":"","first_seen":"2026-05-25T18:38:39.709469Z","last_seen":"2026-06-13T10:32:52.165011Z","times_seen":764,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uhkjyx.blogspot.com/","fqdn":"uhkjyx.blogspot.com","domain":"uhkjyx.blogspot.com","tld":"blogspot.com"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"88b12ef52d79f4a19a9e3b81c2490f63","sha1":"4bcce258448b6755d2161451181c0e32e04d1144","sha256":"0331fa0ab8a12796072e9e7da51c644e97f20c4c2912ad0be083d6962ec65763","sha512":"df99ebe254d638f169b066aa9845d9c62363a1034f1642659c45c0b63d869115ca1dad0bd7ffc5734ed3b3fa83417a003595fa5ec22d3570b8fb8423113f3d48","ssdeep":"192:BhERE3ELKEj/lhYRyI/BRq2ERVhqcpllLeERbAZ0QvG/AGEazMxMRGVDFQGN/GSE:BhERE3ELKEj/z22dllKEYD2zM29SZa","tlshash":"7de176c3a4fcb0fa5fa9ac5ef025bea1768a0c05c5c3bc66dc551cb91746b839495b30","size":6839,"data":"","first_seen":"2026-06-09T18:06:03.067491Z","last_seen":"2026-06-09T18:06:03.067491Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"uhkjyx.blogspot.ca/","fqdn":"uhkjyx.blogspot.ca","domain":"blogspot.ca","tld":"ca"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-09T18:05:36.811Z","timestamp":1781028336811,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.blogspot.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 18 May 2026 18:36:58 GMT","end":"Mon, 10 Aug 2026 18:36:57 GMT"},"fingerprint":{"sha1":"04:69:96:6D:76:4C:83:C3:A8:AB:03:00:47:BD:2A:1C:BA:CE:C8:C4","sha256":"F3:EB:4A:4D:B9:78:D7:26:81:2D:ED:FE:03:1D:35:C4:03:CB:7A:D8:74:2F:A4:1E:15:55:53:75:6F:90:3A:45"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: uhkjyx.blogspot.ca\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nlocation: https://uhkjyx.blogspot.com/\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: gzip\r\ndate: Tue, 09 Jun 2026 18:05:37 GMT\r\nexpires: Tue, 09 Jun 2026 18:05:37 GMT\r\ncache-control: private, max-age=0\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\ncontent-security-policy: frame-ancestors 'self'\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 196\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T10:33:11.41944Z","times_seen":16384135,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-09","alert":"Sinkholed","trigger":"uhkjyx.blogspot.ca","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"uhkjyx.blogspot.com/","fqdn":"uhkjyx.blogspot.com","domain":"uhkjyx.blogspot.com","tld":"blogspot.com"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-09T18:05:37.576Z","timestamp":1781028337576,"http_version":"HTTP/2","security_state":"secure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: uhkjyx.blogspot.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/html; charset=UTF-8\r\nexpires: Tue, 09 Jun 2026 18:05:38 GMT\r\ndate: Tue, 09 Jun 2026 18:05:38 GMT\r\ncache-control: private, max-age=0\r\nlast-modified: Tue, 05 May 2026 11:03:07 GMT\r\netag: W/\"e8c561b3285b373db75395f9d69d6a0cee02e334b530a9ec98eda19bf2e54fc4\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 14719\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T10:33:11.41944Z","times_seen":16384135,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-09","alert":"Sinkholed","trigger":"uhkjyx.blogspot.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getk100.cc/tt/811","fqdn":"getk100.cc","domain":"getk100.cc","tld":"cc"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-09T18:05:38.672Z","timestamp":1781028338672,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /tt/811 HTTP/1.1\r\nHost: getk100.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://uhkjyx.blogspot.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T10:33:11.41944Z","times_seen":16384135,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-09","alert":"Sinkholed","trigger":"getk100.cc","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-09","alert":"Sinkholed","trigger":"getk100.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}