{"report_id":"73f42ff1-8c11-4fe1-9494-994acc0ba9f0","version":0,"status":"done","tags":[],"date":"2026-06-28T13:03:51Z","url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"104.21.93.77","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"title":"Ventuals is sunsetting","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"104.21.93.77","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-02T13:03:51Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"registers-virtualsfi.live","ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":28,"request_count":14,"received_data":853155,"sent_data":13687,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.6.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"challenges.cloudflare.com","ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":11393,"first_seen":"2021-10-20T05:02:03Z","last_seen":"2026-06-21T23:33:31.856708Z","alert_count":0,"request_count":7,"received_data":744089,"sent_data":5399,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"103.101.85.74.sslip.io","ip":{"addr":"103.101.85.74","port":443,"asn":200239,"as":"Bogahost Bilisim ve Telekomunikasyon Hiz. San ve Tic. Ltd. Sti.","country":"Türkiye","country_code":"TR"},"domain_registered":"2015-08-15","domain_rank":0,"first_seen":"2026-06-28T11:40:49.714593Z","last_seen":"2026-06-28T11:40:49.714593Z","alert_count":0,"request_count":1,"received_data":366549,"sent_data":499,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-06-28T17:32:21.634265Z","times_seen":756149,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"93e354e833ee7b4feead7057a3f33168","sha1":"4025c763f11cdc2eef6318108989528620fef9e7","sha256":"80b90237b40178e74c34d6652d95b3918d01b603ba83f9dce47ba6b19343c245","sha512":"2b37a9bb6f2c3e2ad3624228638881eaeb961c98a31e60a424d9c6146f002a852cec318a17772a5be5015fd197ad4582b007eb0b15335ba6d25412b27b576c13","ssdeep":"","tlshash":"19600000c0303003000f0000f00000033cc000f0cccc0003030c00f000c000c0cc000c","size":13,"data":"","first_seen":"2026-04-23T17:24:48.301435Z","last_seen":"2026-06-28T17:32:24.958523Z","times_seen":57536,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"c536b585577c056a92cd16f4fa4476cb","sha1":"a535e0870ca860100e50d2d183db35dae22cd458","sha256":"c5a7f7ccb6a0980394910cb4be34e076499feb91fd70c9459b251c80d4fcc152","sha512":"b4254336852de33284abd43cc2f6265ab552cd8cc9df9c641c9627eddc62b5b38e8de68632d3b91c24eb369b294d4e717698c85880ba7fee164a76c8c110533b","ssdeep":"3:N/BKL1XY/:eL1o/","tlshash":"b15504c0745034710430c400d350141550454501551d0405705d0cdd17300400477740","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.73871Z","last_seen":"2026-06-28T13:04:06.73871Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"79c343eb2b5f2d75d85b447f364a12c4","sha1":"8fa0c224f746e65122be2d92dc1c994bc38bfab8","sha256":"99cd5fd72b5465ae85a7bbb88a788e7af54089c325669db69a65403146deaed1","sha512":"15916493a138763f5f15d9d0d50a3b7a21da75a466e68fd87d1e710bcb76a39d979e010da2895518844081387d5377ac8668315b7d32036a334755a1ddd37191","ssdeep":"3:N/BKL1XY5:eL1o5","tlshash":"e45504d0745434710430c410d3d1141550050503351d4405715d0cfc1730055045d540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.739892Z","last_seen":"2026-06-28T13:04:06.739892Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"6cf6222296abc1f77f50b187bbb78ae9","sha1":"8aa93ebf16685244e958645cdd3202c5d50c67a0","sha256":"ed1cf670a34c184983851bc3bcac7cae318de5b6bc52d466666d42dba59ebd1d","sha512":"5777136755b5eb3ca9a46cd1ca00bf95e1d43afe9bbe3a5479291fbcc569ccbb41da229eaa8e4c2f7d290594e4f4bcdc96a093e4839952a06ac8f775cfaadf74","ssdeep":"3:N/BKL1XY6X:eL1o6X","tlshash":"025504c074743cf50430c400f3d0543570050501151d144570dd0cdd17300400455540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.740787Z","last_seen":"2026-06-28T13:04:06.740787Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"54e1b00687c6b3e91d6ed5405ab2c567","sha1":"34995487462bbad60d3147a484fedf00745e36be","sha256":"b329e51b4ca3dd4c3036612e5a11bbe4025d69ef5c3d175fdeb33c5bbbdb7eab","sha512":"c060b7cc4b314aeb0bfb432ac360057f76d721aa920024f3f9eb843d5e17622d758bfaab3a39d1aae76ed4aa94922ac72709ad66d06bcc8ae58d5d54c6ef9501","ssdeep":"","tlshash":"93c0222ef13f4d44a1231420bd3f36a0cc2b718810083e89aa2a08c607624c0a5d1fb1","size":192,"data":"","first_seen":"2026-06-24T10:51:52.218115Z","last_seen":"2026-06-28T17:32:24.957598Z","times_seen":2445,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"103.101.85.74.sslip.io/php321/30yid7.php?v=2","fqdn":"103.101.85.74.sslip.io","domain":"sslip.io","tld":"io"},"ip":{"addr":"103.101.85.74","port":443,"asn":200239,"as":"Bogahost Bilisim ve Telekomunikasyon Hiz. San ve Tic. Ltd. Sti.","country":"Türkiye","country_code":"TR"},"introduction_type":"scriptElement","is_inline":false,"md5":"1fa3b181483f537fbf92c1e75d929fca","sha1":"ccb86c5a2b7203899c5ff96e24dd267c9e4c86fc","sha256":"9f7d332848b3e4e5e986e65513f24c49a3eab817dce93bc6550ed15116e31efa","sha512":"bd92c28780832b38ec2b7618767711b4d28e4a3a602f137ec07843bdac7b2a724df910992656d5ec6c0b8a880421d4807ff2cfe9cc9f8377efc3eb1ff4f7a66c","ssdeep":"3072:xXlCroHGp/UrcP/ZE1LjQ/102U6XwuI3uqMNgefXsoLcD16wvQ8YDBgqD:xXlCroHgUroZ4jQ9UF3N160SL","tlshash":"ba7485c9eb53809c8d99119e8177f849e4554d67ce2c78a3ee0ecdc2252ab7b808717f","size":365229,"data":"","first_seen":"2026-06-28T12:56:22.765803Z","last_seen":"2026-06-28T13:47:37.251556Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"19362964a90fc94e9cc4a55cfc5792d1","sha1":"c8db695c77875d944c2761d1c82c847354c39bbc","sha256":"dc680d101d6c1b1d04ce7180ebb1d8964240b2ccc496a1cadee2415638a81391","sha512":"bb62ff0ca46d31e885a8d22e5203a57b3383561f1fc52581909b60b286bec1db9cb53eced58a9944cda1e51e10637cb102dbd529d5eeefe8a89a41c6f26541f9","ssdeep":"3:N/BKL1XYl:eL1ol","tlshash":"9d5504c07c5034710430c400d351141550050541171d044570dd0cdd1730040545d540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.742257Z","last_seen":"2026-06-28T13:04:06.742257Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"94081036cbf595a3dac383955367903b","sha1":"4c78fee58d05c79857142f6a1823b584e693d678","sha256":"a3c4f20a8b17293aceca90edf64056d45c645f5adc2d5c853448063f6fa56a8b","sha512":"99084ac603dabfdbf3736d9064ab97c259689afaf02fe04dccc45f4ed0dbb4be9af01b5e797fa80f5f6881c3f1f245f4b0d79fa6472f1eb8e2aa07f5404e5e69","ssdeep":"","tlshash":"64600000000000000000000cc00300003cc0003300cc0300c30c003000cc3cc0000000","size":13,"data":"","first_seen":"2026-04-23T17:24:48.314042Z","last_seen":"2026-06-28T17:32:24.965571Z","times_seen":57372,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"66f94bf2e2bd7b9b012e8218264aa395","sha1":"73cb87236e6ffd2850a4701b9acba7d06f08a8c2","sha256":"c6be31e3d771ac59cb327b7b7cb137821b59e0f1325661df0b5b7d01676df6e9","sha512":"5636c2fb685343cd4951ad14bf2db1eb3149a2426c1e0bd16c8d774487a5efe0cec4eac3a24600b3cc8b3cebc3092e93965b54f953748fc31d38e82bb7a224df","ssdeep":"3:N/BKL1XY6:eL1o6","tlshash":"d35504c0747434710534c400d350141550450541351d0505715f0cdc17310450455540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.743655Z","last_seen":"2026-06-28T13:04:06.743655Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"3edda1c80befe138a83932dc60972c87","sha1":"5103751697335346189dabeee46f91a28c90e6c9","sha256":"22414d5d0bce24db071a1074b23219442e567b96ae5997b4d737afb1439de202","sha512":"34c80a5fbf9563632d3d2fc9f7a2d6ac179d3f13467a018794af322e4120967619485ad1700f623e06de09044f530a38a3701d258b0166c3b9e0abbed6ebbc3d","ssdeep":"3:N/BKL1XK:eL1a","tlshash":"075504c0744034710d14c444f370145550050701151d0405705d0cdc173000005d5541","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.744921Z","last_seen":"2026-06-28T13:04:06.744921Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"75b2f5ce8748e3020d943c7db9c34628","sha1":"e48535226f83eb9c9f0afd86901b05647da20218","sha256":"491d68e19590401565a6760f5d10ef0f2c585ef5bae6a632906c038ffbf1d0a9","sha512":"053320f26c8b3328b85a3a1522c3f18771d6f66740aba9bc39b094db01d0120d1c4a325037190709b2e88281f84548e124b66df637a1be9120d4dde37e14fdf0","ssdeep":"3:N/BKL1XYL:eL1oL","tlshash":"e05504c574d034730430c400d350141550150501151d040573dd0cdd1f304411455540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.746149Z","last_seen":"2026-06-28T13:04:06.746149Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"08ec25229b48ed9a86c66940c2bb558b","sha1":"b0e9da1919944b46950d6e83c2afbe5c773e8fbe","sha256":"8f5b5d4a7c4b0a9e48edca1446c6caa46af06ee6a5149dc56e00fd0602448a5a","sha512":"6fc508931389ac5c6cc7e8af0e27d6d75c20851b777cb796d68c2ae4b1fe52d5bdf4cf6e8767eb40f52d60bdc7bcf9df790e22fc7dc53af5208c0d5cf3e6bd50","ssdeep":"3:N/BKL1X/n:eL1Pn","tlshash":"da5504c07c4030f11410c404d370541550050501151d0405f05d0cdc173000104d5550","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.747355Z","last_seen":"2026-06-28T13:04:06.747355Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"50bda72e04f85f9b4338c0f939c34b9c","sha1":"d53056a9d7a7424238f0faf0b93b098f28d4d3ca","sha256":"db8d20f2dfaf9df3877967927de5ecb9648fecda131ab44bf854f8d72baa2b23","sha512":"3e55d7e8940bd66ef537062f73d3d2c6982a25a4e9fe9ac98e18253782cf28e01f106382d2e9dbbc05b6cdd62aae372b75cd430aa5a7ce2e327fb2ece33a30d0","ssdeep":"","tlshash":"736000030c00cc300033000c0000003c30f00c3003cc000c033003f003c030c0000030","size":15,"data":"","first_seen":"2026-04-23T17:24:48.299417Z","last_seen":"2026-06-28T17:32:25.000752Z","times_seen":57265,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"173fc50265d2e5056de89d5091f16873","sha1":"0907b7f79ca7781c263884dc39a21f21e8f31d47","sha256":"39556578e31820a788799c7e5bccc78076c0b9d822532691312b104507f9e849","sha512":"7d05054b25bb255ccfb90059380dae1f6fdce75e9a066a1afdbbef0b367871dde20f001e857c227f755b884e953d0d2646576c8626e1049d3529c717bcdd964c","ssdeep":"3:N/BKL1XYPVn:eL1oPV","tlshash":"795504c1745134711430c400d750141550150501551f0405707f0cdc17311400455540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.749264Z","last_seen":"2026-06-28T13:04:06.749264Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"1e50fcfc8c752175ff807841572530cf","sha1":"03ad81477e761297b3303f079f659d0269fcd829","sha256":"31f8094427d685dd7b752b1d660ec2612ce236cf5402d8351c685ae1654acce6","sha512":"d3af1b45d5b712563fb0b88ed05ee831eabdbfcf04056f2fd8ed9cb37f4cb2241a83e8523977ae0a06b91fa1572bce52ae3050f47c46889e3e4259aa5cd8ccbf","ssdeep":"","tlshash":"8ac08c887a80e014c28125351c6b428ae638de6008581003a0425249b6a071003aaf0f","size":137,"data":"","first_seen":"2026-06-24T10:51:52.241503Z","last_seen":"2026-06-28T17:32:25.009761Z","times_seen":3876,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9074eb26a60c22bdb17cf505f21a3219","sha1":"85eccf6dc3cfd95e6a514a10019ffa64380011ad","sha256":"ae07e821dd3ae5e9e4e628fcbab4daaad10b9afaeca22ddf78f4a6c362c57e65","sha512":"307fd2b2156bc007144542f3a54fde6efe4c48094476f7d0dd9b35faa92c151cf53e90c33e1e7e078f3bcd117b46305a09b4db9e8ebfb3cc10050111bfdcf599","ssdeep":"3:N/BKL1X1T:eL1FT","tlshash":"715504c074c030731410c405d370141d50050541151d040d705d0cdc173000004d5540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.753867Z","last_seen":"2026-06-28T13:04:06.753867Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/9b0118b4-c8e5-440e-b468-63219d8555fa","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"559b25e286518dd5095285175eaaf1f3","sha1":"73796b05b604f1f9b9e82ba5efe05b1ff0624805","sha256":"e2dec43e5f28a3c6ed7646c44bce131b1a582210b6d7d029b883a283e4b166f4","sha512":"89ef12ceea529b9a9f05dfba8ce32eda13432f1e4942a917c9e83752f94e65d75d2bf37732152214eed075911cdd5c57741fbb6654d931dbd72145aac6b68232","ssdeep":"","tlshash":"86e0cd093d71e64982b311337c7f3926c1656664650992485335cef9db6069f2514f54","size":292,"data":"","first_seen":"2026-06-24T10:51:52.198846Z","last_seen":"2026-06-28T17:32:24.968273Z","times_seen":3729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"000b2b0fcc1651c5168698f8d807778c","sha1":"0c83609444d7d62052a8fc139bce32fe17707890","sha256":"1b948bdfe954c45739a6b633a3264929286738f082e88c266f17f5c730eb83e2","sha512":"f5675752276e00831c2c3f604509bdf0141b386e4609b61bbbeb38a7cfd30e65f4840744eb6e1023648abd499ef68c6074052b39a1c5c97c05816f90798e8ed9","ssdeep":"3:N/BKL1XYRX:eL1ox","tlshash":"965504d0745534750531c500d350541551055541151d044571dd0cdc17301400475544","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.755851Z","last_seen":"2026-06-28T13:04:06.755851Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"5f4f351f38b66c74b2ec54a12b02253f","sha1":"c06321d8ad297b5ec2c8a08d9367202e3e8e5265","sha256":"5d8e63c508d5dd0c2d818cfe9572fd146b321d71b980ede0086720a767e1006e","sha512":"e9550428709ff0e4864083b5ed508cd05bcd5c0f66f76265ce53e3ac15473908619cb0cd5a45c2775e79b288cb008d7362c58c45b53e072c39f3ffa46c3453a2","ssdeep":"3:N/BKL1XYzn:eL1oz","tlshash":"025504d07c7034f10430c400d350145570054501151d040df05d0cdd17300404455550","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.756886Z","last_seen":"2026-06-28T13:04:06.756886Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=a12ce40b8ea623eb","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"01f5d7c1872d2b44aed0a2df1cd69be2","sha1":"7340187d3a3cecbaf0f03006928efc646e0cf9fc","sha256":"e19055d82abfae9b4bf2d86e2338ab29b949c9d46a299edc2b7f0340fe1bcac0","sha512":"f95681423b8bb0b0f922c330348e58622cb53e0e08168f4609eb51bbb27b57bcaaeee02c43cf2b354841b9c874b7c19b63c8de564686a1da09b22d8a870917be","ssdeep":"6144:5AMx+wRvdKQnUPIStDMXOCII9M109AVNvOrWg5ZHcNBd+ONvZ98fLOf9/m55ZfMv:36HTK+HPD","tlshash":"9924c7cf75c27416122764b4c42ff08ea16d0dc0861c2d2ea96186e07a7cf7d9b7faa5","size":216621,"data":"","first_seen":"2026-06-28T13:04:06.732838Z","last_seen":"2026-06-28T13:04:06.732838Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-06-28T17:32:21.634265Z","times_seen":756149,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/fc74092b-cfa4-43b5-b89f-d6effea5a071","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"559b25e286518dd5095285175eaaf1f3","sha1":"73796b05b604f1f9b9e82ba5efe05b1ff0624805","sha256":"e2dec43e5f28a3c6ed7646c44bce131b1a582210b6d7d029b883a283e4b166f4","sha512":"89ef12ceea529b9a9f05dfba8ce32eda13432f1e4942a917c9e83752f94e65d75d2bf37732152214eed075911cdd5c57741fbb6654d931dbd72145aac6b68232","ssdeep":"","tlshash":"86e0cd093d71e64982b311337c7f3926c1656664650992485335cef9db6069f2514f54","size":292,"data":"","first_seen":"2026-06-24T10:51:52.198846Z","last_seen":"2026-06-28T17:32:24.968273Z","times_seen":3729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"0f373f0d6cd478eb510516e081633e73","sha1":"f6425f8457569edb6ce784c9d2351846b3456719","sha256":"4f6275e722cd1f6ac323c731530eda3a5e1c3d47ebe0683b4c756134e6fb6526","sha512":"2170ddef40867bb67393619ac47d83abef3297f87e65789f7f46ba354d65119dc1dc165d3a891dc029d1b3cd66f0a33f02c886b5fa8206a5e326ec19baa4db50","ssdeep":"3:N/BKL1XYU:eL1oU","tlshash":"945504d0745134710430c400d350143f5435c501151d0405705d4cdc17304410475540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.758101Z","last_seen":"2026-06-28T13:04:06.758101Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"20d3fb74601dd34d5fd2c07c8720c3c2","sha1":"305dde269a3f892620c05186d544b62c293283e8","sha256":"93cce2b0d73926db9e3b97dced178f56869c102451b80a92d90a4ae561ab5203","sha512":"3edd65bf51c071aaafddebe51c1763a29c1cb96cb8f52d16735cfd81f817ee08ad7592604b752f8544b211818c10c9e8e6a5f1f7b96972c5277d4eaa6a41b9cc","ssdeep":"3:N/BKL1XYP:eL1oP","tlshash":"155504c07c5034710470c400d350141750050501155d0405707d0ddd17300404455544","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.759626Z","last_seen":"2026-06-28T13:04:06.759626Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f35d63a7a0ab6a9a6d4f114fedaed9c9","sha1":"7fdf7889d53ac5de129812ac84893e588210927d","sha256":"b6b150616604545fae6ed07fa52236b739a451dedea818cfb139b09f4d60cd58","sha512":"e25dc188f2f645c0470d97fa521c7a270cf0836abb44aa26899da4cda145f075c577b3ebb2ef9b8fe4d4531ba9a334bcbe7f2473069696deafaa1718eedeac12","ssdeep":"3:N/BKL1XY3Rn:eL1o3Rn","tlshash":"7e5504d07c5434710430c400d370351550050511151d0405715d0cdd17300504c55540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.760812Z","last_seen":"2026-06-28T13:04:06.760812Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/?__cf_chl_rt_tk=BhMF4bwkPmaS9phCmVPh4WoBH_srR1aw3alvwHp1Ox4-1782651798-1.0.1.1-XNzNhj0yEdOR0jBK2JovBwYDcBV7azPica.oAjXy4ac","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-06-28T17:32:21.634265Z","times_seen":756149,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/b/25e6c66701a0/api.js?onload=ePmH8\u0026render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d26819e314c7334b3a5dd5a004898650","sha1":"559b39e547d32af023ed6ab08c369e93db0c7f80","sha256":"9715b51191ac5c467c5b8d983bf9f77c688c61987ab80f94fe3b4c452429cbf4","sha512":"9f4ea7965bdfe1afd68bd1dbdf79cdaa039492ef8e1d29a4966ec6ae8d9b8cc6af8f8920964deab2926662041ee1ac0feb7d70df7df9e6f0e55c5d130adc818c","ssdeep":"1536:4oYt3AYYdolrsHspjxegN8t5LMhfS8OpyJr:b8+onxeg6Dgc6F","tlshash":"3a632cc472aa7877129ac0f0a03b6753b3267d36a84cc850d427dc65277de869173fba","size":67081,"data":"","first_seen":"2026-06-24T10:51:52.15506Z","last_seen":"2026-06-28T17:32:52.809036Z","times_seen":6453,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/3768228b-aefa-49ab-ac34-f6c9c899dc1f","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"559b25e286518dd5095285175eaaf1f3","sha1":"73796b05b604f1f9b9e82ba5efe05b1ff0624805","sha256":"e2dec43e5f28a3c6ed7646c44bce131b1a582210b6d7d029b883a283e4b166f4","sha512":"89ef12ceea529b9a9f05dfba8ce32eda13432f1e4942a917c9e83752f94e65d75d2bf37732152214eed075911cdd5c57741fbb6654d931dbd72145aac6b68232","ssdeep":"","tlshash":"86e0cd093d71e64982b311337c7f3926c1656664650992485335cef9db6069f2514f54","size":292,"data":"","first_seen":"2026-06-24T10:51:52.198846Z","last_seen":"2026-06-28T17:32:24.968273Z","times_seen":3729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"fbf9ee9dfc10636182b2b5cda31d05f3","sha1":"9360cd6dd0b5453f1757cc52c396dc0a3a107eee","sha256":"bdbea1dd2e2dc28e9bde9414b973cae0cb955bde83282b3e6a1e693018a9b3dd","sha512":"05170d0dbeff244a7eeea91496287b22da7a1271335123f64f117ae723a80efa7c812573b9823632339df4842450af372212651e4f20f2bb36dbce70f62f4227","ssdeep":"6144:QalR0eP7qhy9bopUWko+K/4fYIwZGdBn6p6vuuK24FlxAr1gJRbLGayRDjBiLFwv:HO2ASyXq91F1","tlshash":"1634c8c638c2b4160317b8b6485fb0eeb2af4c945518181d9221d6f13abcf3d9b7f5a9","size":231136,"data":"","first_seen":"2026-06-28T13:04:06.770299Z","last_seen":"2026-06-28T13:04:06.770299Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"88d9bfa9cd84c012b862b760023f4c06","sha1":"4b11686fea00c883520c0efad3ca8f90b940e3ff","sha256":"2f3b48b8883dca97d387c891f93845f98f4a33c101ed9d105f6d4c02c7f31399","sha512":"5cb506e9e1f61fe7a607f07e4b6b8dfbb4ddd2c8abc5f993429dbda377fa7abd3afe4a95430e24765249fb5340808e8ac6251c2ebb400e535f22f31e37a9e9f1","ssdeep":"3:N/BKL1X/W:eL1PW","tlshash":"675504c07c4030f11c10c414d371541550050541151d0405f05d0cfc173000004d5540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.781688Z","last_seen":"2026-06-28T13:04:06.781688Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"656fa1f524e9ef9852a7f1926f9f411c","sha1":"358a113517e7836bd4a32c0579ea57bcc4612895","sha256":"bd279b4d2f2e6bd8b3f5c7a4016434ff0e01acc7d95ed6fa7330cb6ff8112c01","sha512":"1cde8c02ef0b57aa160f2a1d6a6fef4eb8d5cf879d658aa4fea108f65ddecb35a4d6bcbaeaaf5e0dd2aa2764b9e4d7b87081f017d7d1ee2cf4cf18a8fce78237","ssdeep":"","tlshash":"43a004ccf141f0505303f1350c374115f11557c1041c1010554c44537d1414f4111f5c","size":71,"data":"","first_seen":"2026-04-23T17:24:48.307672Z","last_seen":"2026-06-28T17:32:25.016884Z","times_seen":57213,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"130def89e08702996038a260755e309d","sha1":"68f4a524a4c9f82caf5a148c8dd910f273bb06b6","sha256":"749e9eba3e6edf0e903fbd4fdcff078a4b1d050d65315dc1879cd56da496cf2f","sha512":"27730992d2c99cab5e143ee7530ab16182ea432f901bf387183931aa19e8b71a6a8f25bbfb994bbaa498bff66ed53c5ecfff912236badff94b46c1d84ad561f3","ssdeep":"3:N/BKL1X2W:eL1P","tlshash":"b15504c17c4030711414c405d370141d50070501151d0405f05d0cdc17300000cd7541","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.784516Z","last_seen":"2026-06-28T13:04:06.784516Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"4be7b6b8aa783300ae657a82c16d2a09","sha1":"39c051c1ee899fb0fdec892c96de143739ad2628","sha256":"9ce4a40dab4ae7a062f4860f6a5f77bb0f93dd15b4a24f086e633a62dfaa26cc","sha512":"ed4f6be02687fb5ca630c617096aea4f63e85839ce294d6026bac126865ce8de8cfca9d5bfb335b13b135351e13d49cee6712e22d8274a313c9f1b15f858c66d","ssdeep":"","tlshash":"89900277b5817125574568f1842a251be61946d406544459910400862d104648651bd9","size":50,"data":"","first_seen":"2026-04-23T17:24:48.285702Z","last_seen":"2026-06-28T17:32:24.984645Z","times_seen":57600,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9144fe780c2e505cc7fb697341dc22b1","sha1":"cb951cf5c860c14d8deea9aecb8a92eb625731b3","sha256":"7594d5c2931b66e90e69de17c4bc5501973bf3296d1a43ffced1d894c1c528cb","sha512":"df6cea20c189d5308a229610a4c0bc8fdb4e7c6081db6d7400d4f4c39acb3aac7bca6ddeb68c0be9720c87d05d8d669dc5d89ee344be3e650d25394d6b3ebf4d","ssdeep":"3:N/BKL1XYSVn:eL1omn","tlshash":"b15504c0745434710430c400d3f11415500505015d1d1515705d0cdc173004004555c4","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.787288Z","last_seen":"2026-06-28T13:04:06.787288Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"445cfd5de3b01a7d17738c7a501a0c13","sha1":"5885b83860364da3f7c6bf9e11c4d6028f18031e","sha256":"5acb00c0090d35d63553801eea27da0f6c631bc721f15e47df35c9efbbb591df","sha512":"066b902cdd87ee5c68cc56dcb79275140e2c4564c78ac62e42a6936abd40d5e09212a177d51d54b6ad25360d6d646e8cd6fb9eafb2e8865605b4c6be9423a4d4","ssdeep":"3:N/BKL1XYP:eL1oP","tlshash":"955504c1745034730430c440d3d01c1550050501351d0405717d0cdc1f310450455540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.788562Z","last_seen":"2026-06-28T13:04:06.788562Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"3bd061ca0e60e0ae8eb4a147a15eadda","sha1":"87e2dae0bedacc53441e0a7acd52ff5be54d73de","sha256":"e308b196c85407f42d9c57b643190b45fcb5143a21c1b1760bb3cdaff31eb9a4","sha512":"5d6d3e475c8a22dac614373d5a4272266e63cc687ebaa58376770c656d6504e28bcf178491aed83c5eaf7e701b22992ea70b5fe7fef1e5b75026e17c546c9830","ssdeep":"3:N/BKL1XYFn:eL1oF","tlshash":"1f5504c0747035710430c441d350141d70170501151d0405705d4cdc17304410555540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.789665Z","last_seen":"2026-06-28T13:04:06.789665Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"b9d6921e2e05ccbf56f79e9aab063798","sha1":"8d3e70bc516d8415288b233736d8f4a8c8fe3265","sha256":"6865038d601ebbe50fa7d489f362d026d387491105a8909c526421c188ba005b","sha512":"4483f6e9fec997d747d6f9a8239a16a37515fa538ca81c2f16c83b42afe20bdb6cd850660e6fbf500b1184eb1988184b87842a8a4891ae1cc8328ff96c4d5585","ssdeep":"3:N/BKL1XY8Xn:eL1o8X","tlshash":"065504c0745034750430c400d351541550050501151d0c4774dd0cdc17300400455540","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.79675Z","last_seen":"2026-06-28T13:04:06.79675Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"1e50fcfc8c752175ff807841572530cf","sha1":"03ad81477e761297b3303f079f659d0269fcd829","sha256":"31f8094427d685dd7b752b1d660ec2612ce236cf5402d8351c685ae1654acce6","sha512":"d3af1b45d5b712563fb0b88ed05ee831eabdbfcf04056f2fd8ed9cb37f4cb2241a83e8523977ae0a06b91fa1572bce52ae3050f47c46889e3e4259aa5cd8ccbf","ssdeep":"","tlshash":"8ac08c887a80e014c28125351c6b428ae638de6008581003a0425249b6a071003aaf0f","size":137,"data":"","first_seen":"2026-06-24T10:51:52.241503Z","last_seen":"2026-06-28T17:32:25.009761Z","times_seen":3876,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"2fe1817e88a1298ae6bde5bc6279f7f3","sha1":"92a889b8c3b81fe5d5b6778cee984718f05a6670","sha256":"670b098bb86cf209e3c9631dc4f85888dcf77c3df99af48e0adfca6e2c44171f","sha512":"6bc4bf2eedf5dedf4c9a9d56239d532d549113b271719880af0ae8c850e2126c34a05458e0f5c5282c74359d40c9f87907113e9c930d51bb7f42ebd3e4e17888","ssdeep":"3:N/BKL1XYM:eL1oM","tlshash":"a35504c0745034710430c400d771141550150501151d040570df0cdc17304414555740","size":1337359,"data":"","first_seen":"2026-06-28T13:04:06.800708Z","last_seen":"2026-06-28T13:04:06.800708Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"177534fa2b202d2b08e57851c740d11e","sha1":"4d5cf7eb380d4d1e36db20be54d334aeffbbfa1b","sha256":"a7db507f4f1c2c87919577289757c62917d4ec14483757c8a3ab455a4ddd154c","sha512":"0071ba2ea4b0c8d438a3e82e0085c7ca9dc74b30fdab1c0b032d391eddc0e009fcf5c5b2b12dfd585c1a35cbbcb0fde329342081aa31fc5ff26b88fc9d303f91","ssdeep":"768:6+EtVhTFyY6sUmqYUb4izJcu2BLjFcHplVcDNkpoc+Edfgc8J:6nvhToY6QZ6ocI","tlshash":"022383e0260be4e45e5611eee037f801e1681a6bce6df183e52cddc2342df66858b53b","size":48183,"data":"","first_seen":"2026-06-28T12:56:22.782892Z","last_seen":"2026-06-28T13:47:37.28076Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"log","text":"The next request for the Private Access Token challenge may return a 401 and show a warning in console.","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj87 class:RegExp displayString:/.*.*=.*/ extensible:true frozen:false isError:false ownPropertyLength:2 sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj90 class:BoundFunctionObject extensible:true frozen:false isError:false ownPropertyLength:3 preview:map[kind:Object ownProperties:map[toString:map[configurable:true enumerable:true value:map[actor:server1.conn0.watcher14.process8//obj91 class:BoundFunctionObject extensible:true frozen:false isError:false ownPropertyLength:2 sealed:false type:object] writable:true]] ownPropertiesLength:3] sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj93 class:HTMLAnchorElement contentDomReference:map[browsingContextId:1.5032385538e+10 id:0.11821178016732958] extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[attributes:map[] attributesLength:0 isConnected:false kind:DOMNode nodeName:a nodeType:1] sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801},{"level":"debug","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"error","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"info","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"log","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"warn","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"debug","text":"","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj85 class:RegExp displayString:/.*.*=.*/ extensible:true frozen:false isError:false ownPropertyLength:2 sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj88 class:BoundFunctionObject extensible:true frozen:false isError:false ownPropertyLength:3 preview:map[kind:Object ownProperties:map[toString:map[configurable:true enumerable:true value:map[actor:server1.conn0.watcher14.process8//obj89 class:BoundFunctionObject extensible:true frozen:false isError:false ownPropertyLength:2 sealed:false type:object] writable:true]] ownPropertiesLength:3] sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj92 class:HTMLAnchorElement contentDomReference:map[browsingContextId:1.5032385538e+10 id:0.11821178016732958] extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[attributes:map[] attributesLength:0 isConnected:false kind:DOMNode nodeName:a nodeType:1] sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801},{"level":"debug","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"error","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"info","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"log","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"warn","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":126019},{"level":"debug","text":"","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":197801}]},"http":[{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/logo-green.png","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://registers-virtualsfi.live/php321/","date":"2026-06-28T13:03:25.841Z","timestamp":1782651805841,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /php321/logo-green.png HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://registers-virtualsfi.live/php321/\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:25 GMT\r\ncontent-type: image/png\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 26 Jun 2026 17:58:45 GMT\r\npriority: u=5,i\r\netag: \"6a3ebdd5-2036\"\r\naccept-ranges: bytes\r\nage: 3568\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FNIcoD25a6byyIy9IlHiDuQEvAo8ASkyP9Lyvvc7b3Z4L4PLQVJHl1Z1fYmHCsEmKBXneRnPC3P8S6nf3VPEmOy2sy5EZJAJKD1lZmGIfXkV8umgxES2JgUGt0UvOOaxyz2j5WpjidGSfCYk\"}]}\r\ncontent-length: 8246\r\ncf-ray: a12ce43a88f723eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8246,"size_decoded":8948,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"f683473cd3748b66166f54b380398889","sha1":"118bf80d840b7e1665fea0abc0fb9dac02590d03","sha256":"bfd22ad3169b22a3b4c9cf99f25534f639249156186695e879e6d801ca70bcfc","sha512":"513ff0738ecf4f478aa6ed0aa0d467d1028927a73e9a79be5c7fc90e338239a490693e26fd5ed3ff00d5092ea69ecc9f31f3977783b929670f0e44160235ab18","ssdeep":"192:sSlyZ+/dNKRPMbuk8PVBsIN7sbdxvfCAFWFX0/uGQk:rgZ+qR+fBlbTCAF60/BL","tlshash":"02024bf07f15a7a7762fc3d2921c5e7b307013dd8a922635d296ae92383350c57ac169","first_seen":"2025-08-12T04:00:02.439458Z","last_seen":"2026-06-28T16:46:39.41756Z","times_seen":29,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/b/25e6c66701a0/api.js?onload=ePmH8\u0026render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://registers-virtualsfi.live/","date":"2026-06-28T13:03:18.882Z","timestamp":1782651798882,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"GET /turnstile/v0/b/25e6c66701a0/api.js?onload=ePmH8\u0026render=explicit HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://registers-virtualsfi.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 28 Jun 2026 13:03:18 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nlast-modified: Mon, 22 Jun 2026 14:37:30 GMT\r\ncache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: https://registers-virtualsfi.live\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: a12ce40f1a5d1a30-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":67081,"size_decoded":22111,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d26819e314c7334b3a5dd5a004898650","sha1":"559b39e547d32af023ed6ab08c369e93db0c7f80","sha256":"9715b51191ac5c467c5b8d983bf9f77c688c61987ab80f94fe3b4c452429cbf4","sha512":"9f4ea7965bdfe1afd68bd1dbdf79cdaa039492ef8e1d29a4966ec6ae8d9b8cc6af8f8920964deab2926662041ee1ac0feb7d70df7df9e6f0e55c5d130adc818c","ssdeep":"1536:4oYt3AYYdolrsHspjxegN8t5LMhfS8OpyJr:b8+onxeg6Dgc6F","tlshash":"3a632cc472aa7877129ac0f0a03b6753b3267d36a84cc850d427dc65277de869173fba","first_seen":"2026-06-24T10:51:52.15506Z","last_seen":"2026-06-28T17:32:52.809036Z","times_seen":6453,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":2,"connect":9,"send":0,"wait":8,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/a12ce40f8a5d5697/1782651799344/mRWvjowRmdrYnkE","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-06-28T13:03:20.171Z","timestamp":1782651800171,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/d/a12ce40f8a5d5697/1782651799344/mRWvjowRmdrYnkE HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 28 Jun 2026 13:03:20 GMT\r\ncontent-type: image/png\r\ncontent-length: 3275\r\npriority: u=6,i\r\nserver: cloudflare\r\ncf-ray: a12ce4171a465697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3275,"size_decoded":3496,"mime_type":"image/png","magic":"PNG image data, 44 x 71, 8-bit grayscale, non-interlaced","md5":"092a3870d001213413a912b947dda0c1","sha1":"b1677f284444b87eb863d85831f244bb1138c572","sha256":"b4d9c567ca805baf939239152b461bc2223ccc37ab26d6ff37da25eff68bde8a","sha512":"a1dbbf7553368ef8708bdbeb40bfe265352ad1f916b28672b08020eca5978af78f3aee15cf6bef968888f57994b7fa94c9c40cef503f8b8c1ffd94438f5d927f","ssdeep":"","tlshash":"326111ebee808a2ace0000328320a088c82308302023c2bc003b882a880888e8ac8a02","first_seen":"2026-06-28T13:04:06.723391Z","last_seen":"2026-06-28T13:04:06.723391Z","times_seen":1,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/92a85b6493699521.css","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://registers-virtualsfi.live/php321/","date":"2026-06-28T13:03:25.821Z","timestamp":1782651805821,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /php321/92a85b6493699521.css HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://registers-virtualsfi.live/php321/\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:25 GMT\r\ncontent-type: text/css\r\netag: W/\"6a3ebdd5-18ff5\"\r\nlast-modified: Fri, 26 Jun 2026 17:58:45 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eJMqo039bGTmitWJYmqIj5kFlnR7iA2TyPRqixjdYpMIy5yG6RqIFaYF9Zisx6qIk2iRTvLNdrcwNwYjnF%2FPGN0y691eZFqU9OEbam6sJ9ULMSXbZyX5PPb4TSs%2FESCt80aUFfNihDKHTg%2Fw\"}]}\r\nage: 3568\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a12ce43a68e823eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102389,"size_decoded":19011,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"2c4952a7635291990fa4d443df055700","sha1":"945a2b359a378ecb36221e132f07155d540d0395","sha256":"9adbe32cd7a78a91139ee633efb279052c07ece396cf47940e721a1152b99146","sha512":"55df1d480cadfb6cb90cfe029397ec9a1e6445b33e0e3a4eaf91a00fe151b0357baf86ba0b90767c3690876fc853dd8369450028a83329acfc2ae3cb60f0367d","ssdeep":"3072:j+TIsqh5GMlcGWhVz1PHj48U/PmE+SBTai4:STIsqh5GMlcGWhVz1PHOuBSBTai4","tlshash":"8ea384a4f275d57bbc23b4bda3ecf81c611aa582de125be8ff52601112c7af31863614","first_seen":"2026-06-28T11:40:58.554295Z","last_seen":"2026-06-28T16:46:39.435934Z","times_seen":28,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/index_2.html#frame=checkbox-invisible","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://registers-virtualsfi.live/php321/","date":"2026-06-28T13:03:26.529Z","timestamp":1782651806529,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /php321/index_2.html HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://registers-virtualsfi.live/php321/\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-28T17:32:17.234066Z","times_seen":16799056,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/a12ce40f8a5d5697/1782651799343/7ae3b883475e666f3739b84bb7ba454e17772db123fdce7e06f38f375ed80eca/Wvnjtb88t4tJXyD","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-06-28T13:03:19.742Z","timestamp":1782651799742,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/pat/a12ce40f8a5d5697/1782651799343/7ae3b883475e666f3739b84bb7ba454e17772db123fdce7e06f38f375ed80eca/Wvnjtb88t4tJXyD HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 401 \r\ndate: Sun, 28 Jun 2026 13:03:19 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 1\r\nwww-authenticate: PrivateToken challenge=\"AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20geuO4g0deZm83ObhLt7pFThd3LbEj_c5-BvOPN17YDsoAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=\", token-key=\"MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAxDKbk4RYZyL6XnTRyMLN4wCsxvmJhd3ftOd8yAXrz8VqFgtlvnKMefvXRO4zaElaSrpOMszh8KAW9Dsx69eFsAosPK4nvwsvfiyP6ZyhdxPLGuhjTi9yUrWzzkcXpKUD5oZ63WixlXmHZg-DGy34XBTBEDLpaBfa5nJjJuMdHFzFB3XZ4lKatFdK8sSGfXMAsUy10RQd9wnzBzarw_8QPnkBlqzJ4ZJmbO7eJ3Jx6rUKm0EsteVSMi1W_3UgNTuDSFntFLT7ivnApWTXp1kSxFIe5bwCn-1tnm7qDWHa8Q6WW3qloT-zXcLq1G6N4vNlnIldiS3oejrM7UI5IuMAFwIDAQAB\", max-age=20, PrivateToken challenge=\"AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIHrjuINHXmZvNzm4S7e6RU4Xdy2xI_3Ofgbzjzde2A7KABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t\", token-key=\"MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsM0Q9MnygIFl0gZx3w9LhhcDl_7YDbmNzAMUL7Xnp9GXdfWl2k5SxpfB-K_QfmiV_H7Cj8P94IMqoWL8MDExqPL01M2yoCDweJGMNAm8hGbJvLjBAr9mXOZEx9Xd_a1oM6VTL7hmfywqDKr7NjnZtoftBNM7aAcQ3oFunMqwu32HSeDNBFCR6cLq3N_eldve-E2AWzdWXrQfBQ-vNheECU-_SCUvXG_5xxdQ2AO6mpnRaaSuo-pxQhD2t-T8yKziV-ecPidkSrDvocgKAILEibz6aNYuH7U8kF5zXOjI4xRH1FqVs43TY5dwNvmfYjI-w8NNqKpoa4azpJqv3m2DVwIDAQAB\", max-age=20, PrivateToken challenge=\"AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIHrjuINHXmZvNzm4S7e6RU4Xdy2xI_3Ofgbzjzde2A7KABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t\", token-key=\"MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsxviSI6sjMo3EYekYTf-dIPsJKZ5cD3xsEmHYx664Sbocwxx4OVFCyBfqccoQRmEX0XWSEj0hYyxpSGEz2i9yhmVRSjkqknoFfuOjUc0KcblcHhVGtTIWERy01RB1YmfcngH9Znt-Z--XyaRArOXumCFBV41ZLC7--LANYHBuhSz34fCGCIFKJsbk8ggBIemExpY3f1t2OZNs4mYLHE-7DhMSYP3Yd171ZcDGvSvtW59KNqQwgCwNcjSY6crHCr8mc-vyzSJFS62lUdla7lPGnm51ne0hJTiFcfY2rDXKUBERMhEYaNuHy1itCEsHOinnQKV89W6SPZmavtQU2h-QwIDAQAB\", max-age=20\r\npriority: u=6,i=?0\r\nserver: cloudflare\r\ncf-ray: a12ce4146f275697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"401","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1,"size_decoded":2171,"mime_type":"text/plain; charset=utf-8","magic":"very short file (no magic)","md5":"ff44570aca8241914870afbc310cdb85","sha1":"58668e7669fd564d99db5d581fcdb6a5618440b5","sha256":"6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5","sha512":"3c266c0035de59eab2a0dd31b3dcb4a9dd157b310289e5db9ab4f8c2fddb7433466d48f25da7ad735a1cb8f2935aa612ad1f62f0efcece3933ba9979082e2304","ssdeep":"","tlshash":"c700000000000003c00000300000003000000000000000000003000000000000000000","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-28T17:32:21.621442Z","times_seen":470655,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1022166842:1782648016:EOKH8QvoUSOKg41iakUNyoOIEU6U3nncr5Ho3yWMwhs/a12ce40f8a5d5697/CQdbRYAcWyWtr6jp0WOKHEUDOsRSu1VXs4JsrTiM58s-1782651798-1.2.1.1-lrfUItjW2t.m9htwtFEqnQOb1yoSetjv7KCzA3IkqbzyOTQk3GPp0iKuwyOC_sP_","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-06-28T13:03:20.919Z","timestamp":1782651800919,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1022166842:1782648016:EOKH8QvoUSOKg41iakUNyoOIEU6U3nncr5Ho3yWMwhs/a12ce40f8a5d5697/CQdbRYAcWyWtr6jp0WOKHEUDOsRSu1VXs4JsrTiM58s-1782651798-1.2.1.1-lrfUItjW2t.m9htwtFEqnQOb1yoSetjv7KCzA3IkqbzyOTQk3GPp0iKuwyOC_sP_ HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\ncf-chl: CQdbRYAcWyWtr6jp0WOKHEUDOsRSu1VXs4JsrTiM58s-1782651798-1.2.1.1-lrfUItjW2t.m9htwtFEqnQOb1yoSetjv7KCzA3IkqbzyOTQk3GPp0iKuwyOC_sP_\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 87799\r\nOrigin: https://challenges.cloudflare.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 28 Jun 2026 13:03:20 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: /8unZrh44a4cgwRpfDNH3YepQDxZiauQqqH0FRAkUj7dFwU8LDO7WimXPmbcKO9l$54pgQfVlY5aanL2CWjdBnQ==\r\ntiming-allow-origin: https://challenges.cloudflare.com\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: a12ce41bcf235697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":34352,"size_decoded":26201,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (34352), with no line terminators","md5":"9ff598a83ab2e9ab663164f1bfb43852","sha1":"cba6d723154cf2519e1c425bc1aba41a641cc955","sha256":"c52e00b876e30ae3cc4729225c4aa25e7500123cac8cb2a7e46997bf0d1c0750","sha512":"e41f6a7ac8e534cac5a9073f882207ae4dcdab890ed5118718b17b456eb6cd417b476d3867a94dee393576ab9e3e607df8613c386cf2a147689c0a3147003486","ssdeep":"768:lt0rmEAXPL3DvabtMfL9JPTq0rg8MI9Mlj9P8mm021RO:IrmBLThP3rgI9MT8mSq","tlshash":"f0f2f1645f09baf7c62fc9234fe1301a6b9193cbd4993859233b9785b6c9c1c2b11a8d","first_seen":"2026-06-28T13:04:06.726597Z","last_seen":"2026-06-28T13:04:06.726597Z","times_seen":1,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T13:03:25.365Z","timestamp":1782651805365,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://registers-virtualsfi.live/?__cf_chl_tk=BhMF4bwkPmaS9phCmVPh4WoBH_srR1aw3alvwHp1Ox4-1782651798-1.0.1.1-XNzNhj0yEdOR0jBK2JovBwYDcBV7azPica.oAjXy4ac\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 2115\r\nOrigin: https://registers-virtualsfi.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nSec-Fetch-User: ?1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 302 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:25 GMT\r\ncontent-type: text/html\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlocation: https://registers-virtualsfi.live/php321/\r\npriority: u=0,i\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3Ox%2BkRcia0RZetaMGyvCZExhvESJ3ihZSoPVzZLMfZ8Ki67yIJaxVAxsJhosCrOjkRYHGkqs5pwXTfuO1vdQ3rMfhcRYEF1aFaSptq3%2FjAmgi%2Bdx61UpQO1Powq%2Fz3EsKj3VqpgWM16yi7BV\"}]}\r\ncf-ray: a12ce437885c23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-28T17:32:17.234066Z","times_seen":16799056,"resource_available":true,"data":null}},"time_used":148,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":148,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/jquery-3.6.0.min.js","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://registers-virtualsfi.live/php321/","date":"2026-06-28T13:03:25.836Z","timestamp":1782651805836,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /php321/jquery-3.6.0.min.js HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://registers-virtualsfi.live/php321/\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:25 GMT\r\ncontent-type: application/javascript\r\netag: W/\"6a3ebdd5-15d9d\"\r\nlast-modified: Fri, 26 Jun 2026 17:58:45 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=luOBVP8eEXwZMSsvmF2XoiGHgDzlgZ3fuIGTfJrL1oOHP8o%2BQ2VVKcybbu6BtIgzT7tzwyZoX%2ByLdYEQgY%2FuzyrMXlaAbe7%2FWyDXiX7d96gRnwV1NRxO1ssQJAgJQVQ1k%2BBGzmOVgYok7fg9\"}]}\r\nage: 3568\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a12ce43a78f023eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":89501,"size_decoded":33566,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-06-28T17:31:40.352743Z","times_seen":485332,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T13:03:18.266Z","timestamp":1782651798266,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 \r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncf-mitigated: challenge\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: default-src 'none'; script-src 'nonce-2xMih0yUDLU0aACiUR6HMz' 'unsafe-eval' https://challenges.cloudflare.com; script-src-attr 'none'; style-src 'unsafe-inline'; img-src 'self' https://challenges.cloudflare.com; connect-src 'self' https://challenges.cloudflare.com; frame-src 'self' https://challenges.cloudflare.com blob:; child-src 'self' https://challenges.cloudflare.com blob:; worker-src blob:; form-action http: https:; base-uri 'self'\r\nserver: cloudflare\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=*\r\nreferrer-policy: same-origin\r\nserver-timing: chlray;desc=\"a12ce40b8ea623eb\", cfExtPri\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2ZJVGuoTLFpZzAi2BWiYu7zpe5ObJAx0jvMFsI8CgksnURBSEyqQGWNll3GagbEMJFS3XBMb0cKJmtiERXZzv1wAa9DO21KI1mwS%2Ft%2FA75QVtRRdeI0DwH8i9TSobldT3l8YKi5ZOsflClhW\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Sun, 28 Jun 2026 13:03:18 GMT\r\npriority: u=0,i\r\ncontent-encoding: zstd\r\ncf-ray: a12ce40b8ea623eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5608,"size_decoded":5576,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (5608), with no line terminators","md5":"1c0355c688ab0e2625a96274493ea7d9","sha1":"29d0ca25ac161aa2ae320ea60cda8bdc67901f13","sha256":"efe462c2b01683547526a831c50551734e8f8946a3d1b9068be102f70c5bd6bb","sha512":"91e0d657e3325a0411b076f3569dcce1424efaaf022f4ad07d691b312531c459c7b6de436aaa884824c5259e72eed285603ff2566b088a697e9773a00d48ea46","ssdeep":"96:PNyXtoXZzIEb0EaW876iRfxnAub6iHcqDT0u9so9erOb58gGYzueh8qdmw:PNCtkCB6glAub6iHV/biil8gryjw","tlshash":"9bc12be3bd31145b57f4bfe55cfbb30ca320b216bb0591d8d8a04a7c82eee4e4164289","first_seen":"2026-06-28T13:04:06.728442Z","last_seen":"2026-06-28T13:04:06.728442Z","times_seen":1,"resource_available":true,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":36,"connect":17,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/favicon.ico","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://registers-virtualsfi.live/","date":"2026-06-28T13:03:18.620Z","timestamp":1782651798620,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://registers-virtualsfi.live/?__cf_chl_rt_tk=BhMF4bwkPmaS9phCmVPh4WoBH_srR1aw3alvwHp1Ox4-1782651798-1.0.1.1-XNzNhj0yEdOR0jBK2JovBwYDcBV7azPica.oAjXy4ac\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:18 GMT\r\ncontent-type: text/html\r\nvary: accept-encoding\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3SAEH7y639nObci20lMrxOOWgwnKAUVe8D1NAZiWiYjyfpGeEqe6ponLC1pzCDlTLLPmXZFx6i5IEb2xq4AUDyOQFxLDlfgy0f%2FeaaNYXe6VZ3Gw8OKb2PDAHgsfo5rGKuqyC2v3Gig2n%2B8H\"}]}\r\ncache-control: max-age=14400\r\ncf-cache-status: EXPIRED\r\ncontent-encoding: zstd\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a12ce40d6f0323eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":162,"size_decoded":755,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"1b7c22a214949975556626d7217e9a39","sha1":"d01c97e2944166ed23e47e4a62ff471ab8fa031f","sha256":"340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87","sha512":"ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5","ssdeep":"","tlshash":"59c08c6e2613bd4cc6a3217522c3b490c09aa3a7a4ea46214840805331cb29a8ac7396","first_seen":"2023-03-10T20:17:28Z","last_seen":"2026-06-28T17:28:31.926508Z","times_seen":45758,"resource_available":true,"data":null}},"time_used":155,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/favicon.ico","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://registers-virtualsfi.live/","date":"2026-06-28T13:03:18.906Z","timestamp":1782651798906,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://registers-virtualsfi.live/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:18 GMT\r\ncontent-type: text/html\r\nvary: accept-encoding\r\npriority: u=4,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AYk4jtR7acBVO1MXJygbWnCr8ufOuEtduj8vhlu%2FXZEAAet5t%2FHOPlTnVTiXhYyImDP%2BNB8CRnpuwXDYbZfEnSJKO5uOTuSmHwL%2B6y20I%2Fj%2F2BXG4XAaUXf%2FEVScTZDgg%2Fj3cGc0GygDtTk1\"}]}\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a12ce40f2f8023eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":162,"size_decoded":768,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"1b7c22a214949975556626d7217e9a39","sha1":"d01c97e2944166ed23e47e4a62ff471ab8fa031f","sha256":"340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87","sha512":"ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5","ssdeep":"","tlshash":"59c08c6e2613bd4cc6a3217522c3b490c09aa3a7a4ea46214840805331cb29a8ac7396","first_seen":"2023-03-10T20:17:28Z","last_seen":"2026-06-28T17:28:31.926508Z","times_seen":45758,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://registers-virtualsfi.live/","date":"2026-06-28T13:03:18.959Z","timestamp":1782651798959,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 28 Jun 2026 13:03:18 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npermissions-policy: accelerometer=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=*\r\ncontent-security-policy: default-src 'none'; script-src 'nonce-2eZNSkTb2O7ywj7hbkfEuv' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self' https://hagen.challenges.cloudflare.com https://brunhild.challenges.cloudflare.com; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; trusted-types gIqNx7 default; require-trusted-types-for 'script'; sandbox allow-same-origin allow-scripts allow-popups allow-forms\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: cross-origin\r\norigin-agent-cluster: ?1\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nreferrer-policy: same-origin\r\ndocument-policy: js-profiling\r\npriority: u=6,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: a12ce40f8a5d5697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: kkpiubpm;dur=249003, cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":249003,"size_decoded":97203,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (65536), with no line terminators","md5":"d209d64555ebebf782847ef56cb86857","sha1":"9728e3b5a931997bc2bce89e4cf63fa565cf8c3d","sha256":"462ab5fc183d33b5ad4b24caa405501e65a9ad7b9584e1e10ed90b193943d5cb","sha512":"9c770841882297a5c4b202f65c90e07818be1c61f33cd9ac8be5344540785863c5b58647c2de043c590602dc7bba4a54ec00d2154b081853bcfa24b21a40b003","ssdeep":"6144:MalR0eP7qhy9bopUWko+K/4fYIwZGdBn6p6vuuK24FlxAr1gJRbLGayRDjBiLFwn:TO2ASyXq91FF","tlshash":"8134f9c638c2b4160727b876085fb0ee72af4c845618181c9221d6f17abcf7d9b7f5a9","first_seen":"2026-06-28T13:04:06.730231Z","last_seen":"2026-06-28T13:04:06.730231Z","times_seen":1,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":14,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-06-28T13:03:19.051Z","timestamp":1782651799051,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 28 Jun 2026 13:03:19 GMT\r\ncontent-type: image/png\r\ncontent-length: 86\r\npriority: u=6,i\r\nserver: cloudflare\r\ncf-ray: a12ce4106b355697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":86,"size_decoded":305,"mime_type":"image/png","magic":"PNG image data, 2 x 2, 8-bit grayscale, non-interlaced","md5":"c33553012edd49d67ed44995664f50b2","sha1":"bebdb7a01261ba91a5cc9144300d120c65c4b42c","sha256":"67708d6e57378d6d5e4263cb53e665867323218b6af5f46766ad0afd1f00b68a","sha512":"2000cf7d76eb0c8d91b70faf4f6b5f1e5498311c21d6dcd86576c294cd2dad8025ab4daccce1fa2552af8ab2215fb9167c747173c0c625fed2bb9f7848570b63","ssdeep":"","tlshash":"49a012d66580ad26c14a0236c1a04120f8341056412201700043cc110912e44c2e4942","first_seen":"2026-06-24T19:50:09.490738Z","last_seen":"2026-06-28T13:11:03.720543Z","times_seen":17,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/36aaf9d54bb7f7f2.css","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://registers-virtualsfi.live/php321/","date":"2026-06-28T13:03:25.827Z","timestamp":1782651805827,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /php321/36aaf9d54bb7f7f2.css HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://registers-virtualsfi.live/php321/\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:25 GMT\r\ncontent-type: text/css\r\netag: W/\"6a3ebdd5-43a23\"\r\nlast-modified: Fri, 26 Jun 2026 17:58:45 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gCuHLC6uMFrU%2F61cAwW0hEoPZG9D2gHfCrbmbIzJAQ9o11MaQZJExG25hgXbHiS4wGv7YVkgiHfZjstilGfZDBb9GEG8Wph5vuJsrv2jphI6zauKzJoR2pItJefyXKuNoyx63gbWfnSykFgh\"}]}\r\nage: 3568\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a12ce43a68eb23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":277027,"size_decoded":26208,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"5543576d42cdc767956cf564b763a478","sha1":"737bea776195fdf18c13507dcd6cba6c15d24caa","sha256":"cf20035842054bb3a6f800ccca4c5ec2615dfe7cc4570e5ecb214678c02dff80","sha512":"9936879b38065a850081b360196dbb75fe9e36e90261044a59c2cd0d2a16e6ed963830cd97445fd6f9d0efa433f95ea385fb09ea94934c36be360ea1a491ef94","ssdeep":"768:hy73l5ovja43GIP+1ey9ktRLD8QbVBiy/LDqsgCSMV3Z7eQNJ2o+jzEi8JFbX11r:8F199yHnbkiiAMrYPV6rMrjmkB84t","tlshash":"da4400d5bd6cff3e693b647d36c4849c8d8778a2cc40879fe82530de19d979820a364a","first_seen":"2026-06-28T11:40:58.538508Z","last_seen":"2026-06-28T16:46:39.436457Z","times_seen":28,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/2aad71242bff6512.css","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://registers-virtualsfi.live/php321/","date":"2026-06-28T13:03:25.831Z","timestamp":1782651805831,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /php321/2aad71242bff6512.css HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://registers-virtualsfi.live/php321/\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:25 GMT\r\ncontent-type: text/css\r\netag: W/\"6a3ebdd5-53e\"\r\nlast-modified: Fri, 26 Jun 2026 17:58:45 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7mzFZb4%2FQilDMU0ABDG77Qm2fmt4IPTjzinakmdnnPu8IgOWMNVDeqlcjLG8L69bz6E3rIta3GurcLxKsdqKMCmT1B%2Fs3adbCL9Ku76NIpYtLDePBe70vTUNaZnrbMB9jOjIu0jThHOraGQ2\"}]}\r\nage: 3568\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a12ce43a78ed23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1342,"size_decoded":1146,"mime_type":"text/css","magic":"ASCII text, with very long lines (1342), with no line terminators","md5":"bcb0d1da74630c7bacedf3a75d8ea18b","sha1":"04cd42e37538f4f45e16385ed48fc62df29c11da","sha256":"50f8cb7242f9ceeb2a7963187eade77b11f2974c73244e9bd8c607edd800a87a","sha512":"d4149fa76b2cf63562cf10fd59c2f12faecb6d9aff425313552097b28af8b0db6e57a42a69be3d9b608ece12e1a329ade67e3de3ceeece22ffd4dfef7d9199b2","ssdeep":"","tlshash":"022150200a1d999de670bdc237853f631d6d64148ea91d32f32702698dd787a32a17bc","first_seen":"2026-06-28T11:40:58.567103Z","last_seen":"2026-06-28T16:46:39.445195Z","times_seen":28,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=a12ce40b8ea623eb","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://registers-virtualsfi.live/","date":"2026-06-28T13:03:18.589Z","timestamp":1782651798589,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=a12ce40b8ea623eb HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://registers-virtualsfi.live/?__cf_chl_rt_tk=BhMF4bwkPmaS9phCmVPh4WoBH_srR1aw3alvwHp1Ox4-1782651798-1.0.1.1-XNzNhj0yEdOR0jBK2JovBwYDcBV7azPica.oAjXy4ac\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ncontent-encoding: zstd\r\ndate: Sun, 28 Jun 2026 13:03:18 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: a12ce40d3eff23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":216621,"size_decoded":77858,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"01f5d7c1872d2b44aed0a2df1cd69be2","sha1":"7340187d3a3cecbaf0f03006928efc646e0cf9fc","sha256":"e19055d82abfae9b4bf2d86e2338ab29b949c9d46a299edc2b7f0340fe1bcac0","sha512":"f95681423b8bb0b0f922c330348e58622cb53e0e08168f4609eb51bbb27b57bcaaeee02c43cf2b354841b9c874b7c19b63c8de564686a1da09b22d8a870917be","ssdeep":"6144:5AMx+wRvdKQnUPIStDMXOCII9M109AVNvOrWg5ZHcNBd+ONvZ98fLOf9/m55ZfMv:36HTK+HPD","tlshash":"9924c7cf75c27416122764b4c42ff08ea16d0dc0861c2d2ea96186e07a7cf7d9b7faa5","first_seen":"2026-06-28T13:04:06.732838Z","last_seen":"2026-06-28T13:04:06.732838Z","times_seen":1,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/cdn-cgi/challenge-platform/h/b/flow/ov1/696527360:1782648014:9d2O0z3myJv4qbZfR7y4-7FH_SdDggY7nf2vir9BYug/a12ce40b8ea623eb/bspW0U_LsmUddLiRY3crnfUlRwU5EKZfGfOW_vTyI6k-1782651798-1.2.1.1-4Ta7f6B9c_OGab2.c6tgoJE9ST8GNWVIx2kx1cVtmwi65R1oZ9iY3jp6mn4DLh_K","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://registers-virtualsfi.live/","date":"2026-06-28T13:03:18.902Z","timestamp":1782651798902,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/696527360:1782648014:9d2O0z3myJv4qbZfR7y4-7FH_SdDggY7nf2vir9BYug/a12ce40b8ea623eb/bspW0U_LsmUddLiRY3crnfUlRwU5EKZfGfOW_vTyI6k-1782651798-1.2.1.1-4Ta7f6B9c_OGab2.c6tgoJE9ST8GNWVIx2kx1cVtmwi65R1oZ9iY3jp6mn4DLh_K HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://registers-virtualsfi.live/\r\ncf-chl: bspW0U_LsmUddLiRY3crnfUlRwU5EKZfGfOW_vTyI6k-1782651798-1.2.1.1-4Ta7f6B9c_OGab2.c6tgoJE9ST8GNWVIx2kx1cVtmwi65R1oZ9iY3jp6mn4DLh_K\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 2295\r\nOrigin: https://registers-virtualsfi.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 \r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: Kr5HPzP6gZHhq+Cj6aQ4jvyARo/zOJNUk0oPXeSyfFc=$ruFu+iT5a5aurAywwQ2Ynw==\r\ntiming-allow-origin: https://registers-virtualsfi.live\r\ncontent-encoding: zstd\r\ndate: Sun, 28 Jun 2026 13:03:18 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: a12ce40f2f7d23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19232,"size_decoded":14850,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (19232), with no line terminators","md5":"30026ecb39434ce890303b464afb21cb","sha1":"b1e164eedfe33a70ff78cd85eedbd59d0ada79eb","sha256":"f64080d144bf8853a217d4219269f3b64a32f3b462a08d37f0fd849e93711b75","sha512":"63518f38a5440cbb5fe2ea324994353f1beb9e58140f0e6e030214c8e098c69afd79a1f87f8035405497517a8fedfe84d8cae289b7c6a2997388bbc58469fa6e","ssdeep":"384:2geTY1uoalPJ4Zn9f5tOqj2Uv4PMuPZyWzDiLUEInZQASwq+7:2ggYuocPJ4/5KUv4PMukWzBbSXQ","tlshash":"ed82e0cff8a13a9641ff9b1e601ee19c6e144f7870150328619dd59b1a8f0612b2ac6f","first_seen":"2026-06-28T13:04:06.733766Z","last_seen":"2026-06-28T13:04:06.733766Z","times_seen":1,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1022166842:1782648016:EOKH8QvoUSOKg41iakUNyoOIEU6U3nncr5Ho3yWMwhs/a12ce40f8a5d5697/CQdbRYAcWyWtr6jp0WOKHEUDOsRSu1VXs4JsrTiM58s-1782651798-1.2.1.1-lrfUItjW2t.m9htwtFEqnQOb1yoSetjv7KCzA3IkqbzyOTQk3GPp0iKuwyOC_sP_","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.94.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-06-28T13:03:19.336Z","timestamp":1782651799336,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1022166842:1782648016:EOKH8QvoUSOKg41iakUNyoOIEU6U3nncr5Ho3yWMwhs/a12ce40f8a5d5697/CQdbRYAcWyWtr6jp0WOKHEUDOsRSu1VXs4JsrTiM58s-1782651798-1.2.1.1-lrfUItjW2t.m9htwtFEqnQOb1yoSetjv7KCzA3IkqbzyOTQk3GPp0iKuwyOC_sP_ HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/gwmjm/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\ncf-chl: CQdbRYAcWyWtr6jp0WOKHEUDOsRSu1VXs4JsrTiM58s-1782651798-1.2.1.1-lrfUItjW2t.m9htwtFEqnQOb1yoSetjv7KCzA3IkqbzyOTQk3GPp0iKuwyOC_sP_\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 4706\r\nOrigin: https://challenges.cloudflare.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 28 Jun 2026 13:03:19 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: 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$SXZJeJAmnt5R5NyfrjCCzQ==\r\ntiming-allow-origin: https://challenges.cloudflare.com\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: a12ce411dc735697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":383600,"size_decoded":288980,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"4af5b7fbcf054f483931352b6ef4923e","sha1":"fd248d7165b845992ab2574db83410c67c36207a","sha256":"6ff1f3664b684143ab7affee28bf59f6f4fe3a26ee4f5ac846d3a3dc2ef88d64","sha512":"b8f6dc2744efd10722fbbd80d3ef9cf264f7a2eeb3509f434e4b3580af00c5ea2499fd8bdacf53ffedc77308ea73f2858339cfe0d1426d00b38480aa798e6b7f","ssdeep":"6144:f+h2O0zS/YL9w1fYHLcSyWPDwarKcvZCOLanz1aptThwWUxrPyot/ZjM/b:f+0zSQ+1gHLZwkxLanz1apF6V9P7ZM/b","tlshash":"998423b10a733a5f9a67ed7d81a36e1fed58df9844a680b47bf53943820dc840d3c85a","first_seen":"2026-06-28T13:04:06.734643Z","last_seen":"2026-06-28T13:04:06.734643Z","times_seen":1,"resource_available":false,"data":null}},"time_used":173,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":168,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T13:03:25.518Z","timestamp":1782651805518,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /php321/ HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://registers-virtualsfi.live/?__cf_chl_tk=BhMF4bwkPmaS9phCmVPh4WoBH_srR1aw3alvwHp1Ox4-1782651798-1.0.1.1-XNzNhj0yEdOR0jBK2JovBwYDcBV7azPica.oAjXy4ac\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nSec-Fetch-User: ?1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:25 GMT\r\ncontent-type: text/html\r\nlast-modified: Fri, 26 Jun 2026 18:28:34 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=D6Oak8x2yAo%2Fm2YLSrFWjuwN2CdASqIGAdZ8wmGYFkaOeg%2B6belA64I09i%2F%2Fuu%2B8M6%2BSblrbfp4AeC93hsdTR85q6x7%2FDLaPwjXSkwEuEjUHc7c2s%2Bo1%2BDe3MQRkyJyfUjI36BOc0FD6IwuK\"}]}\r\npriority: u=0,i\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: zstd\r\ncf-ray: a12ce438788123eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.6.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":112569,"size_decoded":24692,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (426)","md5":"9f97dc8a1c86deba2b5a4b535fe20efb","sha1":"0277828643079a9756eec1f7f4ba74e21956a621","sha256":"104822e20bb62a9bdb9c22cb5aeae1b920b41fe45b6cee7298bfe058a8587740","sha512":"88edd3c104f2adf47ed92956307e4bf3e79546bf9819afaa389a28330683b50c636f90b62c6c1d79372a1c58608aa5e854213f34888a2770e6943d9fdc20aee3","ssdeep":"1536:H0txluWyXcLo+TVr5Mf2SJ/fYuSTEnhv8CIcuvzoCWa:H0n8YuSTEnPJa","tlshash":"1eb33d91b76201345c2f836ebbebdb1b62319043e906ec1df5ed0448df899e8a96374d","first_seen":"2026-06-28T11:40:58.543533Z","last_seen":"2026-06-28T14:40:33.843642Z","times_seen":26,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"registers-virtualsfi.live/php321/afd72e0175be5fd7.css","fqdn":"registers-virtualsfi.live","domain":"registers-virtualsfi.live","tld":"live"},"ip":{"addr":"172.67.207.39","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://registers-virtualsfi.live/php321/","date":"2026-06-28T13:03:25.830Z","timestamp":1782651805830,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"registers-virtualsfi.live","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Jun 2026 21:28:15 GMT","end":"Mon, 21 Sep 2026 22:25:50 GMT"},"fingerprint":{"sha1":"BA:AA:65:DA:D8:C6:55:D5:5D:0B:C9:FB:F6:3A:72:7E:A5:D9:7F:2F","sha256":"51:5E:89:83:18:39:D3:3B:F9:7C:0E:25:35:08:09:66:05:4E:09:1B:3F:2C:A8:21:C7:12:B4:18:A1:2D:63:61"}}},"request":{"raw":"GET /php321/afd72e0175be5fd7.css HTTP/1.1\r\nHost: registers-virtualsfi.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://registers-virtualsfi.live/php321/\r\nCookie: cf_clearance=olC.h1M7lEtz4gbUvQT7Sk56B7tZRO_QbCc6TdVdEes-1782651805-1.2.1.1-QQLZkzw.sjNR5hxJfejNf2ZwMeyRFEnpsRrl7jyp4jok0CDt8rv4EACUoIqOVdpuGHwVz8gJ2gDthBQU6HkYjpLltLQD7tHGBG4CJ_eSMRwSzX8YTTMU_TUIzNwHon3nhZTv3hDg.SVh4zlYb7EHBgp0eZSdx7fDsd9md96I75MvhYfD134v7Gg8tAumioE2doCZDTCfecaQ60gSa0_ceLqmHuqUI0v7_NKrpupsiA5DmhCTIxFhqzeF6lQSAYwe4s5suGNiPltyEI5HVI_9RT0xI7yF40acJptKaOSNDiZGUAGnHstTZuWj2zP68U5UonNKMO6aqyUk52gn_Kitui2rFN3IHt9RznwzBPj_nGaKbUA6iHD3iSR.5aCAFZcTx5_cvzwyea7458EbZ15So1CkJPzNiVnqShgMJr.jV.HL7Fv_MQgU5indkPh3QtjUs1On__xQPEWV7owk5naaG0uQalyUoAljsuG9UKUCnJbc7kVdcUuyhMcymHy.X1DI\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 28 Jun 2026 13:03:25 GMT\r\ncontent-type: text/css\r\netag: W/\"6a3ebdd5-2988\"\r\nlast-modified: Fri, 26 Jun 2026 17:58:45 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=k2Qs3nlg3IQ0x%2Bfge9%2FyjbJ60TJ%2FUr5Nk3Wv12LxQUQ6wAQDpbG%2FQ3NtbUWB1F9kfJ5%2BhYt08quW7yCq%2FEp0fdCWrZXp44oCKae2%2Fhvg0WAPtm8v70723OrAQLe%2BUl63whdykpscHL9ZPchD\"}]}\r\nage: 3568\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\ncf-ray: a12ce43a78ec23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10632,"size_decoded":1474,"mime_type":"text/css","magic":"ASCII text, with very long lines (10632), with no line terminators","md5":"ae78876e3e0cc8e2db7b2047ef64b22c","sha1":"67f605ffd0bd4fe3ae8484db97d200ca288fb034","sha256":"a25794a8f56e3591ce2751d8fccb2543fc21efd1639570e498a1c65029a34951","sha512":"27dd70b313f57011896380d5640dbecfbef634e95c9873f65a789817d4ebc3ed420f16946ce7da6666f1cb4713380981be9d877cfa0b60e3168b2223c9e63a16","ssdeep":"192:+L8xbYvx6YkxdYZxEYGx3YLxuYQxZYyUxipDJYSxTY8y:+L2s5D+ej9woVX6ayuipDKMk1","tlshash":"c62266344039905ec975fcd231cebf133d7c941945d88922aa2c966a8fdbc6b72e1f68","first_seen":"2026-06-28T11:40:58.547582Z","last_seen":"2026-06-28T14:40:33.816481Z","times_seen":26,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-28","alert":"Sinkholed","trigger":"registers-virtualsfi.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"103.101.85.74.sslip.io/php321/30yid7.php?v=2","fqdn":"103.101.85.74.sslip.io","domain":"sslip.io","tld":"io"},"ip":{"addr":"103.101.85.74","port":443,"asn":200239,"as":"Bogahost Bilisim ve Telekomunikasyon Hiz. San ve Tic. Ltd. Sti.","country":"Türkiye","country_code":"TR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://registers-virtualsfi.live/php321/","date":"2026-06-28T13:03:25.834Z","timestamp":1782651805834,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"103.101.85.74.sslip.io","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Jun 2026 17:00:26 GMT","end":"Thu, 24 Sep 2026 17:00:25 GMT"},"fingerprint":{"sha1":"57:1E:10:1D:AA:83:E0:46:F8:9C:74:53:C1:5B:83:E2:15:40:71:F3","sha256":"E8:0B:E0:EC:D6:B8:A4:AF:5F:70:8D:D8:6E:D8:01:DD:9F:5B:E1:DC:7E:45:3F:8B:C4:E9:B1:CE:99:E7:C6:5D"}}},"request":{"raw":"GET /php321/30yid7.php?v=2 HTTP/1.1\r\nHost: 103.101.85.74.sslip.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://registers-virtualsfi.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Sun, 28 Jun 2026 13:03:25 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nAccess-Control-Allow-Headers: *\r\nAccess-Control-Max-Age: 3600\r\nCache-Control: public, max-age=3600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":366207,"size_decoded":366549,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (45510), with no line terminators","md5":"1fa3b181483f537fbf92c1e75d929fca","sha1":"ccb86c5a2b7203899c5ff96e24dd267c9e4c86fc","sha256":"9f7d332848b3e4e5e986e65513f24c49a3eab817dce93bc6550ed15116e31efa","sha512":"bd92c28780832b38ec2b7618767711b4d28e4a3a602f137ec07843bdac7b2a724df910992656d5ec6c0b8a880421d4807ff2cfe9cc9f8377efc3eb1ff4f7a66c","ssdeep":"3072:xXlCroHGp/UrcP/ZE1LjQ/102U6XwuI3uqMNgefXsoLcD16wvQ8YDBgqD:xXlCroHgUroZ4jQ9UF3N160SL","tlshash":"ba7485c9eb53809c8d99119e8177f849e4554d67ce2c78a3ee0ecdc2252ab7b808717f","first_seen":"2026-06-28T12:56:22.765803Z","last_seen":"2026-06-28T13:47:37.251556Z","times_seen":8,"resource_available":true,"data":null}},"time_used":311,"timings":{"blocked":-1,"dns":3,"connect":43,"send":0,"wait":85,"receive":132,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}