{"report_id":"7590d45f-e8fb-4608-9cac-8ca5ddbdeffc","version":6,"status":"done","tags":[],"date":"2025-11-28T11:32:30Z","url":{"schema":"http","addr":"www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"104.21.17.156","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"title":"jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"104.21.17.156","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-02T11:32:30Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":12}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"www.lone-horror.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"js.capndr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"ur.foretopheaved.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"ur.foretopheaved.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"1c0ec60324.e7d783f480.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"na.nawpush.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"js.wpadmngr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.jumplixytd.com","ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-09-26","domain_rank":0,"first_seen":"2025-10-01T09:20:56.393087Z","last_seen":"2025-11-21T22:56:54.321906Z","alert_count":0,"request_count":9,"received_data":2859879,"sent_data":4762,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-11-23T22:16:03.791483Z","alert_count":0,"request_count":1,"received_data":431789,"sent_data":439,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"js.capndr.com","ip":{"addr":"45.133.44.53","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2021-08-30","domain_rank":156902,"first_seen":"2021-08-30T12:51:01Z","last_seen":"2025-11-25T05:53:36.876964Z","alert_count":2,"request_count":2,"received_data":104946,"sent_data":853,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"nereserv.com","ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2020-12-21","domain_rank":17097,"first_seen":"2020-12-21T11:07:56Z","last_seen":"2025-11-24T20:01:17.469929Z","alert_count":4,"request_count":2,"received_data":644,"sent_data":1132,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"bereave.onelinevideo.com","ip":{"addr":"47.252.7.200","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"domain_registered":"2025-04-21","domain_rank":486265,"first_seen":"2025-06-06T00:49:08.421363Z","last_seen":"2025-11-21T22:56:54.36706Z","alert_count":0,"request_count":3,"received_data":738,"sent_data":1594,"comment":"","tags":null,"fingerprints":null},{"fqdn":"1c0ec60324.e7d783f480.com","ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2025-10-29","domain_rank":0,"first_seen":"2025-11-28T00:28:42.223159Z","last_seen":"2025-11-28T00:28:42.223159Z","alert_count":1,"request_count":1,"received_data":345,"sent_data":847,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ads.google.com","ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":2062,"first_seen":"2013-08-25T13:03:13Z","last_seen":"2025-11-26T06:03:11.393058Z","alert_count":0,"request_count":1,"received_data":208,"sent_data":406,"comment":"","tags":null,"fingerprints":null},{"fqdn":"36946.phidonatome.com","ip":{"addr":"88.208.22.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-08-24","domain_rank":0,"first_seen":"2025-10-25T22:33:45.251193Z","last_seen":"2025-11-26T06:03:10.997192Z","alert_count":0,"request_count":1,"received_data":32111,"sent_data":424,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.tapioni.com","ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-05-27","domain_rank":177570,"first_seen":"2021-07-01T10:46:55Z","last_seen":"2025-11-24T14:17:32.239489Z","alert_count":7,"request_count":7,"received_data":1363206,"sent_data":2927,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"api.lixstreamingcaio.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-29","domain_rank":492115,"first_seen":"2025-06-01T10:17:55.903035Z","last_seen":"2025-11-21T22:56:54.774783Z","alert_count":0,"request_count":6,"received_data":6046,"sent_data":3409,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"lz.faenasturbit.com","ip":{"addr":"172.255.106.29","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-06-20","domain_rank":0,"first_seen":"2025-09-26T02:41:00.932867Z","last_seen":"2025-11-22T04:28:52.156256Z","alert_count":0,"request_count":1,"received_data":1517,"sent_data":434,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-11-23T22:17:41.224107Z","alert_count":0,"request_count":1,"received_data":18920,"sent_data":456,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"a.labadena.com","ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"domain_registered":"2020-01-21","domain_rank":266368,"first_seen":"2020-05-24T00:28:49Z","last_seen":"2025-11-26T23:23:38.045984Z","alert_count":7,"request_count":7,"received_data":7722,"sent_data":4612,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ntvpforever.com","ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2021-11-18","domain_rank":18811,"first_seen":"2021-11-19T01:49:18Z","last_seen":"2025-11-24T20:01:17.534969Z","alert_count":0,"request_count":2,"received_data":681,"sent_data":1048,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"na.nawpush.com","ip":{"addr":"45.133.44.24","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2020-12-21","domain_rank":175362,"first_seen":"2020-12-23T08:18:12Z","last_seen":"2025-11-25T03:17:21.327624Z","alert_count":1,"request_count":1,"received_data":1616,"sent_data":490,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"js.wpadmngr.com","ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2021-06-02","domain_rank":77954,"first_seen":"2021-06-02T14:43:46Z","last_seen":"2025-11-25T03:17:21.110122Z","alert_count":1,"request_count":1,"received_data":147581,"sent_data":426,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"sm.videqqwuieyui.com","ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2025-08-11","domain_rank":0,"first_seen":"2025-10-25T09:37:06.805519Z","last_seen":"2025-11-24T20:01:17.467763Z","alert_count":0,"request_count":3,"received_data":757531,"sent_data":1683,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"www.lone-horror.com","ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2025-11-19","domain_rank":0,"first_seen":"2025-11-28T09:11:42.22221Z","last_seen":"2025-11-28T09:11:42.22221Z","alert_count":2,"request_count":2,"received_data":208206,"sent_data":924,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fp.metricswpsh.com","ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2021-10-29","domain_rank":154722,"first_seen":"2022-04-22T11:20:32Z","last_seen":"2025-11-24T09:06:35.427616Z","alert_count":2,"request_count":2,"received_data":829,"sent_data":1072,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"driverhugoverblown.com","ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2025-03-12","domain_rank":75021,"first_seen":"2025-03-30T06:27:07.780857Z","last_seen":"2025-11-24T20:01:16.868269Z","alert_count":0,"request_count":4,"received_data":161916,"sent_data":3024,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"bvtpk.com","ip":{"addr":"172.67.154.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-03-16","domain_rank":37068,"first_seen":"2025-05-21T11:34:02.786268Z","last_seen":"2025-11-26T06:38:36.494271Z","alert_count":0,"request_count":1,"received_data":111511,"sent_data":411,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"my.rtmark.net","ip":{"addr":"172.64.146.234","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-10-29","domain_rank":43911,"first_seen":"2015-02-04T09:54:57Z","last_seen":"2025-11-24T02:06:56.360613Z","alert_count":0,"request_count":1,"received_data":841,"sent_data":443,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"accuratephrase.com","ip":{"addr":"188.72.219.35","port":443,"asn":35415,"as":"Webzilla B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2024-08-07","domain_rank":440697,"first_seen":"2024-08-17T02:04:15Z","last_seen":"2025-11-21T22:56:54.992662Z","alert_count":0,"request_count":2,"received_data":39326,"sent_data":1074,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"accounts.google.com","ip":{"addr":"74.125.205.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":103,"first_seen":"2012-05-23T06:57:57Z","last_seen":"2025-11-23T22:41:16.042989Z","alert_count":0,"request_count":3,"received_data":6889,"sent_data":1782,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}]},{"fqdn":"122da.com","ip":{"addr":"139.45.196.63","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2021-09-06","domain_rank":0,"first_seen":"2025-11-21T01:21:52.727468Z","last_seen":"2025-11-28T01:30:49.248186Z","alert_count":0,"request_count":1,"received_data":833,"sent_data":602,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ur.foretopheaved.com","ip":{"addr":"188.42.241.109","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2025-07-10","domain_rank":0,"first_seen":"2025-08-13T14:30:31.596497Z","last_seen":"2025-11-26T06:03:11.035592Z","alert_count":2,"request_count":1,"received_data":1424,"sent_data":433,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"29405492-36946-ex.uncocleypercha.com","ip":{"addr":"88.208.22.3","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-08-28","domain_rank":0,"first_seen":"2025-11-28T11:32:33.885997Z","last_seen":"2025-11-28T11:32:33.885997Z","alert_count":0,"request_count":1,"received_data":2454,"sent_data":1405,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"enrtx.com","ip":{"addr":"94.130.197.239","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-10-07","domain_rank":18023,"first_seen":"2024-11-04T09:19:58Z","last_seen":"2025-11-24T20:01:16.6109Z","alert_count":0,"request_count":1,"received_data":4493,"sent_data":500,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.16.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-FZ6E2FXG92","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"295bd441646eea1d0905d9d254685e5f","sha1":"c5690b026a4492ebe0a88f276df6b889da94c841","sha256":"bf679c5a7c2e98b502f0e8160b971f5898ccdf62fd4820f3b3775529b868cba0","sha512":"866454b0b39356bea759f16bb28340fb6aaab9daafae9b35236b243b2d7c2b72fabb9da7d45d7d19a157cc407e579b82a240171a0605906ebbceceb7cef40c22","ssdeep":"6144:X4JxtBUKitJeUI2XVUULUVWo6O7GQEO7QZ2ElVFBoOr+Lu:XOxPDi2UnVUUtO7QZ/","tlshash":"19941ace73d674225396f078502f018ba57b28a2b45cc896f1c9cde12e74a9a4277f7c","size":431185,"data":"","first_seen":"2025-11-28T11:32:39.451557Z","last_seen":"2025-11-29T07:40:25.00024Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","size":244732,"data":"","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/505818?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"ac9b24d63fbb2c2217ece16afafd690d","sha1":"261880f52c18d4e45d9313a432611389b6df13ca","sha256":"0df3ec836d26376ab32fd1f3a3a29860d9b5efb039ea2ee3ffdf3de659ba4f82","sha512":"05237c79812e67a45de37661a57865ab4849113ef6c6568e93e939f777e0764c1db061924c945f6e9317206074e54c8c38de27cf02addb1bfbd1b6b381cb4435","ssdeep":"","tlshash":"0f0102c5979ca5ff5744a0a3cd3d4fb68b8d493d2714601efb24834b58db28243b029b","size":661,"data":"","first_seen":"2025-11-28T11:32:39.486138Z","last_seen":"2025-11-28T11:32:39.486138Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.wpadmngr.com/static/adManager.js","fqdn":"js.wpadmngr.com","domain":"wpadmngr.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f53567558bdea644af1ba8782f7bef6f","sha1":"427ef1766f7e2c19847cbde1e10cabd6c73db7b4","sha256":"ce967986ad0d59087854c3e9cfc27814a9b7eca95aee2ce82d9fe9e0929a0ca6","sha512":"3558bc6b343a3bc9de9e552b36619aa00167fbf5f11d25f2b23accdef7e1898e66416edf7f0c478d73abab83dbe03de19e4f0457d26abb5aefe1431f670cff1f","ssdeep":"1536:OpOPpA6P9rHRFts5dWmj6zzKEpKf7JbcacZwJ8jBl8Q8MdnCW9212FoXV0jtQyET:U6FDTts5dWmOzGoKFoaswoRebX","tlshash":"37e33adcb2d2b07407e75099d43f1206b73a1a16b80c9058f6a6e9c17878ddb5237f7a","size":147193,"data":"","first_seen":"2025-11-27T13:47:15.836385Z","last_seen":"2025-12-02T14:58:27.680717Z","times_seen":117,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/vendor-chunks-dWl4zWpl-1764298795951.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"df23f828155ae662baf85ef31c309a12","sha1":"afddedc8deb2e2aa6a48fa4df697dcc60144bcf5","sha256":"14fbc3ebaec599975af4f855d9b24a517d7325085e53c4f30ef90f7f7a521165","sha512":"0513b6c591ff9f88f2ce45805ab76f5af3cffeee44ef1ca31bd86ed4b419854609118e421a93800c80cfcf9bb2cae3ddb40373aca3aa65716c9f72d6c7803f00","ssdeep":"24576:Fqszmatc0Ox3S4MAM/H8r6iDSJMLlvDOB31Z82kzcbGKlCWRWV:Fqszmatc0Ox3DMx/H8r6i+qvDOB31Z8P","tlshash":"1a454bd932a67062879361a4503f5207723a7d16248cc05cf63bf9ea2eb8d09647bf7d","size":1251671,"data":"","first_seen":"2025-11-21T02:27:40.844627Z","last_seen":"2026-01-07T02:54:23.237138Z","times_seen":183,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","size":244732,"data":"","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494246?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"e146e9acd761ac37eefa9487d1ce4832","sha1":"61c85c3133fe98d8429950d4e7e4667998ffcaac","sha256":"896df2505a7a41b8746fe31dc70cb2d393d6ddbbfdaba3a965f145ab1f805212","sha512":"3803457a89f9f4026ceb8fb7151c5af724bfb53f2eee469bab95e58e614b274b423ea3f45903576d12c6ece380e6195b0b13b27b962781950dacffeb8c834760","ssdeep":"","tlshash":"1d0102c19b9c96ff474490b3cd3c4eb74a4e45792714600afb34830f58ce282436029b","size":661,"data":"","first_seen":"2025-11-28T11:32:39.494361Z","last_seen":"2025-11-28T11:32:39.494361Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494333?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"3a49b6824dc469eed4e022b054809596","sha1":"29d61e888844fcabd451914c0acfa874dc0d612a","sha256":"7375f43efa837a0f2cf1756ba6fc9129f4fa6a3ccb06d87832db26cb52200f74","sha512":"bf6a55e9df6fc8e81fb528a419a66063ba88b501982c2eddf4ad40411667f9a5ceb4debb0b885da86ff78d282ea46c7db8a9c1836a9c6a935f43cc1446ba2ab0","ssdeep":"","tlshash":"fd010281979c96ff9748a0b3cd3c4fb64e4d46752758601afb75d31f54ce282436029b","size":672,"data":"","first_seen":"2025-11-28T11:32:39.477867Z","last_seen":"2025-11-28T11:32:39.477867Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2e29b0b0cdaba10f42b15e3017fb6278","sha1":"d7b0b36b25b9370c3cf3059865c7fc3c0e4b9caa","sha256":"5dba624e51912e6b34ae4e02ae731bbca21d51b40f1f103a87cf89fe834062c1","sha512":"6b2917ae873efb8bbbd53376f7e905ce8489780cfe1cde60601aa915bc4142d35db232b8b28bfc86e0ee35b30c1bc0b4a47060b6b64944ebd1bbb0b0727a9e81","ssdeep":"","tlshash":"f0c0c0b474a49030002800d9307bc7ea3c34320c769370c0c4cdbc1c9d74fd30492c64","size":188,"data":"","first_seen":"2025-11-20T16:58:31.663561Z","last_seen":"2026-02-10T09:20:19.782146Z","times_seen":220,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bvtpk.com/tag.min.js","fqdn":"bvtpk.com","domain":"bvtpk.com","tld":"com"},"ip":{"addr":"172.67.154.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5db44a9e44e1cc23c4aa2fe5bec72806","sha1":"6dfd0daadabf9945f194dd4737c06a60edc7f6a8","sha256":"9c4ad772249940629b6d3d86bcbfd1797b02dc5a7270c6f84bdef9584b307920","sha512":"68014553b16a7c1958e632548218489082fa08342de98a91fa43f3c5ca436173cb3e19a8d94f0f14f6afb1d63714fd0750038adba5546fe407109ce900b85664","ssdeep":"1536:TX3SvSfBAcXOXtDRQI+LNfU4IICZx6v8HN0SDhfkwdB7U4jMlDHQjN7TcstXQMS:TXC6J0xRJ+LmdIOxP0SNzjN7TcstgZ","tlshash":"50b32bd672667469126e90244597ec0db5be8c80048d8db8f0e5fc722d74b22e3f7be9","size":110320,"data":"","first_seen":"2025-11-28T11:05:14.122888Z","last_seen":"2025-11-28T11:32:39.472101Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"36946.phidonatome.com/4/js/260941","fqdn":"36946.phidonatome.com","domain":"phidonatome.com","tld":"com"},"ip":{"addr":"88.208.22.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"fc2d9111111dc502a81c12b4aec0adb6","sha1":"b0f758a02beb133eee77a448e7194216a2f44109","sha256":"fbd56fb6b198d3a73954b7811258f3a5c1d666e4de3637eab95467eb193012a2","sha512":"2b3bfb7198db442542d2da881617c661c61943be656389c21699bc2ec42495cc951cb793255d3987e9d3ab0f679e52bfab0ddde3776f09eb44a910db2b8370bb","ssdeep":"768:HiYmbr/4nqZVnyTPxVC2/R3hMwsZwJmvnDY87bBZzBPZvzXRb7iGqj:CdyxnufF3qj","tlshash":"5ee22995f996703043f7187a403f521af3361a94789e8460da2b95822c66fcb837bf7d","size":31409,"data":"","first_seen":"2025-11-28T11:32:39.483503Z","last_seen":"2025-11-28T11:32:39.483503Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.lone-horror.com/ecc874/e9b0d9380c75.js","fqdn":"www.lone-horror.com","domain":"lone-horror.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fb8aaf6a5b8c4ef895e868cc5a15ddf","sha1":"67995827b53c5ed65271ec387500fafad446573e","sha256":"dabf621abbed022db13a93c9d568b63f217a2e20c7fdea70450f9e4bfc8a3c45","sha512":"25ce7c4a69c6ebf63dc8e41e373bbfc63dcc19cd503158dcacbc90458309a01968dde13475b4088e85fd721536a113ba59c51647bdbc80f3e0bbf454b61e1315","ssdeep":"1536:rM+iZ3YOYuyx6PUQwRxcs8P3nhkQ8vL7T7Q6eGozzwVEnHzHRbPv920:OijxEQq3P5Enne9zkWHLh","tlshash":"e5a33461350b64fd2ad0c1e7eb6b20886c295810e469cca1ecd1d7c7d6eb8e3429b5f7","size":103672,"data":"","first_seen":"2025-11-28T08:10:28.426616Z","last_seen":"2025-12-01T07:51:02.537707Z","times_seen":80,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/spots/494334?s1=1952377772555378689\u0026fs1=1\u0026i=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"d6f2fa5359acacbdd745f68c445a4774","sha1":"ee6d7bcdcf1be86739f2741cfe7383aae29447f5","sha256":"2072858d21ef6434e3d6d81e93b8bfcb704caa605c86222fda8bb0359b00a5e2","sha512":"7c0f8a6dd733c82ed84d9382c1c321579b35c940d934389ca1bb234a29ca45c4159f761a02c43d59af239602f6aff1305a475cdc6a7cdedb9bdb20396f785fe6","ssdeep":"","tlshash":"c1517584d6fc6326f62b10b0dd7acbaf551ea14192198075efb726aac3cc64c06713ca","size":2573,"data":"","first_seen":"2025-11-28T11:32:39.473043Z","last_seen":"2025-11-28T11:32:39.473043Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","size":244732,"data":"","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/on.js","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"01eb90de8b9cae60f8249051851429c0","sha1":"46842488b632183e17db67fc770e8981ab65a408","sha256":"0e33abdedd783b4a54ba4c5ead7374710500cbd0ee7fa4385e30d34504a18c2e","sha512":"194ef71e72abddcf3f2785186ec746cf4bb70b36a4b2a1d73a64f7d2a26e18cb47d0b0909b60143b35ea90ae058f9318206fb92010f0e15e725096d0a0a22050","ssdeep":"1536:Sg5PgW/NLSDi++yD8FT35G+WgEo0iYlRluYUh/TZEW4fSW9PNCjv7E1yrKfk9j4y:Sg5Ei++yD8Fb5P5BYUROWOP5k94i3","tlshash":"93e3e7adbba620360a479c39f83f5656737f58d3f14d00008c6ae1dc6a3c60be269f65","size":154163,"data":"","first_seen":"2025-11-26T08:32:02.425626Z","last_seen":"2025-12-01T13:07:03.225531Z","times_seen":157,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/main-Gb0ezMPB-1764298795951.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1e22c97f0fd577850028e349a17bd4b1","sha1":"9f70183e6d418d8274f980fceeec6e79a8d8fb0c","sha256":"f314a2df3d74feac54ffc1655298a94c36383cad57ff8559687b8a15d26fe69e","sha512":"0929c3b668485948473a2b684bc83f88e3875b8306bda1497b1c0a57737d181babd958b6c769989031c54bb983da2fbcbffc01667a4a7e3713e4bcaa86554155","ssdeep":"1536:K0/qDHfrLF4j8/bHqmFfoETDrbsUSOBK/C0KD6tWF/FsuT3ue+/rRjJ:KfDHHF4j8zHaY3SiSt+3ue+NN","tlshash":"24937dfd60198f3ce96104c1743a953478193b6bfa28c891f0fe3c125b94d4a59aabde","size":93512,"data":"","first_seen":"2025-11-28T06:41:44.70537Z","last_seen":"2025-12-02T01:56:26.1273Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/adgpt.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6eeaffdefdb53307fb688341ffc4c7b9","sha1":"946285cc6c7d5585687d0e0fb40214ceb826a7ad","sha256":"139f98f4a6be98965fb059d55ee25cf2f9ddb916e7700b6d904db3217b182190","sha512":"b1c8c974b81e8b117e6c0e32dffdd8e52fc8724485279d6b631fc0a3adce21cbe5cf0b0e2f105b59085224b0d8150a56e496337273c1f7c3a662fefd293cfd74","ssdeep":"","tlshash":"704113ee25a0fda0179b714c202b180af0ac35e0e3ace8c69fb984b47d3d6441111aed","size":2382,"data":"","first_seen":"2025-11-25T12:42:17.622959Z","last_seen":"2025-12-01T11:11:10.708693Z","times_seen":69,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/505766?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026ab=1\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"f27bc06f12d73b870efbe6150f7e9ea0","sha1":"84f0fd1b72ced4db674c2c5db350a1aac6282924","sha256":"7da36866088ef9d892150da635cf5f8874ea2b44b9e5f50fa0b56d2cd1db0b05","sha512":"a67240ce1e1c72441066aea3d40054b37d2e9378b60db8df1804bf6705cbe189d5d349cd0332fef6be60561f42a6efaa64787ea3f1ab8336489256a753d0d245","ssdeep":"","tlshash":"6a0102c287ac56ff574850a3cd3c4fb68e4d45393714601afb38830a59cb28243a029b","size":660,"data":"","first_seen":"2025-11-28T11:32:39.479567Z","last_seen":"2025-11-28T11:32:39.479567Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","size":244732,"data":"","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494298?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"4d9b9d7590f029b11403ecf196950b38","sha1":"2b5f4f0e6c53f08400096e2592e7f77bfecc2361","sha256":"0d3b3a0620cbe373da6ac399aead30ec7b088a2847910aa39ba806c329a4fc21","sha512":"968eb1f9809e9a6ac5c533368b8208cef48485ad2c38812a939396831dbfe67c4a8dc4d7d3011539a92a1acac708dcb1a0a9d65e0de8487ad200c1d49625a8ef","ssdeep":"","tlshash":"2c010282879c96ff574461b7dd3d0fba4a4d453a2315704efb28c30a58cf38243a029b","size":661,"data":"","first_seen":"2025-11-28T11:32:39.487107Z","last_seen":"2025-11-28T11:32:39.487107Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lz.faenasturbit.com/sSB8ld39qI9j8pgT/130607","fqdn":"lz.faenasturbit.com","domain":"faenasturbit.com","tld":"com"},"ip":{"addr":"172.255.106.29","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"ec300000003000000000000000000000000c0000000000000000000000000c00000000","size":5,"data":"","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-05-31T17:21:59.96917Z","times_seen":14806,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c4b39905819a02943aab42aaa3ace049","sha1":"397c25ba91f8946c07fcd15b85dde33073d13cc0","sha256":"56b98849a8c00948afc8281671da6d0955145a28b9cab57cb3f3cb67803dc520","sha512":"45185272dd93386022e633bba5581ebd898db3eae1dac640eaab69d546c0f1037b10c423e2b94e8383cf196255c6fa96b4374e9ecad48cd30475491950b1e7c9","ssdeep":"","tlshash":"10c08ca82aab4c7110f73a428fbf21057016a3132090cd313e0eb6848f34e2bda94808","size":190,"data":"","first_seen":"2025-08-29T08:56:06.9123Z","last_seen":"2026-02-02T17:50:52.010918Z","times_seen":319,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"12dd498bf90c536803c2aad708b66c2b","sha1":"5f9363d39a405d1c94328cf2303ff4a05c0ad163","sha256":"c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a","sha512":"ec593a501ebf74c092e564a1aaf0b477d3da6813c9a88f29d0d2a0db8143bdf19718ba4e6b13f64295b077ca5cb9c13460c30f9f2f35982a82597b22f79ffdd1","ssdeep":"192:l3GySZoj5oOg8pu564aEzn5nVMnyk3sBakk3cx7x0IlQV0Hf1b5SwU+ahpfex/W9:lWytjU64auV0ISjyW5RAe","tlshash":"6f82b38cb295f0b553d710b5403f910fe2366928654ec4d8f288d5ea2c7899d663bf3d","size":17908,"data":"","first_seen":"2023-03-07T01:02:54Z","last_seen":"2026-05-31T12:28:59.273694Z","times_seen":7462,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ur.foretopheaved.com/r4xjjmZUr51mvyQ/RNklR","fqdn":"ur.foretopheaved.com","domain":"foretopheaved.com","tld":"com"},"ip":{"addr":"188.42.241.109","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-05-31T17:37:49.790979Z","times_seen":17242,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"javascriptURL","is_inline":false,"md5":"68934a3e9455fa72420237eb05902327","sha1":"7cb6efb98ba5972a9b5090dc2e517fe14d12cb04","sha256":"fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa","sha512":"719fa67eef49c4b2a2b83f0c62bddd88c106aaadb7e21ae057c8802b700e36f81fe3f144812d8b05d66dc663d908b25645e153262cf6d457aa34e684af9e328d","ssdeep":"","tlshash":"aa3000000000000c000000000000000000000000000000000000000030000000000000","size":5,"data":"","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-05-31T17:28:59.490411Z","times_seen":75073,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/get/2081141?id=2081141\u0026jp=_clgzdwnremyrhswaptcsze\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.642-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=aSygMFPaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9qVnVIcDhzeT9sdjE9cGlkZXAuZGU\u0026afid=3774801797430272\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026pload=3060\u0026rlp=%5B0%2C68%2C103%2C74%2C73452%2C8186%2C4102%2C6493%2C1%5D\u0026srw=1280\u0026srh=1024\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"07567ef6cbee09b02ac40887436da00e","sha1":"d6baf4313b9784eaeeb578de1b11557fa2dd54b8","sha256":"992b514639ebf037fd48e85cf41d3f2b41cd7b1bae324e8a9e0667fb786282dd","sha512":"e9515197c9df4f917966f931a06d69b79d09e47640c0794ecf1e9166bc327b1a565ea4b1ae7fd9936b0be7aef6e94df0779dcd15304e52354a0d84d3752533b1","ssdeep":"","tlshash":"996141bccf5ad842cbde154917be1f9590d5bafd5a2b0412d583b8e78f9843c8124883","size":3280,"data":"","first_seen":"2025-11-28T11:32:39.474412Z","last_seen":"2025-11-28T11:32:39.474412Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.capndr.com/popunder-admanager/build.m.js","fqdn":"js.capndr.com","domain":"capndr.com","tld":"com"},"ip":{"addr":"45.133.44.53","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1509fbdaaea7140eef282b2269d0da1d","sha1":"fe3ca88ecf7e0b63a642925c3665373392684799","sha256":"5f41cdd5c8f9d74cf20e9fa2aa520d0a93ba3c9c2e7e9a3a96a0b39f68f567a7","sha512":"327e11a9e78e66e6f10f8e8a80baac5235078871947882d9efa878ff45f26c55559acc0cb5fe67d8a77b7a8d081e4c43c1b04c93c67eca44d27efc1ec0a37e20","ssdeep":"768:uAiyOOIGF3vRzxnR0i+bhLrhL5xub8JwfPsEIyp+dZIioT9FeWVbuoUfwqNl10W3:zOOlBB0Fuu0Xi77dc/sknkU8JAwUi","tlshash":"0ca329ca32a1f4b006e244ea943b0216f33e1929740e905cb7adddd57919d4fa236f7e","size":104159,"data":"","first_seen":"2025-11-27T10:29:28.913429Z","last_seen":"2025-12-05T10:50:48.099094Z","times_seen":111,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/ip-push.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f6f9b6467d59082e63f91850e8ac1d32","sha1":"00614a6ccff3f32bb88798e58fdcc6c889acf315","sha256":"15b5a399387e36c1208a83d67dbee5639c235e062e49a2a3f81d87d28f3669b8","sha512":"1a832f8379dd237edd9d90cded7259c5e07a8d2d8feac9a847a37b87c39e0762be6f4fdb7584923d0fb07f9f9683c1dc0b97af221e10c140ef86bc816d004144","ssdeep":"1536:gm6/oeUWkXCQ7tWA65ClsajaFzUMZxbjzMGNzwMfG62ShFp0CuZxPRUrisD26qk/:X6/oeU17tWADtaFLz","tlshash":"a0d3528dbac1b56107e37064023f640ef2b73a54b84ac8c0f629d5e16e7e94f6167e2d","size":134082,"data":"","first_seen":"2025-11-25T14:52:48.722222Z","last_seen":"2025-12-01T11:11:10.723479Z","times_seen":48,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"81ecd7c59392edfa4254654202f453d2","sha1":"4d73a7bde5adf21114e03dfdfb8631d92887af64","sha256":"d17ff3bd2c3050a632dd6fbd5c617f267d8905dfa4e716e13f7530f9deea6ed1","sha512":"595611c1e03a96ee15b6f9101fa1a4cb6a7944b00868e425ffeed8b255576610fe83d4a804c42cede8e57e15be47dab626086e59d0a05955406d37b8ba295cc9","ssdeep":"","tlshash":"64e0c6ad1c8726306317103783bd864c7053f01381bae080388ce0ab3f20fea8c29ab8","size":383,"data":"","first_seen":"2025-11-17T08:56:43.663992Z","last_seen":"2026-02-02T17:50:52.01294Z","times_seen":202,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","size":244732,"data":"","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accuratephrase.com/c.D/9Q6Cb/2f5el/SEW/QJ9ZNNj/Yn4tOaDHkl3dN/i/0-2gN/jagC4/OSTncd3I","fqdn":"accuratephrase.com","domain":"accuratephrase.com","tld":"com"},"ip":{"addr":"188.72.219.35","port":443,"asn":35415,"as":"Webzilla B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"e9c678176765f6bc762dc882c9682533","sha1":"534baf53a087fa7e82286a58a8bf8dc720b74ae2","sha256":"8162dc6b247bf5339c0cb03346896de2942de5680a2403f5e5525f5f2e54300d","sha512":"37d427a8c143917afed3a675887af9f8318ba8f124c817e211f093c03e16a7f53db7a2e20098b2a0b5681e9627dd39cd79f9065428c3baa4385b8f45ebc449d1","ssdeep":"768:QZhdZg7J0OMLfTF9dFaQNp8JY29c6SboEBkleZ2YoOcLhlPPTgLgooDMiG82IG1Q:QZ1g7JQLqQNp8Jr9c6SboEBkleZ2qcLD","tlshash":"0803a6c871c3642642ea507d713b7208b23a5465542db028bc79c8e4fcb9e9f8577bbd","size":38022,"data":"","first_seen":"2025-11-28T11:32:39.482448Z","last_seen":"2025-11-28T11:32:39.482448Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cdn.tapioni.com/adgpt.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.322Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 14:57:20 GMT","end":"Fri, 13 Feb 2026 15:57:18 GMT"},"fingerprint":{"sha1":"80:2D:1E:ED:7E:27:75:C8:26:5C:5A:67:67:AE:0B:64:50:E0:CB:35","sha256":"12:CD:2F:65:36:49:D1:F0:8F:A7:6A:68:FF:9C:96:CC:70:D2:75:FE:A5:51:07:CC:D0:AA:5A:75:18:DC:8D:61"}}},"request":{"raw":"GET /adgpt.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 875\r\nserver: cloudflare\r\nlast-modified: Tue, 25 Nov 2025 12:36:13 GMT\r\nvary: Accept-Encoding\r\netag: \"6925a2bd-36b\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 255144\r\naccept-ranges: bytes\r\ncf-cache-status: HIT\r\ncf-ray: 9a598b12bbc156be-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2382,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2382), with no line terminators","md5":"6eeaffdefdb53307fb688341ffc4c7b9","sha1":"946285cc6c7d5585687d0e0fb40214ceb826a7ad","sha256":"139f98f4a6be98965fb059d55ee25cf2f9ddb916e7700b6d904db3217b182190","sha512":"b1c8c974b81e8b117e6c0e32dffdd8e52fc8724485279d6b631fc0a3adce21cbe5cf0b0e2f105b59085224b0d8150a56e496337273c1f7c3a662fefd293cfd74","ssdeep":"","tlshash":"704113ee25a0fda0179b714c202b180af0ac35e0e3ace8c69fb984b47d3d6441111aed","first_seen":"2025-11-25T12:42:17.622959Z","last_seen":"2025-12-01T11:11:10.708693Z","times_seen":69,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/icon-L3kzdSYP-1764298795951.png","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.001Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /assets/icon-L3kzdSYP-1764298795951.png HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\r\nCookie: _ga_FZ6E2FXG92=GS2.1.s1764329529$o1$g0$t1764329529$j60$l0$h0; _ga=GA1.1.1570273686.1764329529; test=test; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\ncontent-type: image/png\r\ncontent-length: 12350\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC867EB42B2DAAA2C7DD50703\r\netag: \"37e3e456df677e380ab34f5e0043db7d\"\r\nlast-modified: Fri, 28 Nov 2025 03:00:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: LA-MEX-mexicocity-EDGE2-CACHE3[8],LA-MEX-mexicocity-EDGE2-CACHE8[0,TCP_HIT,3],LA-MEX-mexicocity-GLOBAL1-CACHE25[3],LA-MEX-mexicocity-GLOBAL1-CACHE23[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 78fea72f77b1247c5701fa3631bcd96d\r\nnginx-hit: 1\r\nage: 3857\r\nx-ccdn-expires: 2589700\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=erU%2F7mpk5r1oY4qlpi%2FqrM0hoUsI2%2BdbC%2FBQMBrPoAxbFNWaWgIrNyPS%2BDnXzBdHP5dEpSn%2Bl6f4j9SnkjNViw7h4M3yYeYjc7qaaKNUsLo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9a598b170dfd56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12350,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGB, non-interlaced","md5":"37e3e456df677e380ab34f5e0043db7d","sha1":"64ad1b4cca68328e5d987582f76ae59ea79a2d63","sha256":"0d8d6d6357c54934d059569ec6bd54e03b1f0ebad04ace58f8af20a88c2ea8a1","sha512":"7850cd6a4b9fe0cf8b0f1c07851fa283d4929e8d03e2c860470d89b621fbc3147a83812facd7f6b51b2fcc1bafb3cafabae9694077b9497bf7570c83983a273e","ssdeep":"192:whxxxL8uzJHxhnGn6dm0rrkV5Hm1qjDbPU6tbNi/esZtkcJ7Pzx0Xqh8:whxxxlRxhI6Zy5G1uDA+bNetvhVc08","tlshash":"dc429df7d9287f5827e17b23bad19a22f0ed40ae92056004f5da45b757393c8c046e93","first_seen":"2025-06-18T09:39:56.944198Z","last_seen":"2026-02-27T13:27:16.34167Z","times_seen":398,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-FZ6E2FXG92","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.136","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:09.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:33:43 GMT","end":"Mon, 19 Jan 2026 08:33:42 GMT"},"fingerprint":{"sha1":"4E:9E:D1:61:E4:7D:C2:8A:B6:AD:D2:31:C7:07:01:E4:DB:A0:A7:A9","sha256":"C5:DD:D4:CA:97:B7:B5:8C:B4:99:E8:56:30:AC:1B:F0:FD:7C:5A:FD:19:ED:13:D0:27:D6:0B:76:C7:C7:A0:66"}}},"request":{"raw":"GET /gtag/js?id=G-FZ6E2FXG92 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 28 Nov 2025 11:32:09 GMT\r\nexpires: Fri, 28 Nov 2025 11:32:09 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 143174\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":431185,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"295bd441646eea1d0905d9d254685e5f","sha1":"c5690b026a4492ebe0a88f276df6b889da94c841","sha256":"bf679c5a7c2e98b502f0e8160b971f5898ccdf62fd4820f3b3775529b868cba0","sha512":"866454b0b39356bea759f16bb28340fb6aaab9daafae9b35236b243b2d7c2b72fabb9da7d45d7d19a157cc407e579b82a240171a0605906ebbceceb7cef40c22","ssdeep":"6144:X4JxtBUKitJeUI2XVUULUVWo6O7GQEO7QZ2ElVFBoOr+Lu:XOxPDi2UnVUUtO7QZ/","tlshash":"19941ace73d674225396f078502f018ba57b28a2b45cc896f1c9cde12e74a9a4277f7c","first_seen":"2025-11-28T11:32:39.451557Z","last_seen":"2025-11-29T07:40:25.00024Z","times_seen":3,"resource_available":true,"data":null}},"time_used":275,"timings":{"blocked":88,"dns":1,"connect":21,"send":0,"wait":38,"receive":59,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v2/s/home/resources/jVuHp8sy","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.515Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"POST /v2/s/home/resources/jVuHp8sy HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: application/json\r\nX-Stream-L1: pidep.de\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-type: application/json\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nx-xbox-platform: streaming\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RGjW8qq9yBx67Kywl2U6lOzoyUkBqfvP5I4PQRw75hhDulBT6BJOui7aLDZau2N3iJFvEOwh6vzw2pIpmcFy1lDVevJM7ziJ490LL%2BBPfbuenX6KBqqGmQ%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9a598b0d8849723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":603,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"df5c168b027812c9ef27997cf7a60131","sha1":"54e519a956b7b49a024c378c2344ba912c29aec5","sha256":"e5c6f9f899b0c118b860dc3b42652516da83c949e88aadcb2bf5b1381d3e14c5","sha512":"144982d2d919c99a9206224aaea0df77d19dbe88031e03dec8afecc0dcfecf359c124377411151b2b2d46e494ae709c48bc986f8313ed2c9f8276cdea38f16b3","ssdeep":"","tlshash":"04f0e1e31b80408d865ab5cafc89551d6019e53be4adb40eca81cb45c0ca471736d3e6","first_seen":"2025-11-28T11:32:39.452505Z","last_seen":"2025-11-28T11:32:39.452505Z","times_seen":1,"resource_available":false,"data":null}},"time_used":220,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":220,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 14:57:20 GMT","end":"Fri, 13 Feb 2026 15:57:18 GMT"},"fingerprint":{"sha1":"80:2D:1E:ED:7E:27:75:C8:26:5C:5A:67:67:AE:0B:64:50:E0:CB:35","sha256":"12:CD:2F:65:36:49:D1:F0:8F:A7:6A:68:FF:9C:96:CC:70:D2:75:FE:A5:51:07:CC:D0:AA:5A:75:18:DC:8D:61"}}},"request":{"raw":"GET /asg_embed.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 76958\r\nserver: cloudflare\r\nlast-modified: Tue, 25 Nov 2025 12:36:13 GMT\r\nvary: Accept-Encoding\r\netag: \"6925a2bd-12c9e\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 255141\r\naccept-ranges: bytes\r\ncf-cache-status: HIT\r\ncf-ray: 9a598b122b4856be-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":244732,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 14:57:20 GMT","end":"Fri, 13 Feb 2026 15:57:18 GMT"},"fingerprint":{"sha1":"80:2D:1E:ED:7E:27:75:C8:26:5C:5A:67:67:AE:0B:64:50:E0:CB:35","sha256":"12:CD:2F:65:36:49:D1:F0:8F:A7:6A:68:FF:9C:96:CC:70:D2:75:FE:A5:51:07:CC:D0:AA:5A:75:18:DC:8D:61"}}},"request":{"raw":"GET /asg_embed.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 76958\r\nserver: cloudflare\r\nlast-modified: Tue, 25 Nov 2025 12:36:13 GMT\r\nvary: Accept-Encoding\r\netag: \"6925a2bd-12c9e\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 255141\r\naccept-ranges: bytes\r\ncf-cache-status: HIT\r\ncf-ray: 9a598b124b6256be-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":244732,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sm.videqqwuieyui.com/xbox-streaming/1969230756371636226/4e238e51-04c3-42a3-908b-a1ff58235570.mp4","fqdn":"sm.videqqwuieyui.com","domain":"videqqwuieyui.com","tld":"com"},"ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sm.videqqwuieyui.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 11:20:40 GMT","end":"Sun, 21 Dec 2025 12:16:35 GMT"},"fingerprint":{"sha1":"25:15:81:2D:A6:DF:1F:2B:FB:5E:A3:85:2A:59:36:15:22:2F:04:8B","sha256":"D6:EC:C0:5D:23:AC:A3:65:51:E9:AE:90:91:12:79:50:66:5F:F4:71:76:38:6B:0F:6D:C1:F9:BF:C3:59:3A:A8"}}},"request":{"raw":"GET /xbox-streaming/1969230756371636226/4e238e51-04c3-42a3-908b-a1ff58235570.mp4 HTTP/1.1\r\nHost: sm.videqqwuieyui.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ncontent-length: 30976628\r\nserver: Google-Edge-Cache\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A7D5EAE8AB2DB7CF829C32035\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-origin-time: 332\r\nvia: EU-NLD-amsterdam-EDGE3-CACHE2[345],EU-NLD-amsterdam-EDGE3-CACHE1[342,TCP_MISS,344],EU-GER-frankfurt-GLOBAL1-CACHE8[335],EU-GER-frankfurt-GLOBAL1-CACHE12[332,TCP_MISS,334]\r\nx-hcs-proxy-type: 0\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 2d5f96ff4669978a42edf3ea5f333e14\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\nx-request-id: c16a84f4-a1f1-4eda-ae8f-49fd760f9b8c\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ndate: Thu, 13 Nov 2025 13:19:08 GMT\r\nage: 1289584\r\nlast-modified: Mon, 22 Sep 2025 04:39:54 GMT\r\netag: \"05adf5ff6eb3093ffb604285e734f04e\"\r\ncontent-type: video/mp4\r\ncontent-range: bytes 0-30976627/30976628\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000\r\ncache-control: public,max-age=86000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":311296,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"2ad57072ab058b626ff401737be14b46","sha1":"6ca0edf85a65b5cf762f259e52df4e5c24a5db34","sha256":"810c7ac6d9b2453c5b3a99141fef4175237645eb4d471af0a9f7c49486cfac05","sha512":"4265e81a74b12414184065373eb73f85bab82727f405c2e1860f726c1ce3a5a5fc7073fe0da500789d00a4e36c3ead5c4a2630c5c4a1df5f09979625b34a7732","ssdeep":"6144:p8XH4sQeR3w1u6+jgS5ksJRjZz/w1JZBNJshYrhBMURJDoeNG:p8Xp5n2S5kgRjZLwnYYrhBMQJDs","tlshash":"ac6423fa55a17994d92871714ea38b2328e3b0637745b76f031387de20774c8a474cbb","first_seen":"2025-11-28T11:32:39.454079Z","last_seen":"2025-11-28T11:32:39.454079Z","times_seen":1,"resource_available":false,"data":null}},"time_used":612,"timings":{"blocked":105,"dns":11,"connect":21,"send":0,"wait":339,"receive":63,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 14:57:20 GMT","end":"Fri, 13 Feb 2026 15:57:18 GMT"},"fingerprint":{"sha1":"80:2D:1E:ED:7E:27:75:C8:26:5C:5A:67:67:AE:0B:64:50:E0:CB:35","sha256":"12:CD:2F:65:36:49:D1:F0:8F:A7:6A:68:FF:9C:96:CC:70:D2:75:FE:A5:51:07:CC:D0:AA:5A:75:18:DC:8D:61"}}},"request":{"raw":"GET /asg_embed.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 76958\r\nserver: cloudflare\r\nlast-modified: Tue, 25 Nov 2025 12:36:13 GMT\r\nvary: Accept-Encoding\r\netag: \"6925a2bd-12c9e\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 255141\r\naccept-ranges: bytes\r\ncf-cache-status: HIT\r\ncf-ray: 9a598b124b5c56be-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":244732,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.lone-horror.com/ecc874/e9b0d9380c75.js","fqdn":"www.lone-horror.com","domain":"lone-horror.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.548Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.lone-horror.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 28 Nov 2025 07:03:08 GMT","end":"Thu, 26 Feb 2026 07:03:07 GMT"},"fingerprint":{"sha1":"12:1E:52:94:9E:93:10:61:8A:1A:58:43:10:04:C3:A4:8A:CD:C0:5B","sha256":"20:81:0A:6E:00:14:22:45:D1:37:52:02:04:AF:B5:9C:77:45:46:8B:D5:71:8D:66:6E:69:F3:B0:59:DD:1D:05"}}},"request":{"raw":"GET /ecc874/e9b0d9380c75.js HTTP/1.1\r\nHost: www.lone-horror.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: nginx\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: Content-Type\r\ncache-control: max-age=172800\r\ncontent-encoding: gzip\r\nexpires: Sun, 30 Nov 2025 11:32:11 GMT\r\nx-cdn-host-id: AH0543\r\nx-proxy-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":103672,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators","md5":"8fb8aaf6a5b8c4ef895e868cc5a15ddf","sha1":"67995827b53c5ed65271ec387500fafad446573e","sha256":"dabf621abbed022db13a93c9d568b63f217a2e20c7fdea70450f9e4bfc8a3c45","sha512":"25ce7c4a69c6ebf63dc8e41e373bbfc63dcc19cd503158dcacbc90458309a01968dde13475b4088e85fd721536a113ba59c51647bdbc80f3e0bbf454b61e1315","ssdeep":"1536:rM+iZ3YOYuyx6PUQwRxcs8P3nhkQ8vL7T7Q6eGozzwVEnHzHRbPv920:OijxEQq3P5Enne9zkWHLh","tlshash":"e5a33461350b64fd2ad0c1e7eb6b20886c295810e469cca1ecd1d7c7d6eb8e3429b5f7","first_seen":"2025-11-28T08:10:28.426616Z","last_seen":"2025-12-01T07:51:02.537707Z","times_seen":80,"resource_available":true,"data":null}},"time_used":210,"timings":{"blocked":89,"dns":52,"connect":22,"send":0,"wait":20,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"www.lone-horror.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/vendor-chunks-dWl4zWpl-1764298795951.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.144Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /assets/vendor-chunks-dWl4zWpl-1764298795951.js HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC867EC5AB018E4DC4279F666\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 28 Nov 2025 03:00:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EU-BLR-minsk-EDGE1-CACHE2[6],EU-BLR-minsk-EDGE1-CACHE3[0,TCP_HIT,5],EU-GER-frankfurt-GLOBAL1-CACHE4[2],EU-GER-frankfurt-GLOBAL1-CACHE14[0,TCP_HIT,1]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 0740c99a737b1f983b1d641b2b871cd8\r\nnginx-hit: 1\r\nage: 0\r\nx-ccdn-expires: 2590901\r\ncontent-encoding: br\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"df23f828155ae662baf85ef31c309a12\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=z7csznQb%2B5f3BtlcjFq0GuZ2nNj4qbhcX6ZSulE9Ow0sS0I%2FzDRRItptJtMMfMGB9nhKEc3I9a6q35iHOxsZv8wIbm5TlbV1NcAzhb9jRss%3D\"}]}\r\ncf-ray: 9a598b0b6d6756c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1251671,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (37925)","md5":"512c5e18bb1e588aaeac5f1344070025","sha1":"aad7a476be3bea3ffd7e8896f1928714dadfe0f1","sha256":"d16b77cbcce58d6c9540272c84ff5b09eb23d99a60b36c4c4feab240535ee5d2","sha512":"b3eb91b7c3d48561a47ee92e342bcfb068a90a1fc798882f0a63452924c4bb37bfbf2f35596ef9602c06f275cfc4c1725dd2770d6dd97e09b3f801aca0edcb77","ssdeep":"24576:Fqszmatc0Ox3S4MAM/H8r6iDSJMLlvDOB31Z82kzcbGKlCWRU:Fqszmatc0Ox3DMx/H8r6i+qvDOB31Z8J","tlshash":"a5254bd972a6706287d361a4403f5207723a3916248cc45cf63afdea2eb8d09647bf7d","first_seen":"2025-11-20T16:58:31.622392Z","last_seen":"2026-01-07T02:54:23.189237Z","times_seen":194,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":57,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/ip-push.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 14:57:20 GMT","end":"Fri, 13 Feb 2026 15:57:18 GMT"},"fingerprint":{"sha1":"80:2D:1E:ED:7E:27:75:C8:26:5C:5A:67:67:AE:0B:64:50:E0:CB:35","sha256":"12:CD:2F:65:36:49:D1:F0:8F:A7:6A:68:FF:9C:96:CC:70:D2:75:FE:A5:51:07:CC:D0:AA:5A:75:18:DC:8D:61"}}},"request":{"raw":"GET /ip-push.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 41216\r\nserver: cloudflare\r\nlast-modified: Tue, 25 Nov 2025 12:36:13 GMT\r\nvary: Accept-Encoding\r\netag: \"6925a2bd-a100\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 255080\r\naccept-ranges: bytes\r\ncf-cache-status: HIT\r\ncf-ray: 9a598b0f999156be-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":134082,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65498), with no line terminators","md5":"f6f9b6467d59082e63f91850e8ac1d32","sha1":"00614a6ccff3f32bb88798e58fdcc6c889acf315","sha256":"15b5a399387e36c1208a83d67dbee5639c235e062e49a2a3f81d87d28f3669b8","sha512":"1a832f8379dd237edd9d90cded7259c5e07a8d2d8feac9a847a37b87c39e0762be6f4fdb7584923d0fb07f9f9683c1dc0b97af221e10c140ef86bc816d004144","ssdeep":"1536:gm6/oeUWkXCQ7tWA65ClsajaFzUMZxbjzMGNzwMfG62ShFp0CuZxPRUrisD26qk/:X6/oeU17tWADtaFLz","tlshash":"a0d3528dbac1b56107e37064023f640ef2b73a54b84ac8c0f629d5e16e7e94f6167e2d","first_seen":"2025-11-25T14:52:48.722222Z","last_seen":"2025-12-01T11:11:10.723479Z","times_seen":48,"resource_available":true,"data":null}},"time_used":128,"timings":{"blocked":59,"dns":41,"connect":1,"send":0,"wait":7,"receive":2,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v1/user/gray/rules/check","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"POST /v1/user/gray/rules/check HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 303\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":303,"data":"{\"uid\":\"1952377772555378689\",\"codes\":[\"1962801318482550785\",\"1963791201656774657\",\"1964949036361457665\",\"1964949118661959681\",\"1964948725307416577\",\"1963874700950773762\",\"1970428429295824898\",\"1970726497514823681\",\"1976531473289715714\",\"1977919961553575937\",\"1988847719288414209\",\"1988847790751490049\"]}"}},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/json\r\npriority: u=3,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nx-xbox-platform: streaming\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mGxUL%2B3fUdP%2F2TxFgQ0ARkfLte5qAskHrer69zPORSXkCy0xrfZLOGWoLu0oBFhmJGy8T56ZBz1rWmX8l2maFbTrCljvPN6AHhhTuAuqPUVVAmoM%2BEM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9a598b10c86956ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":337,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c218775dc72f9753910ca2dd4beca2ef","sha1":"63f4bb15a4dde2f2b592935d149000da09745a7c","sha256":"fb60bb7ecbeaabb0fece3f877ac7d16b679728ea54359917a42b17891ca6f514","sha512":"939b2ab73cc3e01228afb83a8a61933a29f13bf17cfaade9672446a318600455e9a1e1cc58f0ec97879b061d15f90ba1aabeff3c2cd19794b8b3b16bdcf042b7","ssdeep":"","tlshash":"f6e0c27e2b3194ac14851052e591dac9fb80489abf09f780c023912f35eb0c9763d2b7","first_seen":"2025-11-21T02:27:40.78744Z","last_seen":"2025-12-25T17:29:24.889483Z","times_seen":101,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":218,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.capndr.com/advertising.js","fqdn":"js.capndr.com","domain":"capndr.com","tld":"com"},"ip":{"addr":"45.133.44.53","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.capndr.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 Oct 2025 02:32:03 GMT","end":"Sun, 11 Jan 2026 02:32:02 GMT"},"fingerprint":{"sha1":"4F:91:E2:5E:A1:B1:4D:7F:49:01:1E:73:C6:07:EB:0A:BE:44:4C:44","sha256":"7B:0D:8E:03:0E:6E:23:65:30:3D:E8:FC:0C:E7:66:46:E2:5B:7F:FA:FD:D2:FF:61:4C:A4:18:08:24:70:51:6B"}}},"request":{"raw":"GET /advertising.js HTTP/1.1\r\nHost: js.capndr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 0\r\nserver: nginx/1.18.0\r\nlast-modified: Fri, 14 Jul 2023 08:23:25 GMT\r\netag: \"64b105fd-0\"\r\nexpires: Fri, 28 Nov 2025 11:37:11 GMT\r\ncache-control: max-age=300\r\nx-cdn-host-id: AH1742\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":161,"timings":{"blocked":70,"dns":20,"connect":21,"send":0,"wait":21,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"js.capndr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sm.videqqwuieyui.com/xbox-streaming/1969230756371636226/4e238e51-04c3-42a3-908b-a1ff58235570.mp4","fqdn":"sm.videqqwuieyui.com","domain":"videqqwuieyui.com","tld":"com"},"ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sm.videqqwuieyui.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 11:20:40 GMT","end":"Sun, 21 Dec 2025 12:16:35 GMT"},"fingerprint":{"sha1":"25:15:81:2D:A6:DF:1F:2B:FB:5E:A3:85:2A:59:36:15:22:2F:04:8B","sha256":"D6:EC:C0:5D:23:AC:A3:65:51:E9:AE:90:91:12:79:50:66:5F:F4:71:76:38:6B:0F:6D:C1:F9:BF:C3:59:3A:A8"}}},"request":{"raw":"GET /xbox-streaming/1969230756371636226/4e238e51-04c3-42a3-908b-a1ff58235570.mp4 HTTP/1.1\r\nHost: sm.videqqwuieyui.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=30638080-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ncontent-length: 338548\r\nserver: Google-Edge-Cache\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A7D5EAE8AB2DB7CF829C32035\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-origin-time: 332\r\nvia: EU-NLD-amsterdam-EDGE3-CACHE2[345],EU-NLD-amsterdam-EDGE3-CACHE1[342,TCP_MISS,344],EU-GER-frankfurt-GLOBAL1-CACHE8[335],EU-GER-frankfurt-GLOBAL1-CACHE12[332,TCP_MISS,334]\r\nx-hcs-proxy-type: 0\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 2d5f96ff4669978a42edf3ea5f333e14\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\nx-request-id: d08b5b0d-d2bb-45a6-a44b-e66b8ece6e2e\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ndate: Thu, 13 Nov 2025 13:19:08 GMT\r\nage: 1289584\r\nlast-modified: Mon, 22 Sep 2025 04:39:54 GMT\r\netag: \"05adf5ff6eb3093ffb604285e734f04e\"\r\ncontent-type: video/mp4\r\ncontent-range: bytes 30638080-30976627/30976628\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000\r\ncache-control: public,max-age=86000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":338548,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"c22685323bfed41d642c411a9f4af8f7","sha1":"9750128076e18cb9a461cd2284c24ef1901cd2fb","sha256":"b15bd085f91e4d758481367a33a48c80f729097588c3e475d24d2693f1070c33","sha512":"a40e56426a5ecd871190d7fa25f1dd22f58694e31747494b666ce2ec6de0dd6e419b32b09ef4c0187e20dfef393e33c01eb9b5b3356c346feec8c44115c920f1","ssdeep":"6144:JuXXYMLcWtNIZzt3HuSGE3CT4EAA3u0W0q2KsV:JuXIMLcIiJm4keP2V","tlshash":"10743c94b3e50d2fe9a26f30a6d147187d7be1d4c34f13cb81a4a36e5e2a3ec46460e5","first_seen":"2025-11-28T11:32:39.463743Z","last_seen":"2025-11-28T11:32:39.463743Z","times_seen":1,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":5,"dns":0,"connect":0,"send":0,"wait":92,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"122da.com/5/10214571/?oo=1\u0026js_build=iclick-v1.1637.1\u0026userId=08028ffa47d5464cea5df67eec231470\u0026dmn=bvtpk.com\u0026tt=2\u0026ix=0","fqdn":"122da.com","domain":"122da.com","tld":"com"},"ip":{"addr":"139.45.196.63","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.408Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"122da.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 20 Nov 2025 19:41:16 GMT","end":"Wed, 18 Feb 2026 19:41:15 GMT"},"fingerprint":{"sha1":"B6:69:3B:64:AA:33:38:EB:0B:E8:79:15:0C:1A:ED:85:C2:38:7A:C0","sha256":"AE:AF:19:D8:6A:53:82:E1:B1:E2:03:4C:26:2A:0B:D7:F9:02:9C:76:2E:FD:2C:2B:E6:42:F6:8E:5F:70:2D:45"}}},"request":{"raw":"POST /5/10214571/?oo=1\u0026js_build=iclick-v1.1637.1\u0026userId=08028ffa47d5464cea5df67eec231470\u0026dmn=bvtpk.com\u0026tt=2\u0026ix=0 HTTP/1.1\r\nHost: 122da.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 2630\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2630,"data":"{\"sync\":\"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\",\"async\":\"TBtbXx4AHAYqC14bGFQESFRbXhYMDEMbCU1YDQo3FwNMS0MJTUgNAxNGCQRZXhEMSkhbCx0DSg4QVwY1GgIfUUxXBxURUhMXGgAUEF8AF14+HgcGFxZUXRsbX1MMARVKT1JFRVtRCAQaGFAOFRAbG1BaEwEXHCoLXEtDGxQEBQUdQwBPGxtSUBwNFQEUFl02EF1DUExJXhYaH1ZfVV8ZOwoHABBbDCZQBUhUSVAYTAxTT1ZEDg0KDQc9UQ1bA0NIQkkRVQMdVlBUWCUNHUpPQBpFW1oUGRoEH2sHCWgIEQxYRlVKFhdLHRZUPgMKNEAWVE8VFRFVFg0aAyoLXEtDG0NGTAgdRxpPDRsRGlgJHBwdDVxLQxsLGRoKFRZCT0VmRl8eRkNKV04aBhhmCA5MUVAWQk9WXVdfDg0WBhQOZwAdSkNQNTYP\",\"quality_options\":{\"hil\":1,\"jsp\":1,\"ng\":false,\"ix\":false,\"pt\":false,\"np\":false,\"nw\":true,\"nb\":true,\"sw\":1280,\"sh\":1024,\"pl\":\"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\",\"wy\":0,\"wx\":0,\"ww\":1280,\"wh\":1024,\"cw\":1280,\"wiw\":1280,\"wih\":1024,\"wfc\":1,\"sah\":1024,\"navlng\":\"en-US\",\"drf\":\"\",\"wgl\":\"llvmpipe\",\"tb\":false,\"btz\":\"UTC\",\"bto\":0,\"pnt\":0,\"pnrc\":0,\"bml\":0,\"bmi\":false,\"vsbl\":true},\"client_hints\":{}}"}},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":113,"dns":26,"connect":26,"send":0,"wait":28,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fp.metricswpsh.com/fp?tag_id=349919","fqdn":"fp.metricswpsh.com","domain":"metricswpsh.com","tld":"com"},"ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notification.tubecup.net","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 10 Nov 2025 11:47:47 GMT","end":"Sun, 08 Feb 2026 11:47:46 GMT"},"fingerprint":{"sha1":"05:1E:63:2F:40:1F:87:C3:0D:F0:42:C7:EA:E8:B1:D8:6F:76:7C:FC","sha256":"1C:13:0E:F6:58:8A:8C:D7:DE:1F:9F:20:D5:17:50:15:02:D5:C8:8E:39:40:68:3F:01:24:F2:73:14:BA:25:0F"}}},"request":{"raw":"OPTIONS /fp?tag_id=349919 HTTP/1.1\r\nHost: fp.metricswpsh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/1.1 204 No Content\r\nServer: nginx/1.20.1\r\nDate: Fri, 28 Nov 2025 11:32:12 GMT\r\nConnection: keep-alive\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Headers: content-type\r\nAccess-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\nAccess-Control-Allow-Origin: https://www.jumplixytd.com\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":90,"dns":0,"connect":33,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ur.foretopheaved.com/r4xjjmZUr51mvyQ/RNklR","fqdn":"ur.foretopheaved.com","domain":"foretopheaved.com","tld":"com"},"ip":{"addr":"188.42.241.109","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ur.foretopheaved.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 19 Nov 2025 09:57:50 GMT","end":"Tue, 17 Feb 2026 09:57:49 GMT"},"fingerprint":{"sha1":"FA:D9:95:46:25:D7:8C:00:37:AA:3C:94:26:2B:5A:67:1C:F9:AE:CE","sha256":"60:84:DE:83:10:10:D4:C1:7C:34:01:D0:79:EA:73:96:6A:46:A0:38:68:27:7A:0F:92:F2:62:DA:88:D1:BE:68"}}},"request":{"raw":"GET /r4xjjmZUr51mvyQ/RNklR HTTP/1.1\r\nHost: ur.foretopheaved.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-headers: content-type, gyfr29qt4j80vdr0zhsj, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\naccess-control-max-age: 600\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nset-cookie: GL_UI4=eJw9jc1OhDAcB%2FkGddnkl%2FAA%2BwgtUtKrF1%2FBI2npn7UKdFMqq28v8eBtDjOZKIqSpka8FyekX0rgwrnsZSdaybpRqlZr2feCaSEZb8U0CTzYbQhKzxQyVNuifBjCniHXXq2mRr44Q3ONUnt338g3KbJVLYTy1Xqa3PdhqA%2FnkfLn7mC7HhwzJG5r0nOF8s2u5ijPj0g4O5%2BKCE%2B3WYXJ%2BWWwpoiRX70yhPgF1agCXZ3%2FQWlo%2BwzuBrjZDP%2F%2B3zi9c4bC0G5HQu7CO%2FlfoWNCFg%3D%3D; expires=Sat, 29-Nov-2025 11:32:11 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwViD0LglAYRu99ESGS4gGHRpdW0VLBJSTndGhoaBILEcRXrtrH1F9pb4r%2BVWtTWzacA%2BcIIcicgsoGRujaoWN7C9v1PcgClKSgvIaesDpnV0gFcpYgVWOcthVbMfd1N%2Fwc2r8hS0zWVXmxtlz1Xcl1CxoYxawaVll3hGx0Cer47%2FZgCsiTPgNVmRFtPu9Xcf8OwUY0vz33u9UD1LTQHD8IfrcSKq4%3D; expires=Sat, 29-Nov-2025 11:32:11 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-05-31T17:37:49.790979Z","times_seen":17242,"resource_available":true,"data":null}},"time_used":364,"timings":{"blocked":168,"dns":131,"connect":17,"send":0,"wait":20,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"ur.foretopheaved.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"ur.foretopheaved.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.251Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 14:57:20 GMT","end":"Fri, 13 Feb 2026 15:57:18 GMT"},"fingerprint":{"sha1":"80:2D:1E:ED:7E:27:75:C8:26:5C:5A:67:67:AE:0B:64:50:E0:CB:35","sha256":"12:CD:2F:65:36:49:D1:F0:8F:A7:6A:68:FF:9C:96:CC:70:D2:75:FE:A5:51:07:CC:D0:AA:5A:75:18:DC:8D:61"}}},"request":{"raw":"GET /asg_embed.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 76958\r\nserver: cloudflare\r\nlast-modified: Tue, 25 Nov 2025 12:36:13 GMT\r\nvary: Accept-Encoding\r\netag: \"6925a2bd-12c9e\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 255141\r\naccept-ranges: bytes\r\ncf-cache-status: HIT\r\ncf-ray: 9a598b124b5856be-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":244732,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.lone-horror.com/ecc874/e9b0d9380c75.js","fqdn":"www.lone-horror.com","domain":"lone-horror.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.546Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.lone-horror.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 28 Nov 2025 07:03:08 GMT","end":"Thu, 26 Feb 2026 07:03:07 GMT"},"fingerprint":{"sha1":"12:1E:52:94:9E:93:10:61:8A:1A:58:43:10:04:C3:A4:8A:CD:C0:5B","sha256":"20:81:0A:6E:00:14:22:45:D1:37:52:02:04:AF:B5:9C:77:45:46:8B:D5:71:8D:66:6E:69:F3:B0:59:DD:1D:05"}}},"request":{"raw":"GET /ecc874/e9b0d9380c75.js HTTP/1.1\r\nHost: www.lone-horror.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-type: text/plain\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: nginx\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: Content-Type\r\ncache-control: max-age=172800\r\ncontent-encoding: gzip\r\nexpires: Sun, 30 Nov 2025 11:32:11 GMT\r\nx-cdn-host-id: AH0543\r\nx-proxy-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":103672,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators","md5":"8fb8aaf6a5b8c4ef895e868cc5a15ddf","sha1":"67995827b53c5ed65271ec387500fafad446573e","sha256":"dabf621abbed022db13a93c9d568b63f217a2e20c7fdea70450f9e4bfc8a3c45","sha512":"25ce7c4a69c6ebf63dc8e41e373bbfc63dcc19cd503158dcacbc90458309a01968dde13475b4088e85fd721536a113ba59c51647bdbc80f3e0bbf454b61e1315","ssdeep":"1536:rM+iZ3YOYuyx6PUQwRxcs8P3nhkQ8vL7T7Q6eGozzwVEnHzHRbPv920:OijxEQq3P5Enne9zkWHLh","tlshash":"e5a33461350b64fd2ad0c1e7eb6b20886c295810e469cca1ecd1d7c7d6eb8e3429b5f7","first_seen":"2025-11-28T08:10:28.426616Z","last_seen":"2025-12-01T07:51:02.537707Z","times_seen":80,"resource_available":true,"data":null}},"time_used":222,"timings":{"blocked":87,"dns":52,"connect":19,"send":0,"wait":37,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"www.lone-horror.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nereserv.com/in/dip?event_id=ac4d7547-e1cf-4449-936a-e5f8deee9b45\u0026subid=1450210302\u0026spot_id=1457063\u0026created_at=2025-11-28\u0026timezone=0\u0026ver=1.170.2","fqdn":"nereserv.com","domain":"nereserv.com","tld":"com"},"ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 02:00:40 GMT","end":"Sat, 24 Jan 2026 02:00:39 GMT"},"fingerprint":{"sha1":"2B:72:A9:3F:14:00:92:B9:05:AC:BC:3B:22:CB:D9:87:80:23:C8:3D","sha256":"60:5B:BA:7E:5F:7A:B1:E0:55:4D:4C:29:EA:C7:21:68:37:AF:03:5B:A7:3D:15:98:F1:65:96:AB:4A:3E:17:3B"}}},"request":{"raw":"GET /in/dip?event_id=ac4d7547-e1cf-4449-936a-e5f8deee9b45\u0026subid=1450210302\u0026spot_id=1457063\u0026created_at=2025-11-28\u0026timezone=0\u0026ver=1.170.2 HTTP/1.1\r\nHost: nereserv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\ncontent-length: 0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":51,"timings":{"blocked":21,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"29405492-36946-ex.uncocleypercha.com/jCFDCoYzPAnmZtczvVjDLi9Mktk7qIvcL_RUPsKeGJ4TN5Sdp91R8MqNVt9lbZHeztkLK6Qiha69FenlHea5aULCk6eXuLnWeAARGO8ke3phtcxwxrWpRx9dzbMzm4bz5ts90JAmP_LjCAlFMAXQp1RormuBE-Su?kws=\u0026pageUri=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026referer=\u0026bdd=%5B%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0%22%2C%22false%22%2C%22Win32%22%2C%22llvmpipe%22%2C%22Mozilla%22%2C%22llvmpipe%22%2C%22Mesa%22%2C%22false%22%2C%22true%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%22false%22%2C%221%22%2C%2248%22%2C%220%22%2C%22aaaaacccefiflmmprrsstlllecstaaahtscellllpss%22%2C%22Fri%20Nov%2028%202025%2011%3A32%3A11%20GMT%2B0000%20(GMT)%22%2C%220%22%2C%22en-US%22%2C%22en-US%2Cen%22%2C%22false%22%2C%22true%22%2C%22781877177%22%2C%222697903995%22%2C%222%22%2C%22false%22%2C%22%5B%5D%22%5D\u0026btdb=0\u0026prsl=1","fqdn":"29405492-36946-ex.uncocleypercha.com","domain":"uncocleypercha.com","tld":"com"},"ip":{"addr":"88.208.22.3","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:14.635Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.uncocleypercha.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 12 Nov 2025 13:26:29 GMT","end":"Tue, 10 Feb 2026 13:26:28 GMT"},"fingerprint":{"sha1":"00:7F:AF:A9:B7:B5:0B:F0:6B:0E:9E:34:52:60:D8:DA:BB:DB:F8:F4","sha256":"AC:55:BC:C0:B6:99:D6:FF:6B:D8:52:C8:8A:DD:6C:DF:C1:0B:6D:31:3A:2E:BD:98:7D:8D:F4:13:C5:8B:1A:96"}}},"request":{"raw":"GET /jCFDCoYzPAnmZtczvVjDLi9Mktk7qIvcL_RUPsKeGJ4TN5Sdp91R8MqNVt9lbZHeztkLK6Qiha69FenlHea5aULCk6eXuLnWeAARGO8ke3phtcxwxrWpRx9dzbMzm4bz5ts90JAmP_LjCAlFMAXQp1RormuBE-Su?kws=\u0026pageUri=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026referer=\u0026bdd=%5B%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0%22%2C%22false%22%2C%22Win32%22%2C%22llvmpipe%22%2C%22Mozilla%22%2C%22llvmpipe%22%2C%22Mesa%22%2C%22false%22%2C%22true%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%22false%22%2C%221%22%2C%2248%22%2C%220%22%2C%22aaaaacccefiflmmprrsstlllecstaaahtscellllpss%22%2C%22Fri%20Nov%2028%202025%2011%3A32%3A11%20GMT%2B0000%20(GMT)%22%2C%220%22%2C%22en-US%22%2C%22en-US%2Cen%22%2C%22false%22%2C%22true%22%2C%22781877177%22%2C%222697903995%22%2C%222%22%2C%22false%22%2C%22%5B%5D%22%5D\u0026btdb=0\u0026prsl=1 HTTP/1.1\r\nHost: 29405492-36946-ex.uncocleypercha.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:14 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nreferrer-policy: unsafe-url\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Device-Memory\r\naccept-ch-lifetime: 31536000\r\np3p: CP=\"NOI DEVa TAIa OUR BUS UNI STA\"\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\nlast-modified: Fri, 28 Nov 2025 11:32:14 UTC\r\nexpires: Fri, 28 Nov 2025 11:32:14 UTC\r\nset-cookie: _ccid=3582246189430502496; expires=Tue, 28 Nov 2028 11:32:14 GMT; domain=uncocleypercha.com; path=/; HttpOnly; secure; SameSite=None\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1519,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (1519), with no line terminators","md5":"990784f85c746095719a2e33485109ed","sha1":"7c1c470e2b1208c05e927665d7bf834af1b3b027","sha256":"f6359ae93b8cdab5107297aa7b44f58eeda5cc681aaa76c39ea94a001a075de2","sha512":"b257db84a9afe7ae7a0bac789b77ae584a431a8a8bb78c40b075d9b9f73781c5b53460a2dd71cc2a6ae339cf7e6e6d1dc884b6d08ee382dff1ed15f4fd100d08","ssdeep":"","tlshash":"d53129834642a7c2a4b1990aa4537bb2378542293acdbf38f863c276045cce1151ee54","first_seen":"2025-11-28T11:32:39.468325Z","last_seen":"2025-11-28T11:32:39.468325Z","times_seen":1,"resource_available":false,"data":null}},"time_used":343,"timings":{"blocked":77,"dns":21,"connect":17,"send":0,"wait":189,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bereave.onelinevideo.com/moire/calibre/eclipse","fqdn":"bereave.onelinevideo.com","domain":"onelinevideo.com","tld":"com"},"ip":{"addr":"47.252.7.200","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.736Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bereave.onelinevideo.com","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Mon, 21 Apr 2025 00:00:00 GMT","end":"Mon, 20 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E0:8E:3E:B2:04:D3:F1:8E:24:9D:86:3A:9E:82:A4:F5:45:3F:D1:AD","sha256":"92:99:82:77:56:12:E5:7A:6F:E4:9E:E1:33:D0:ED:6E:11:A4:AF:65:E4:1A:60:B9:75:F8:9B:59:74:D7:01:8B"}}},"request":{"raw":"POST /moire/calibre/eclipse HTTP/1.1\r\nHost: bereave.onelinevideo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 921\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":921,"data":"{\"annotate\":{\"togging\":\"\",\"rumpus\":1764329530731,\"porch\":\"\",\"mesmeric\":\"\"},\"most\":{\"wabash\":\"nectary\",\"fasten\":\"03f70823-3283-44c3-b014-b9e5838095b4\",\"alveoli\":\"onelinevideo.com\",\"cocktail\":\"1.0.0\",\"pontiac\":\"\",\"quintus\":\"\",\"skulk\":\"530d1b26-40a1-43e1-80ac-332b18487e54\"},\"sunk\":\"h5_lix_exclude_effect_page_show\",\"choral\":{\"ua\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"fingerprint_id\":\"faed01b113cfb270c624ee1aa793ad6c\",\"browsertabid\":\"8fc9079b-62f2-4168-a884-8022db54d59a\",\"h5_url\":\"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\",\"uid\":\"1952377772555378689\",\"station_Id\":\"1952377772555378689\",\"link_id\":\"jVuHp8sy\",\"file_id\":\"02c5dc54-24ff-482a-8f19-650409399146\",\"linkid\":\"jVuHp8sy\",\"os\":\"web\",\"ip\":\"\",\"url\":\"https://www.jumplixytd.com\",\"platform\":\"\",\"level1\":\"\",\"country\":\"\",\"level1_domain\":\"pidep.de\",\"level2_domain\":\"www.jumplixytd.com\",\"h5_page_type\":\"h5_page_embed\"}}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: no-store\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":38,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with no line terminators","md5":"eaf33666675ef0b9aea7e717a1f27cb2","sha1":"be2b820a379732c7e8b76490df690856b61b868c","sha256":"704e672d747697b0febd58103396966763d23ca8df305250500273a5e603525e","sha512":"a44011fc45caf6baea069333a70b0c5cb863631bbdfa5c65efbf70dba2675fa4e63e468d112d4a135e817ff02ee9ce4a7a1a6d84cba40c4f3f751a32334ad261","ssdeep":"","tlshash":"9f80000e32e28a302e0202202388802c3ea80ee3803c3a0280c00000803ce0f0328e8b","first_seen":"2025-11-28T11:32:39.469157Z","last_seen":"2025-11-28T11:32:39.469157Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1287,"timings":{"blocked":592,"dns":111,"connect":102,"send":0,"wait":104,"receive":0,"ssl":376},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lz.faenasturbit.com/sSB8ld39qI9j8pgT/130607","fqdn":"lz.faenasturbit.com","domain":"faenasturbit.com","tld":"com"},"ip":{"addr":"172.255.106.29","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.132Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lz.faenasturbit.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Oct 2025 21:32:56 GMT","end":"Wed, 28 Jan 2026 21:32:55 GMT"},"fingerprint":{"sha1":"D6:1B:84:26:55:A1:83:01:23:8C:CD:42:C8:38:30:73:F4:D6:EF:57","sha256":"53:E3:FE:81:08:0E:DC:4F:44:48:DE:93:85:98:37:CB:86:0A:DE:F4:21:AF:D8:5D:C9:7D:40:12:D9:C0:72:E7"}}},"request":{"raw":"GET /sSB8ld39qI9j8pgT/130607 HTTP/1.1\r\nHost: lz.faenasturbit.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 5\r\nvary: Origin\r\naccess-control-expose-headers: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, GYFR29QT4J80VDR0ZHSJ, X-Forwarded-For, X-Requested-With, Cache-Control, Pragma, Expires, Credentials\r\naccess-control-allow-methods: GET, HEAD, POST, PUT, OPTIONS\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\nset-cookie: GGI10=GxcBAMTXn0vZ5emOqPLiOX4M/Qe07q4HxR/eVtFXVkBBUNRJMk1bINm5mJeviZWrnil/Ef8PtgjdCkZsG7FleI5h+x4ITbWAcTyxaxke3js1gQHCHB0My1UJaScZF+1k+Hd+7dR7gOQ4Zgrsx0Zs+QFdl7kB25YRerFH6GQp62HsXtptGe+XzQgIc6USHHYw+poDp5hk3ZfXG/xSRAl1MdIxAaqAbf8rUV21gx2CrNmU/L4w8BdSS/1JWhPv+v8D; max-age=3600000; path=/; secure; SameSite=None\nGUI42=G1EDAGRzTeWjR7p6Qu3mU4YH9Pm/d8f/s18Bwh2ttYAWSICBJJLv1p7hISgwsLmvbx6l1gny/4B8HjAzIAA9j+CKoejWQE7Q1BwPyagP3EDzrQkKAFxCMsFpubg+UtqnIlX8zN9T+7IO1X2MMktWiYNbyuVNiRJnf7wfUIbm+H7AEgzQyUwzPGiPsMTAVKsDJfFwD4xfforJPYXioCIf2lWxUYhhKoQ7HRcZYY50oYzyqxv9qsGaDbWD1wCyt75hKpW3uB8gHqUhyEoTSk1RxkUr1lwWVmkJtMRDLDKRhK6JKZeSpVJNYZhr9NBIY1zkqp1pIcXRmpOuXZbnZmrK1GQprh3FhAWw37LLQmbTCH66VE33X9bD3yqgSeP7AeXr1OsuO6qcJayqp9VMtT1A/4JTwT1AkJZzjPhTkAfWGyG/j8JzziRG0P/cNw==; max-age=3600000; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"ec300000003000000000000000000000000c0000000000000000000000000c00000000","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-05-31T17:21:59.96917Z","times_seen":14806,"resource_available":true,"data":null}},"time_used":502,"timings":{"blocked":241,"dns":199,"connect":17,"send":0,"wait":20,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/on.js","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"driverhugoverblown.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 14:23:57 GMT","end":"Wed, 21 Jan 2026 14:23:56 GMT"},"fingerprint":{"sha1":"AB:39:B2:8C:70:D6:0B:38:B0:1E:73:99:51:2D:35:30:EA:6B:4A:70","sha256":"86:18:14:14:6C:52:E9:C3:AC:03:AF:10:49:19:37:24:9D:9A:36:E6:1A:05:C8:1C:8E:69:BE:53:1E:CE:6F:65"}}},"request":{"raw":"GET /on.js HTTP/1.1\r\nHost: driverhugoverblown.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Wed, 26 Nov 2025 07:39:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6926aece-25a33\"\r\nexpires: Fri, 05 Dec 2025 11:32:11 GMT\r\ncache-control: max-age=604800\r\nx-js-ab: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":154163,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"01eb90de8b9cae60f8249051851429c0","sha1":"46842488b632183e17db67fc770e8981ab65a408","sha256":"0e33abdedd783b4a54ba4c5ead7374710500cbd0ee7fa4385e30d34504a18c2e","sha512":"194ef71e72abddcf3f2785186ec746cf4bb70b36a4b2a1d73a64f7d2a26e18cb47d0b0909b60143b35ea90ae058f9318206fb92010f0e15e725096d0a0a22050","ssdeep":"1536:Sg5PgW/NLSDi++yD8FT35G+WgEo0iYlRluYUh/TZEW4fSW9PNCjv7E1yrKfk9j4y:Sg5Ei++yD8Fb5P5BYUROWOP5k94i3","tlshash":"93e3e7adbba620360a479c39f83f5656737f58d3f14d00008c6ae1dc6a3c60be269f65","first_seen":"2025-11-26T08:32:02.425626Z","last_seen":"2025-12-01T13:07:03.225531Z","times_seen":157,"resource_available":true,"data":null}},"time_used":160,"timings":{"blocked":57,"dns":22,"connect":17,"send":0,"wait":35,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.capndr.com/popunder-admanager/build.m.js","fqdn":"js.capndr.com","domain":"capndr.com","tld":"com"},"ip":{"addr":"45.133.44.53","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.capndr.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 Oct 2025 02:32:03 GMT","end":"Sun, 11 Jan 2026 02:32:02 GMT"},"fingerprint":{"sha1":"4F:91:E2:5E:A1:B1:4D:7F:49:01:1E:73:C6:07:EB:0A:BE:44:4C:44","sha256":"7B:0D:8E:03:0E:6E:23:65:30:3D:E8:FC:0C:E7:66:46:E2:5B:7F:FA:FD:D2:FF:61:4C:A4:18:08:24:70:51:6B"}}},"request":{"raw":"GET /popunder-admanager/build.m.js HTTP/1.1\r\nHost: js.capndr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: nginx/1.18.0\r\nlast-modified: Wed, 26 Nov 2025 15:42:56 GMT\r\netag: W/\"69272000-196df\"\r\ncontent-encoding: gzip\r\nexpires: Fri, 28 Nov 2025 11:37:12 GMT\r\ncache-control: max-age=300\r\nx-cdn-host-id: AH1742\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":104159,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"1509fbdaaea7140eef282b2269d0da1d","sha1":"fe3ca88ecf7e0b63a642925c3665373392684799","sha256":"5f41cdd5c8f9d74cf20e9fa2aa520d0a93ba3c9c2e7e9a3a96a0b39f68f567a7","sha512":"327e11a9e78e66e6f10f8e8a80baac5235078871947882d9efa878ff45f26c55559acc0cb5fe67d8a77b7a8d081e4c43c1b04c93c67eca44d27efc1ec0a37e20","ssdeep":"768:uAiyOOIGF3vRzxnR0i+bhLrhL5xub8JwfPsEIyp+dZIioT9FeWVbuoUfwqNl10W3:zOOlBB0Fuu0Xi77dc/sknkU8JAwUi","tlshash":"0ca329ca32a1f4b006e244ea943b0216f33e1929740e905cb7adddd57919d4fa236f7e","first_seen":"2025-11-27T10:29:28.913429Z","last_seen":"2025-12-05T10:50:48.099094Z","times_seen":111,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"js.capndr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 5117\r\ncf-ray: 9a598b110f0b3181-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03faa-45f4\"\r\nlast-modified: Mon, 04 May 2020 16:15:38 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 805956\r\nexpires: Wed, 18 Nov 2026 11:32:11 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=GxV5ByC0dQUL5lI9tPws8DfMcmwhojfEUXMaeRYSaM65RsxY4mvMPk6Js06F92sYhWKNul2PuhmZr8YI8XW4CEprt7Sz06xmDgTmy1i2lU%2BmDYWW3gATXYmJjHfznAJT0QfcCBvz\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17908,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (17660)","md5":"12dd498bf90c536803c2aad708b66c2b","sha1":"5f9363d39a405d1c94328cf2303ff4a05c0ad163","sha256":"c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a","sha512":"ec593a501ebf74c092e564a1aaf0b477d3da6813c9a88f29d0d2a0db8143bdf19718ba4e6b13f64295b077ca5cb9c13460c30f9f2f35982a82597b22f79ffdd1","ssdeep":"192:l3GySZoj5oOg8pu564aEzn5nVMnyk3sBakk3cx7x0IlQV0Hf1b5SwU+ahpfex/W9:lWytjU64auV0ISjyW5RAe","tlshash":"6f82b38cb295f0b553d710b5403f910fe2366928654ec4d8f288d5ea2c7899d663bf3d","first_seen":"2023-03-07T01:02:54Z","last_seen":"2026-05-31T12:28:59.273694Z","times_seen":7462,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":15,"dns":1,"connect":1,"send":0,"wait":17,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bvtpk.com/tag.min.js","fqdn":"bvtpk.com","domain":"bvtpk.com","tld":"com"},"ip":{"addr":"172.67.154.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bvtpk.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 07 Nov 2025 20:07:09 GMT","end":"Thu, 05 Feb 2026 21:05:30 GMT"},"fingerprint":{"sha1":"D2:20:C9:EE:4B:2D:3A:82:43:E2:14:9E:C3:25:30:01:9F:8F:BB:C3","sha256":"D2:57:0B:6C:75:32:2D:6D:C0:F7:1B:32:FC:56:BA:06:7F:64:4B:FC:95:E2:29:A1:4F:59:5C:DD:D3:8D:37:7B"}}},"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: bvtpk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-trace-id: e9ff24f0298130a1180514de14f8e0e4\r\ncache-control: public, max-age=600, s-maxage=1800\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 1216\r\ncf-cache-status: HIT\r\nlast-modified: Fri, 28 Nov 2025 11:11:54 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UZYZaSUNlvI7aNQb2iOp4Iz4klBAG2h7zCqx8sdHLgSdOHjVlb8idu4ytR49sjhd3ZrUSkCN3WE%2BOUwnwrzwQjRpjSwoos3Pdw%3D%3D\"}]}\r\ncf-ray: 9a598b127ff476ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":110320,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"5db44a9e44e1cc23c4aa2fe5bec72806","sha1":"6dfd0daadabf9945f194dd4737c06a60edc7f6a8","sha256":"9c4ad772249940629b6d3d86bcbfd1797b02dc5a7270c6f84bdef9584b307920","sha512":"68014553b16a7c1958e632548218489082fa08342de98a91fa43f3c5ca436173cb3e19a8d94f0f14f6afb1d63714fd0750038adba5546fe407109ce900b85664","ssdeep":"1536:TX3SvSfBAcXOXtDRQI+LNfU4IICZx6v8HN0SDhfkwdB7U4jMlDHQjN7TcstXQMS:TXC6J0xRJ+LmdIOxP0SNzjN7TcstgZ","tlshash":"50b32bd672667469126e90244597ec0db5be8c80048d8db8f0e5fc722d74b22e3f7be9","first_seen":"2025-11-28T11:05:14.122888Z","last_seen":"2025-11-28T11:32:39.472101Z","times_seen":2,"resource_available":true,"data":null}},"time_used":75,"timings":{"blocked":32,"dns":21,"connect":1,"send":0,"wait":5,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/spots/494334?s1=1952377772555378689\u0026fs1=1\u0026i=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.898Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 06 Nov 2025 23:28:43 GMT","end":"Wed, 04 Feb 2026 23:28:42 GMT"},"fingerprint":{"sha1":"66:4E:04:65:51:00:00:6F:45:5C:CD:BC:6C:DD:60:70:78:C4:D0:F8","sha256":"57:1A:C5:4F:7F:E6:61:6B:64:F0:82:6B:5F:1D:34:EC:2B:4C:B2:39:E0:5B:C9:DE:A4:CA:BD:76:ED:3E:9A:61"}}},"request":{"raw":"GET /api/spots/494334?s1=1952377772555378689\u0026fs1=1\u0026i=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880 HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: nauid=TOZG2Zl4Ga4deJ3BOKak; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2573,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (2071)","md5":"d6f2fa5359acacbdd745f68c445a4774","sha1":"ee6d7bcdcf1be86739f2741cfe7383aae29447f5","sha256":"2072858d21ef6434e3d6d81e93b8bfcb704caa605c86222fda8bb0359b00a5e2","sha512":"7c0f8a6dd733c82ed84d9382c1c321579b35c940d934389ca1bb234a29ca45c4159f761a02c43d59af239602f6aff1305a475cdc6a7cdedb9bdb20396f785fe6","ssdeep":"","tlshash":"c1517584d6fc6326f62b10b0dd7acbaf551ea14192198075efb726aac3cc64c06713ca","first_seen":"2025-11-28T11:32:39.473043Z","last_seen":"2025-11-28T11:32:39.473043Z","times_seen":1,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":70,"dns":31,"connect":13,"send":0,"wait":14,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/get/2081141?id=2081141\u0026jp=_clgzdwnremyrhswaptcsze\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.642-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=aSygMFPaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9qVnVIcDhzeT9sdjE9cGlkZXAuZGU\u0026afid=3774801797430272\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026pload=3060\u0026rlp=%5B0%2C68%2C103%2C74%2C73452%2C8186%2C4102%2C6493%2C1%5D\u0026srw=1280\u0026srh=1024\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.913Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"driverhugoverblown.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 14:23:57 GMT","end":"Wed, 21 Jan 2026 14:23:56 GMT"},"fingerprint":{"sha1":"AB:39:B2:8C:70:D6:0B:38:B0:1E:73:99:51:2D:35:30:EA:6B:4A:70","sha256":"86:18:14:14:6C:52:E9:C3:AC:03:AF:10:49:19:37:24:9D:9A:36:E6:1A:05:C8:1C:8E:69:BE:53:1E:CE:6F:65"}}},"request":{"raw":"GET /get/2081141?id=2081141\u0026jp=_clgzdwnremyrhswaptcsze\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.642-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=aSygMFPaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9qVnVIcDhzeT9sdjE9cGlkZXAuZGU\u0026afid=3774801797430272\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026pload=3060\u0026rlp=%5B0%2C68%2C103%2C74%2C73452%2C8186%2C4102%2C6493%2C1%5D\u0026srw=1280\u0026srh=1024\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0 HTTP/1.1\r\nHost: driverhugoverblown.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-route-id: config\r\nset-cookie: CHCK=1; Path=/; Expires=Fri, 01 Jan 2027 11:32:11 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Fri, 01 Jan 2027 11:32:11 GMT; Secure; SameSite=None\nUID=2511280632db9cdbc1d3c745899fb9c6b952; Path=/; Expires=Fri, 01 Jan 2027 11:32:11 GMT; Secure; SameSite=None\r\ncontent-encoding: gzip\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3280,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (3280), with no line terminators","md5":"07567ef6cbee09b02ac40887436da00e","sha1":"d6baf4313b9784eaeeb578de1b11557fa2dd54b8","sha256":"992b514639ebf037fd48e85cf41d3f2b41cd7b1bae324e8a9e0667fb786282dd","sha512":"e9515197c9df4f917966f931a06d69b79d09e47640c0794ecf1e9166bc327b1a565ea4b1ae7fd9936b0be7aef6e94df0779dcd15304e52354a0d84d3752533b1","ssdeep":"","tlshash":"996141bccf5ad842cbde154917be1f9590d5bafd5a2b0412d583b8e78f9843c8124883","first_seen":"2025-11-28T11:32:39.474412Z","last_seen":"2025-11-28T11:32:39.474412Z","times_seen":1,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ntvpforever.com/keywords","fqdn":"ntvpforever.com","domain":"ntvpforever.com","tld":"com"},"ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.576Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 02:00:40 GMT","end":"Sat, 24 Jan 2026 02:00:39 GMT"},"fingerprint":{"sha1":"2B:72:A9:3F:14:00:92:B9:05:AC:BC:3B:22:CB:D9:87:80:23:C8:3D","sha256":"60:5B:BA:7E:5F:7A:B1:E0:55:4D:4C:29:EA:C7:21:68:37:AF:03:5B:A7:3D:15:98:F1:65:96:AB:4A:3E:17:3B"}}},"request":{"raw":"OPTIONS /keywords HTTP/1.1\r\nHost: ntvpforever.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.18.0\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":242,"timings":{"blocked":108,"dns":11,"connect":32,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"1c0ec60324.e7d783f480.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxNTM5Njk2MjYzNzMyMTQ2MjAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIyLjM5LjIiLCJ0YWdfaWQiOjM0OTkxOSwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjg1LCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjB9","fqdn":"1c0ec60324.e7d783f480.com","domain":"e7d783f480.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.581Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1c0ec60324.e7d783f480.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 25 Nov 2025 02:47:51 GMT","end":"Mon, 23 Feb 2026 02:47:50 GMT"},"fingerprint":{"sha1":"45:44:67:56:6D:58:6A:D2:3D:94:EA:D8:C2:EE:EB:C6:B2:5C:F3:82","sha256":"37:90:BB:10:53:61:43:20:85:AF:8E:42:0B:86:75:DA:AC:E3:75:42:0D:27:CD:CB:8B:16:F0:63:E6:B0:53:D9"}}},"request":{"raw":"GET /in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxNTM5Njk2MjYzNzMyMTQ2MjAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIyLjM5LjIiLCJ0YWdfaWQiOjM0OTkxOSwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjg1LCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjB9 HTTP/1.1\r\nHost: 1c0ec60324.e7d783f480.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\ncontent-length: 0\r\nserver: nginx/1.18.0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nx-cdn-host-id: AH1747\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":296,"timings":{"blocked":134,"dns":82,"connect":21,"send":0,"wait":31,"receive":1,"ssl":25},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"1c0ec60324.e7d783f480.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fp.metricswpsh.com/fp?tag_id=349919","fqdn":"fp.metricswpsh.com","domain":"metricswpsh.com","tld":"com"},"ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notification.tubecup.net","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 10 Nov 2025 11:47:47 GMT","end":"Sun, 08 Feb 2026 11:47:46 GMT"},"fingerprint":{"sha1":"05:1E:63:2F:40:1F:87:C3:0D:F0:42:C7:EA:E8:B1:D8:6F:76:7C:FC","sha256":"1C:13:0E:F6:58:8A:8C:D7:DE:1F:9F:20:D5:17:50:15:02:D5:C8:8E:39:40:68:3F:01:24:F2:73:14:BA:25:0F"}}},"request":{"raw":"POST /fp?tag_id=349919 HTTP/1.1\r\nHost: fp.metricswpsh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 1970\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1970,"data":"{\"timezoneOlson\":\"UTC\",\"incognito\":true,\"fonts\":{\"value\":[\"Bitstream Vera Sans Mono\",\"Century\"],\"duration\":77},\"fontPreferences\":{\"value\":{\"default\":173.11666870117188,\"apple\":173.11666870117188,\"serif\":173.11666870117188,\"sans\":162.01666259765625,\"mono\":122.68333435058594,\"min\":10.800003051757812,\"system\":162.01666259765625},\"duration\":130},\"languages\":{\"value\":[[\"en-US\"],[\"en-US\",\"en\"]],\"duration\":0},\"colorDepth\":{\"value\":24,\"duration\":0},\"deviceMemory\":{\"duration\":0},\"screenResolution\":{\"value\":[1280,1024],\"duration\":1},\"hardwareConcurrency\":{\"value\":48,\"duration\":0},\"timezone\":{\"value\":\"UTC\",\"duration\":0},\"sessionStorage\":{\"value\":true,\"duration\":0},\"localStorage\":{\"value\":true,\"duration\":0},\"indexedDB\":{\"value\":true,\"duration\":0},\"platform\":{\"value\":\"Win32\",\"duration\":0},\"plugins\":{\"value\":[{\"name\":\"PDF Viewer\",\"description\":\"Portable Document Format\",\"mimeTypes\":[{\"type\":\"application/pdf\",\"suffixes\":\"pdf\"},{\"type\":\"text/pdf\",\"suffixes\":\"pdf\"}]},{\"name\":\"Chrome PDF Viewer\",\"description\":\"Portable Document Format\",\"mimeTypes\":[{\"type\":\"application/pdf\",\"suffixes\":\"pdf\"},{\"type\":\"text/pdf\",\"suffixes\":\"pdf\"}]},{\"name\":\"Chromium PDF Viewer\",\"description\":\"Portable Document Format\",\"mimeTypes\":[{\"type\":\"application/pdf\",\"suffixes\":\"pdf\"},{\"type\":\"text/pdf\",\"suffixes\":\"pdf\"}]},{\"name\":\"Microsoft Edge PDF Viewer\",\"description\":\"Portable Document Format\",\"mimeTypes\":[{\"type\":\"application/pdf\",\"suffixes\":\"pdf\"},{\"type\":\"text/pdf\",\"suffixes\":\"pdf\"}]},{\"name\":\"WebKit built-in PDF\",\"description\":\"Portable Document Format\",\"mimeTypes\":[{\"type\":\"application/pdf\",\"suffixes\":\"pdf\"},{\"type\":\"text/pdf\",\"suffixes\":\"pdf\"}]}],\"duration\":0},\"vendor\":{\"value\":\"\",\"duration\":0},\"cookiesEnabled\":{\"value\":true,\"duration\":0},\"colorGamut\":{\"value\":\"srgb\",\"duration\":0},\"rendererUnmasked\":{\"value\":\"\",\"duration\":24},\"brand\":\"\",\"device\":\"\",\"os_type\":\"desktop\",\"os_family\":\"Windows\",\"front_browser_family\":\"Firefox\",\"front_browser_name\":\"Firefox 134\",\"pixel_ratio\":1}"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 28 Nov 2025 11:32:12 GMT\r\nContent-Type: application/json; charset=UTF-8\r\nContent-Length: 60\r\nConnection: keep-alive\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://www.jumplixytd.com\r\nSet-Cookie: id=16963697537639522059; Expires=Sat, 28 Nov 2026 11:32:12 GMT; Secure; SameSite=None\r\nVary: Origin\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":60,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"a53e936f5aed8f51fde120eebf3ec8df","sha1":"306e4810969991f8d2fdff17da714d645675ad51","sha256":"6a1f16f8062843b82cf44375eb852db6710543fe70f67aa6fdd4cd10e6b0cf78","sha512":"044eebb9b90e2fd4370aeea1bc39cbeeb99560f6d850cd4c41af9d637908474326ff4d4b6ecf96a83de60d601274e3330d38387dad508616582fbd9054d7709b","ssdeep":"","tlshash":"24a002e3aac01107a0608310c24718168e487d30f41313400544c743a07a08036d2085","first_seen":"2025-07-26T23:55:29.904633Z","last_seen":"2026-05-31T08:53:10.028474Z","times_seen":1127,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":1,"connect":36,"send":0,"wait":32,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ntvpforever.com/keywords","fqdn":"ntvpforever.com","domain":"ntvpforever.com","tld":"com"},"ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 02:00:40 GMT","end":"Sat, 24 Jan 2026 02:00:39 GMT"},"fingerprint":{"sha1":"2B:72:A9:3F:14:00:92:B9:05:AC:BC:3B:22:CB:D9:87:80:23:C8:3D","sha256":"60:5B:BA:7E:5F:7A:B1:E0:55:4D:4C:29:EA:C7:21:68:37:AF:03:5B:A7:3D:15:98:F1:65:96:AB:4A:3E:17:3B"}}},"request":{"raw":"POST /keywords HTTP/1.1\r\nHost: ntvpforever.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 80\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":80,"data":"{\"ad_tags\":\"\",\"page\":\"https%3A//www.jumplixytd.com/e/jVuHp8sy%3Flv1%3Dpidep.de\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\ncontent-type: application/json\r\ncontent-length: 15\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"32323194b8b07fd0aa9b6f7fc79a7b30","sha1":"ea248c45722bff267b55a453dc794bc42171cef6","sha256":"080040b4937f3f423f32cd7f19b2a79ba1e1e213f1d9f4f4db4f609d4ad778d8","sha512":"e6b7cefe758be1e47a28ed8fc319cd61814e942838f0f65a26e629f0af39fae2547bece75c020c0cad5294b741a20911757b43b493dea2d3b109e4cf3ae3e9a3","ssdeep":"","tlshash":"9d600008200a08020880a000a20082002000a002002008282880008083002000888800","first_seen":"2023-09-22T06:12:14Z","last_seen":"2026-05-31T15:15:35.103306Z","times_seen":2580,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v2/s/home/resources/jVuHp8sy","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"OPTIONS /v2/s/home/resources/jVuHp8sy HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,x-stream-l1\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-length: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE\r\naccess-control-allow-headers: content-type, x-stream-l1\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8EkVzlA1L6F6xa0EUqAKpFJpPbTYjkI1fb6y7gVJq%2Fm8vlZnPm3yOpMODY5WgvnWFn5BU8%2FvlKbVELXkAJujdv6IGCfAuxMCsyFBHcTn9N5Sfp72HeIWlQ%3D%3D\"}]}\r\ncf-ray: 9a598b0c3bc8723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":284,"timings":{"blocked":34,"dns":21,"connect":1,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.255Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 14:57:20 GMT","end":"Fri, 13 Feb 2026 15:57:18 GMT"},"fingerprint":{"sha1":"80:2D:1E:ED:7E:27:75:C8:26:5C:5A:67:67:AE:0B:64:50:E0:CB:35","sha256":"12:CD:2F:65:36:49:D1:F0:8F:A7:6A:68:FF:9C:96:CC:70:D2:75:FE:A5:51:07:CC:D0:AA:5A:75:18:DC:8D:61"}}},"request":{"raw":"GET /asg_embed.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 76958\r\nserver: cloudflare\r\nlast-modified: Tue, 25 Nov 2025 12:36:13 GMT\r\nvary: Accept-Encoding\r\netag: \"6925a2bd-12c9e\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 255141\r\naccept-ranges: bytes\r\ncf-cache-status: HIT\r\ncf-ray: 9a598b124b5b56be-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":244732,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"d7171de24b2d4c2643970b1095a233ae","sha1":"ffc348ee33413da19679cb43d2b55e66d2dcec6b","sha256":"4e212e636dcda940f4a1c0a1733ab193c22a5389139aa4af28532ecff311efdf","sha512":"a098fe6a21e313446e61c3584baf8ebdea73cecb17c58839ac8dc8ff24584d6975e1202508a56e5d0b90aaf71a9a06eedd7b87cee18e29effad25c6be53cf98c","ssdeep":"6144:CodO6fPkBbhLTEcb2RbricaLvEVjDebko5tO82K3jk+AvU3rXeMcinGj6xIdLXKv:JP4bhfbowH","tlshash":"dd34b689b6c1b0b403e3a1b4056f551af277b944744ec5c1f729d9c0aeb9a0e9a27f3c","first_seen":"2025-11-25T14:52:48.749128Z","last_seen":"2025-12-01T11:11:10.736419Z","times_seen":65,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"172.64.146.234","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 26 Oct 2025 15:37:01 GMT","end":"Sat, 24 Jan 2026 16:36:49 GMT"},"fingerprint":{"sha1":"84:49:FF:DC:BD:D8:BA:3D:2F:25:0B:EF:CA:E4:6D:73:79:8C:F9:7D","sha256":"AF:21:94:4D:14:07:CF:FC:E5:3C:3C:F4:AC:47:9E:83:98:6A:62:87:FB:8C:27:43:25:FB:97:CC:47:15:99:4A"}}},"request":{"raw":"GET /gid.js HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=08028ffa47d5464cea5df67eec231470; expires=Sat, 28 Nov 2026 11:32:11 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 9a598b14591f4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"8551270d09ffbb0d8797aa0213d1afe4","sha1":"7e6325164e47e187a8f3d58ce2a9d12f932788f3","sha256":"017f00918492e12277755929f279b4c0f7b483b7500a664c5b52c413a0d06a8a","sha512":"11a4228ca4a48ceee84f6db37276d48337c6b45a99c0e4b2995cba3784f2f18ac7fba2fbd8c422fc8bee40cc7be4ba6419d1735a46d6b24b6746110c111ab017","ssdeep":"","tlshash":"3fa022c000282cc0000028022ccfaf00c200083080080a2203e2ce0003c30cc8a82280","first_seen":"2025-11-28T11:32:39.47626Z","last_seen":"2025-11-28T11:32:39.47626Z","times_seen":1,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":39,"dns":21,"connect":1,"send":0,"wait":32,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nereserv.com/in/dip?event_id=ac4d7547-e1cf-4449-936a-e5f8deee9b45\u0026subid=1450210302\u0026spot_id=1457063\u0026created_at=2025-11-28\u0026timezone=0\u0026ver=1.170.2","fqdn":"nereserv.com","domain":"nereserv.com","tld":"com"},"ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:13.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 02:00:40 GMT","end":"Sat, 24 Jan 2026 02:00:39 GMT"},"fingerprint":{"sha1":"2B:72:A9:3F:14:00:92:B9:05:AC:BC:3B:22:CB:D9:87:80:23:C8:3D","sha256":"60:5B:BA:7E:5F:7A:B1:E0:55:4D:4C:29:EA:C7:21:68:37:AF:03:5B:A7:3D:15:98:F1:65:96:AB:4A:3E:17:3B"}}},"request":{"raw":"GET /in/dip?event_id=ac4d7547-e1cf-4449-936a-e5f8deee9b45\u0026subid=1450210302\u0026spot_id=1457063\u0026created_at=2025-11-28\u0026timezone=0\u0026ver=1.170.2 HTTP/1.1\r\nHost: nereserv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Fri, 28 Nov 2025 11:32:13 GMT\r\ncontent-length: 0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accuratephrase.com/YJ2-xLpMZ.WN5O0_ZQGRFS0TY-TV9WyXcYm_lakbPcTdI-1fYgjhgi0_OkDlAmynO-TpkqxrOsT_hujvNwjxE-xzMADBYCw_YEmFJGiHM-jJQK0LNMz_FOjPNQjRE-4T","fqdn":"accuratephrase.com","domain":"accuratephrase.com","tld":"com"},"ip":{"addr":"188.72.219.35","port":443,"asn":35415,"as":"Webzilla B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"accuratephrase.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Oct 2025 06:43:11 GMT","end":"Sat, 10 Jan 2026 06:43:10 GMT"},"fingerprint":{"sha1":"5C:01:82:3D:3E:91:A2:72:76:A4:E8:DA:42:F8:FD:E6:74:85:B6:CF","sha256":"70:75:DE:E9:C6:17:AD:2B:3D:6E:6A:92:30:CC:7F:07:FE:0A:01:18:13:08:46:C7:F6:A5:EE:0D:04:8E:7E:00"}}},"request":{"raw":"POST /YJ2-xLpMZ.WN5O0_ZQGRFS0TY-TV9WyXcYm_lakbPcTdI-1fYgjhgi0_OkDlAmynO-TpkqxrOsT_hujvNwjxE-xzMADBYCw_YEmFJGiHM-jJQK0LNMz_FOjPNQjRE-4T HTTP/1.1\r\nHost: accuratephrase.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 77\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":77,"data":"ref=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026prevRef="}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-length: 0\r\nexpires: Mon, 26 Jul 2011 05:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\naccept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"na.nawpush.com/tags/349919?version_name=a\u0026domain=www.jumplixytd.com","fqdn":"na.nawpush.com","domain":"nawpush.com","tld":"com"},"ip":{"addr":"45.133.44.24","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.727Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"na.nawpush.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 18 Nov 2025 02:32:21 GMT","end":"Mon, 16 Feb 2026 02:32:20 GMT"},"fingerprint":{"sha1":"2B:B2:C7:E4:0C:35:8B:EA:A3:45:09:54:58:1F:96:D4:28:92:9E:24","sha256":"5D:DA:64:89:43:2F:60:A7:F1:43:BE:04:58:13:73:0E:73:99:6E:4B:50:A4:E4:06:23:B2:73:B0:E0:22:86:AF"}}},"request":{"raw":"GET /tags/349919?version_name=a\u0026domain=www.jumplixytd.com HTTP/1.1\r\nHost: na.nawpush.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/json\r\nserver: nginx/1.24.0\r\ncache-control: max-age=300, public\r\nx-cdn-host-id: DS5058\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1377,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"ae4eab6796746753c0451d31fca082c8","sha1":"a3457cbbe8f21ab733684a2e66451512af4034c5","sha256":"b5ac9fc17c3cb93f79d49632f90ac36d2f8f3ad4b6a34a8e1c8aab17e22cea20","sha512":"542e907a8d915b9e39b6f89fe784570a636f24fa6e88eabc46002af2430db2a61bd7ce1d5de847c86dc62b25bd15ee5eb6b6908c19ec465c9999cf52a21e5931","ssdeep":"","tlshash":"2a2133ec95759caac0c4478a84d63f4803a4327bb2c87856f5ad497816cf5961d2f24b","first_seen":"2025-11-02T18:06:42.054174Z","last_seen":"2025-12-05T10:34:22.018509Z","times_seen":13,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":50,"dns":1,"connect":19,"send":0,"wait":19,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"na.nawpush.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494333?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 06 Nov 2025 23:28:43 GMT","end":"Wed, 04 Feb 2026 23:28:42 GMT"},"fingerprint":{"sha1":"66:4E:04:65:51:00:00:6F:45:5C:CD:BC:6C:DD:60:70:78:C4:D0:F8","sha256":"57:1A:C5:4F:7F:E6:61:6B:64:F0:82:6B:5F:1D:34:EC:2B:4C:B2:39:E0:5B:C9:DE:A4:CA:BD:76:ED:3E:9A:61"}}},"request":{"raw":"GET /api/users/494333?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: nauid=TOZG2Zl4Ga4deJ3BOKak\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":672,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (362)","md5":"3a49b6824dc469eed4e022b054809596","sha1":"29d61e888844fcabd451914c0acfa874dc0d612a","sha256":"7375f43efa837a0f2cf1756ba6fc9129f4fa6a3ccb06d87832db26cb52200f74","sha512":"bf6a55e9df6fc8e81fb528a419a66063ba88b501982c2eddf4ad40411667f9a5ceb4debb0b885da86ff78d282ea46c7db8a9c1836a9c6a935f43cc1446ba2ab0","ssdeep":"","tlshash":"fd010281979c96ff9748a0b3cd3c4fb64e4d46752758601afb75d31f54ce282436029b","first_seen":"2025-11-28T11:32:39.477867Z","last_seen":"2025-11-28T11:32:39.477867Z","times_seen":1,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v2/s/assets/f?id=02c5dc54-24ff-482a-8f19-650409399146\u0026uid=1952377772555378689","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"GET /v2/s/assets/f?id=02c5dc54-24ff-482a-8f19-650409399146\u0026uid=1952377772555378689 HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: application/json\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/json\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nx-xbox-platform: streaming\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7JD9B1cOgde48G%2FMNlvqkwQ1qyM8sluertoVeNPMYZDSkPbaKZRjAadVrFx8aBi8PTCNc8fBnEvn%2BIqp8CCHv%2B7ZCPSlJ4c3oOObWWtlZv28wNXVNZs%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9a598b104ff156ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":162,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"81bd881ca31b362d5cd1a4410ea17026","sha1":"e8664c5e86862c3dddf18a64d8c80b0c5f7785dd","sha256":"714a2cc09073045c8393ed2cb6fa5d9189b5c64fd5f477cef631c462cb02f297","sha512":"b2516d2752b812499fb72550ed7daed6b8d882fb7cb55a285eb48b4b5b9bb5fa683035c37a061ecda5d4729363a1d3e752f361e2a00d277b7132d55f82740081","ssdeep":"","tlshash":"ebc0803415d6155369398df42569448c4941381491783b5588c9c5654791447efd54b6","first_seen":"2025-11-28T11:32:39.478685Z","last_seen":"2025-11-28T11:32:39.478685Z","times_seen":1,"resource_available":false,"data":null}},"time_used":659,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":659,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/505766?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026ab=1\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 06 Nov 2025 23:28:43 GMT","end":"Wed, 04 Feb 2026 23:28:42 GMT"},"fingerprint":{"sha1":"66:4E:04:65:51:00:00:6F:45:5C:CD:BC:6C:DD:60:70:78:C4:D0:F8","sha256":"57:1A:C5:4F:7F:E6:61:6B:64:F0:82:6B:5F:1D:34:EC:2B:4C:B2:39:E0:5B:C9:DE:A4:CA:BD:76:ED:3E:9A:61"}}},"request":{"raw":"GET /api/users/505766?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026ab=1\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: nauid=TOZG2Zl4Ga4deJ3BOKak\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":660,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (351)","md5":"f27bc06f12d73b870efbe6150f7e9ea0","sha1":"84f0fd1b72ced4db674c2c5db350a1aac6282924","sha256":"7da36866088ef9d892150da635cf5f8874ea2b44b9e5f50fa0b56d2cd1db0b05","sha512":"a67240ce1e1c72441066aea3d40054b37d2e9378b60db8df1804bf6705cbe189d5d349cd0332fef6be60561f42a6efaa64787ea3f1ab8336489256a753d0d245","ssdeep":"","tlshash":"6a0102c287ac56ff574850a3cd3c4fb68e4d45393714601afb38830a59cb28243a029b","first_seen":"2025-11-28T11:32:39.479567Z","last_seen":"2025-11-28T11:32:39.479567Z","times_seen":1,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/check.html","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.717Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"driverhugoverblown.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 14:23:57 GMT","end":"Wed, 21 Jan 2026 14:23:56 GMT"},"fingerprint":{"sha1":"AB:39:B2:8C:70:D6:0B:38:B0:1E:73:99:51:2D:35:30:EA:6B:4A:70","sha256":"86:18:14:14:6C:52:E9:C3:AC:03:AF:10:49:19:37:24:9D:9A:36:E6:1A:05:C8:1C:8E:69:BE:53:1E:CE:6F:65"}}},"request":{"raw":"GET /check.html HTTP/1.1\r\nHost: driverhugoverblown.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlast-modified: Mon, 24 Nov 2025 08:42:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69241a69-39e\"\r\nx-js-ab: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":926,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"088dba8e97eede53134c93219f7ebbae","sha1":"adb707654d1fe0af7d0d7a9f55660d22bd3625e4","sha256":"6da0120b4c7bc45b63fcbb87595c3c1ea2cdca482b0c48d4d2ab434f9e897aff","sha512":"23a1f87731e8aee4658993cd1ce35ec179fea80b89bf52aca7634488f1bdfcf88b9cabca4859481357a9fee06cbb49df64bbe0878b1dae0e5df4fa34003c6d80","ssdeep":"","tlshash":"6211d04934e1684c1127a6301597a2183c32a40315cbd949fb9cd7301f815a7dc596df","first_seen":"2024-11-22T16:59:41.974716Z","last_seen":"2026-03-04T10:11:28.020186Z","times_seen":13721,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ads.google.com/","fqdn":"ads.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adwords.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:34:53 GMT","end":"Mon, 19 Jan 2026 08:34:52 GMT"},"fingerprint":{"sha1":"18:12:87:2F:99:A4:11:BF:67:C5:75:13:D1:57:4F:07:B4:7D:94:F9","sha256":"1D:BE:1D:48:B0:C4:15:87:B7:22:B0:A0:C6:44:D0:7D:17:2D:C0:FE:0A:FA:A3:50:ED:72:58:40:FD:96:02:56"}}},"request":{"raw":"HEAD / HTTP/1.1\r\nHost: ads.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/2 429 Too Many Requests\r\ncontent-length: 1103\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"429","status_text":"Too Many Requests","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":697,"timings":{"blocked":87,"dns":0,"connect":21,"send":0,"wait":523,"receive":0,"ssl":62},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"74.125.205.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.918Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:35:52 GMT","end":"Mon, 19 Jan 2026 08:35:51 GMT"},"fingerprint":{"sha1":"95:94:D2:A2:42:3D:9B:2F:BB:65:03:35:EA:85:1D:B6:C0:BB:E5:07","sha256":"53:9A:55:C8:25:B4:4A:38:C0:A9:FD:A8:38:B3:FD:CA:8E:7E:1F:2A:79:A9:52:76:8C:00:7C:7B:96:1E:45:33"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:0JYzGwOnPlNVWfdsvSK-ajp6rUar2g:1ACZSvLEDheC1P0m; Expires=Sun, 28-Nov-2027 11:32:13 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Fri, 28 Nov 2025 11:32:13 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1309491115:1764329533004555\u0026ifkv=ARESoU0ai8tkyjBVtHUdtW8X6lg8R0Y7XV82Myrl6LK3rH8Hy7WSa87KVMt3XL77VyoEnJBerLrF\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy: unsafe-none\r\ncontent-security-policy: script-src 'nonce-0932di7KsG4n_dYryUU8Xw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncross-origin-resource-policy: cross-origin\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":78,"dns":0,"connect":16,"send":0,"wait":22,"receive":0,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1309491115:1764329533004555\u0026ifkv=ARESoU0ai8tkyjBVtHUdtW8X6lg8R0Y7XV82Myrl6LK3rH8Hy7WSa87KVMt3XL77VyoEnJBerLrF","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"74.125.205.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:13.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:33:51 GMT","end":"Mon, 19 Jan 2026 08:33:50 GMT"},"fingerprint":{"sha1":"99:FF:FA:35:E4:FB:4B:28:B0:D5:C1:D4:AD:3F:43:AA:85:22:87:8B","sha256":"30:D1:CE:98:2F:EB:E2:4A:53:22:1C:BF:BB:4E:BC:2C:CA:E1:CE:CF:B7:9D:20:26:F9:55:2A:6B:ED:AD:DA:83"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1309491115:1764329533004555\u0026ifkv=ARESoU0ai8tkyjBVtHUdtW8X6lg8R0Y7XV82Myrl6LK3rH8Hy7WSa87KVMt3XL77VyoEnJBerLrF HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:ksQK0I3GV2ZgGQg2z0NRkGOBIct1cw:VzHAGYGnuggQEijO;Path=/;Expires=Sun, 28-Nov-2027 11:32:13 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Fri, 28 Nov 2025 11:32:13 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1309491115%3A1764329533004555\u0026hl=en\u0026ifkv=ARESoU3IussAkI4giUwDlYCkjHsR-651pkTVmSIw9BZworHk1DCHRz_uBJAxJ8Tdg_iQ8G59UOPy\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-security-policy: script-src 'nonce-BmjYgJ-OPqwy3Ueouok8ww' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 417\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/vendor-chunks-DoTr35U9-1764298795951.css","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:09.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /assets/vendor-chunks-DoTr35U9-1764298795951.css HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC867D8D9B15BCF3F26B89E41\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 28 Nov 2025 03:00:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: LA-MEX-mexicocity-EDGE2-CACHE6[5],LA-MEX-mexicocity-EDGE2-CACHE2[0,TCP_HIT,3],LA-MEX-mexicocity-GLOBAL1-CACHE22[3],LA-MEX-mexicocity-GLOBAL1-CACHE20[0,TCP_HIT,0]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 06ad729b08537fcd05a7d5bc6d8ea69e\r\nnginx-hit: 1\r\nage: 1108\r\nx-ccdn-expires: 2590892\r\ncontent-encoding: br\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"583c695c76766d48b720411106e87599\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7NNELdrZrxQ%2BK9%2BB6KiGzNbh4d51FTPcz5QXvjevks9OoAYokBDNRQbaVLGs5UYwPJwNMrhaKU3jU5VY0y5PCXtm2MjYavpfmPd95%2BmcpQ0%3D\"}]}\r\ncf-ray: 9a598b04dd2756c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":161718,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"583c695c76766d48b720411106e87599","sha1":"e7e75b7ea87593b675eac8f4937a1af7db66f102","sha256":"3f61af115313bbfe92c14794125043e3c53029cc5be9de758ce7a6a4e503275d","sha512":"a9c008b55f23c2460d6650529750b10d9ff30b66cdeb90ca7ad75ec21bb350c619593ae0e01975bacf784d013e08795f40f95c365deeaa4e594a6aa3785e2756","ssdeep":"768:eK4kaqXtxtd5+NuoRbV/es4idulogKFjY3xkjS5nz1miiJykXEK1rBw0OBp6EnUp:eKLvTdw7tejDxkjS5nzK8BTpZaKjpi","tlshash":"58f39569ea10a27de91faf259bc49f8ca224e881cd311af7f685610c4dc3bf115e274d","first_seen":"2025-06-14T07:01:13.355089Z","last_seen":"2026-02-27T13:27:16.333567Z","times_seen":523,"resource_available":false,"data":null}},"time_used":958,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":954,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/favicon.ico","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.227Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\r\nCookie: _ga_FZ6E2FXG92=GS2.1.s1764329529$o1$g0$t1764329529$j60$l0$h0; _ga=GA1.1.1570273686.1764329529\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1LUGrTVJZcnwxuAzVpUkw7o7DCcKT8yAif8Obb%2FkliGMEM77KI0c8%2F1Sd3M0Sfi5o3jOOUH6N0nML3y%2BEiC9frl2E9dQ%2FpkmZ6H%2FoOL06eQ%3D\"}]}\r\npriority: u=6,i=?0\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC867DAAEB2DAA7BC7A64151C\r\ncontent-encoding: br\r\nlast-modified: Fri, 28 Nov 2025 03:00:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EU-ESP-madrid-AREA1-CACHE2[3],EU-ESP-madrid-AREA1-CACHE3[0,TCP_HIT,1],EU-IRL-dublin-GLOBAL1-CACHE2[379],EU-IRL-dublin-GLOBAL1-CACHE3[373,TCP_MISS,376]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 3993c3e77e97f415163fd56c701771a9\r\nnginx-hit: 1\r\nage: 30690\r\nx-ccdn-expires: 2561310\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9a598b0bed6d56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2018,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"db763a052543178abf0fcc36e47d7486","sha1":"4f066aa182b020487288ac010bad7bb6e7766fa6","sha256":"97ddbe9d4068277f488243f8d656eaa01b2fd38c3dfda47629920d1d3406436b","sha512":"a5038d49390d0f1ba06498e9e2a86e5dadb2b4ebecb210a0d37091e0cb0ba6738b739a80305c5fa1a93b72e190f51e1b654f0dc8fa80504984832487affd8bc4","ssdeep":"","tlshash":"9a4143472de3884834219a566fd2f2286d55b2435f46ed8875ee713ccf85b83cdc38a4","first_seen":"2025-11-28T06:41:44.622418Z","last_seen":"2025-12-02T01:56:26.126693Z","times_seen":16,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":74,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accuratephrase.com/c.D/9Q6Cb/2f5el/SEW/QJ9ZNNj/Yn4tOaDHkl3dN/i/0-2gN/jagC4/OSTncd3I","fqdn":"accuratephrase.com","domain":"accuratephrase.com","tld":"com"},"ip":{"addr":"188.72.219.35","port":443,"asn":35415,"as":"Webzilla B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"accuratephrase.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Oct 2025 06:43:11 GMT","end":"Sat, 10 Jan 2026 06:43:10 GMT"},"fingerprint":{"sha1":"5C:01:82:3D:3E:91:A2:72:76:A4:E8:DA:42:F8:FD:E6:74:85:B6:CF","sha256":"70:75:DE:E9:C6:17:AD:2B:3D:6E:6A:92:30:CC:7F:07:FE:0A:01:18:13:08:46:C7:F6:A5:EE:0D:04:8E:7E:00"}}},"request":{"raw":"GET /c.D/9Q6Cb/2f5el/SEW/QJ9ZNNj/Yn4tOaDHkl3dN/i/0-2gN/jagC4/OSTncd3I HTTP/1.1\r\nHost: accuratephrase.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\npragma: no-cache\r\naccept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64\r\nexpires: Mon, 26 Jul 2011 05:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\nlast-modified: Fri, 28 Nov 2025 11:32:11 GMT\r\naccess-control-allow-headers: Content-Type\r\nset-cookie: uniqCookie=0b62ad15e37687101a8fd9729bb636f3; max-age=1766921531; path=/\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38022,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (22784)","md5":"e9c678176765f6bc762dc882c9682533","sha1":"534baf53a087fa7e82286a58a8bf8dc720b74ae2","sha256":"8162dc6b247bf5339c0cb03346896de2942de5680a2403f5e5525f5f2e54300d","sha512":"37d427a8c143917afed3a675887af9f8318ba8f124c817e211f093c03e16a7f53db7a2e20098b2a0b5681e9627dd39cd79f9065428c3baa4385b8f45ebc449d1","ssdeep":"768:QZhdZg7J0OMLfTF9dFaQNp8JY29c6SboEBkleZ2YoOcLhlPPTgLgooDMiG82IG1Q:QZ1g7JQLqQNp8Jr9c6SboEBkleZ2qcLD","tlshash":"0803a6c871c3642642ea507d713b7208b23a5465542db028bc79c8e4fcb9e9f8577bbd","first_seen":"2025-11-28T11:32:39.482448Z","last_seen":"2025-11-28T11:32:39.482448Z","times_seen":1,"resource_available":true,"data":null}},"time_used":212,"timings":{"blocked":80,"dns":32,"connect":17,"send":0,"wait":42,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"36946.phidonatome.com/4/js/260941","fqdn":"36946.phidonatome.com","domain":"phidonatome.com","tld":"com"},"ip":{"addr":"88.208.22.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.phidonatome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 10 Nov 2025 09:13:10 GMT","end":"Sun, 08 Feb 2026 09:13:09 GMT"},"fingerprint":{"sha1":"D1:79:EC:D3:41:C5:94:89:05:BD:DF:2C:EA:FE:0D:E3:B2:42:25:47","sha256":"44:7D:1E:F2:C0:52:2F:E1:0F:B3:A0:98:03:B5:E2:57:13:66:36:49:33:A6:9D:B4:E1:45:A3:41:BB:EA:43:CE"}}},"request":{"raw":"GET /4/js/260941 HTTP/1.1\r\nHost: 36946.phidonatome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncontent-length: 11321\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nreferrer-policy: unsafe-url\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Device-Memory\r\naccept-ch-lifetime: 31536000\r\nset-cookie: _ccid=3582246189430502496; expires=Tue, 28 Nov 2028 11:32:11 GMT; domain=phidonatome.com; path=/; HttpOnly; secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31409,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (31409), with no line terminators","md5":"fc2d9111111dc502a81c12b4aec0adb6","sha1":"b0f758a02beb133eee77a448e7194216a2f44109","sha256":"fbd56fb6b198d3a73954b7811258f3a5c1d666e4de3637eab95467eb193012a2","sha512":"2b3bfb7198db442542d2da881617c661c61943be656389c21699bc2ec42495cc951cb793255d3987e9d3ab0f679e52bfab0ddde3776f09eb44a910db2b8370bb","ssdeep":"768:HiYmbr/4nqZVnyTPxVC2/R3hMwsZwJmvnDY87bBZzBPZvzXRb7iGqj:CdyxnufF3qj","tlshash":"5ee22995f996703043f7187a403f521af3361a94789e8460da2b95822c66fcb837bf7d","first_seen":"2025-11-28T11:32:39.483503Z","last_seen":"2025-11-28T11:32:39.483503Z","times_seen":1,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":64,"dns":19,"connect":17,"send":0,"wait":27,"receive":1,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/505818?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.540Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 06 Nov 2025 23:28:43 GMT","end":"Wed, 04 Feb 2026 23:28:42 GMT"},"fingerprint":{"sha1":"66:4E:04:65:51:00:00:6F:45:5C:CD:BC:6C:DD:60:70:78:C4:D0:F8","sha256":"57:1A:C5:4F:7F:E6:61:6B:64:F0:82:6B:5F:1D:34:EC:2B:4C:B2:39:E0:5B:C9:DE:A4:CA:BD:76:ED:3E:9A:61"}}},"request":{"raw":"GET /api/users/505818?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: nauid=TOZG2Zl4Ga4deJ3BOKak\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":661,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (351)","md5":"ac9b24d63fbb2c2217ece16afafd690d","sha1":"261880f52c18d4e45d9313a432611389b6df13ca","sha256":"0df3ec836d26376ab32fd1f3a3a29860d9b5efb039ea2ee3ffdf3de659ba4f82","sha512":"05237c79812e67a45de37661a57865ab4849113ef6c6568e93e939f777e0764c1db061924c945f6e9317206074e54c8c38de27cf02addb1bfbd1b6b381cb4435","ssdeep":"","tlshash":"0f0102c5979ca5ff5744a0a3cd3d4fb68b8d493d2714601efb24834b58db28243b029b","first_seen":"2025-11-28T11:32:39.486138Z","last_seen":"2025-11-28T11:32:39.486138Z","times_seen":1,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494298?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.573Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 06 Nov 2025 23:28:43 GMT","end":"Wed, 04 Feb 2026 23:28:42 GMT"},"fingerprint":{"sha1":"66:4E:04:65:51:00:00:6F:45:5C:CD:BC:6C:DD:60:70:78:C4:D0:F8","sha256":"57:1A:C5:4F:7F:E6:61:6B:64:F0:82:6B:5F:1D:34:EC:2B:4C:B2:39:E0:5B:C9:DE:A4:CA:BD:76:ED:3E:9A:61"}}},"request":{"raw":"GET /api/users/494298?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: nauid=TOZG2Zl4Ga4deJ3BOKak\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":661,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (351)","md5":"4d9b9d7590f029b11403ecf196950b38","sha1":"2b5f4f0e6c53f08400096e2592e7f77bfecc2361","sha256":"0d3b3a0620cbe373da6ac399aead30ec7b088a2847910aa39ba806c329a4fc21","sha512":"968eb1f9809e9a6ac5c533368b8208cef48485ad2c38812a939396831dbfe67c4a8dc4d7d3011539a92a1acac708dcb1a0a9d65e0de8487ad200c1d49625a8ef","ssdeep":"","tlshash":"2c010282879c96ff574461b7dd3d0fba4a4d453a2315704efb28c30a58cf38243a029b","first_seen":"2025-11-28T11:32:39.487107Z","last_seen":"2025-11-28T11:32:39.487107Z","times_seen":1,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1309491115%3A1764329533004555\u0026hl=en\u0026ifkv=ARESoU3IussAkI4giUwDlYCkjHsR-651pkTVmSIw9BZworHk1DCHRz_uBJAxJ8Tdg_iQ8G59UOPy\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"74.125.205.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:13.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:33:51 GMT","end":"Mon, 19 Jan 2026 08:33:50 GMT"},"fingerprint":{"sha1":"99:FF:FA:35:E4:FB:4B:28:B0:D5:C1:D4:AD:3F:43:AA:85:22:87:8B","sha256":"30:D1:CE:98:2F:EB:E2:4A:53:22:1C:BF:BB:4E:BC:2C:CA:E1:CE:CF:B7:9D:20:26:F9:55:2A:6B:ED:AD:DA:83"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1309491115%3A1764329533004555\u0026hl=en\u0026ifkv=ARESoU3IussAkI4giUwDlYCkjHsR-651pkTVmSIw9BZworHk1DCHRz_uBJAxJ8Tdg_iQ8G59UOPy\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Fri, 28 Nov 2025 11:32:13 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-IBQmwjYBPtfIte1FD_HPPA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/recaptcha/enterprise.js https://www.gstatic.com/recaptcha/ https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.KEYUHSehrM0.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-28T11:32:07.201Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /e/jVuHp8sy?lv1=pidep.de HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:08 GMT\r\ncontent-type: text/html\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC8C2E8A5B2DF5B67DDD70CB1\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iRTTeP7XOkFKVrYjfiiIObaKbmEQW5C7kyj00Kky%2FOMt7%2BJNSbJaV14XUqkPoH9pDcnkG0%2FqB4XOyeMwcjnbPYRJ3TERmiocJEjcyWLufRU%3D\"}]}\r\nlast-modified: Fri, 28 Nov 2025 03:00:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2568497\r\nvia: EU-ESP-madrid-AREA1-CACHE2[5],EU-ESP-madrid-AREA1-CACHE1[0,TCP_HIT,3],EU-IRL-dublin-GLOBAL1-CACHE15[21],EU-IRL-dublin-GLOBAL1-CACHE4[0,TCP_HIT,20]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 6dad0b7d45cc3327269fc362084000fb\r\nnginx-hit: 1\r\nage: 23503\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9a598af95a89b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2018,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"db763a052543178abf0fcc36e47d7486","sha1":"4f066aa182b020487288ac010bad7bb6e7766fa6","sha256":"97ddbe9d4068277f488243f8d656eaa01b2fd38c3dfda47629920d1d3406436b","sha512":"a5038d49390d0f1ba06498e9e2a86e5dadb2b4ebecb210a0d37091e0cb0ba6738b739a80305c5fa1a93b72e190f51e1b654f0dc8fa80504984832487affd8bc4","ssdeep":"","tlshash":"9a4143472de3884834219a566fd2f2286d55b2435f46ed8875ee713ccf85b83cdc38a4","first_seen":"2025-11-28T06:41:44.622418Z","last_seen":"2025-12-02T01:56:26.126693Z","times_seen":16,"resource_available":false,"data":null}},"time_used":1739,"timings":{"blocked":49,"dns":24,"connect":1,"send":0,"wait":1640,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/main-Gb0ezMPB-1764298795951.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:09.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /assets/main-Gb0ezMPB-1764298795951.js HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:09 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC867EBC4B0D476B42BF07C21\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 28 Nov 2025 03:00:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EU-BLR-minsk-EDGE1-CACHE1[5],EU-BLR-minsk-EDGE1-CACHE3[0,TCP_HIT,2],EU-GER-frankfurt-GLOBAL1-CACHE4[6],EU-GER-frankfurt-GLOBAL1-CACHE11[0,TCP_HIT,1]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 64281eb2673a012619fab40e76ff52c3\r\nnginx-hit: 1\r\nage: 1099\r\nx-ccdn-expires: 2590901\r\ncontent-encoding: br\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"1e22c97f0fd577850028e349a17bd4b1\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0gZitxb%2FxHK8ZEehFBU6%2F3mpY6RjeLFeFsuDKs3wc0XuoppbkhMeWp2SAdAvGJSZFwv6zkUiMr7BVU1Zy0rW0dhixki1bcpq0VB3qDNIwLU%3D\"}]}\r\ncf-ray: 9a598b04dd2656c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":93512,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (14287)","md5":"1e22c97f0fd577850028e349a17bd4b1","sha1":"9f70183e6d418d8274f980fceeec6e79a8d8fb0c","sha256":"f314a2df3d74feac54ffc1655298a94c36383cad57ff8559687b8a15d26fe69e","sha512":"0929c3b668485948473a2b684bc83f88e3875b8306bda1497b1c0a57737d181babd958b6c769989031c54bb983da2fbcbffc01667a4a7e3713e4bcaa86554155","ssdeep":"1536:K0/qDHfrLF4j8/bHqmFfoETDrbsUSOBK/C0KD6tWF/FsuT3ue+/rRjJ:KfDHHF4j8zHaY3SiSt+3ue+NN","tlshash":"24937dfd60198f3ce96104c1743a953478193b6bfa28c891f0fe3c125b94d4a59aabde","first_seen":"2025-11-28T06:41:44.70537Z","last_seen":"2025-12-02T01:56:26.1273Z","times_seen":16,"resource_available":true,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":150,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bereave.onelinevideo.com/moire/calibre/eclipse","fqdn":"bereave.onelinevideo.com","domain":"onelinevideo.com","tld":"com"},"ip":{"addr":"47.252.7.200","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bereave.onelinevideo.com","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Mon, 21 Apr 2025 00:00:00 GMT","end":"Mon, 20 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E0:8E:3E:B2:04:D3:F1:8E:24:9D:86:3A:9E:82:A4:F5:45:3F:D1:AD","sha256":"92:99:82:77:56:12:E5:7A:6F:E4:9E:E1:33:D0:ED:6E:11:A4:AF:65:E4:1A:60:B9:75:F8:9B:59:74:D7:01:8B"}}},"request":{"raw":"POST /moire/calibre/eclipse HTTP/1.1\r\nHost: bereave.onelinevideo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 906\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":906,"data":"{\"annotate\":{\"togging\":\"\",\"rumpus\":1764329530743,\"porch\":\"\",\"mesmeric\":\"\"},\"most\":{\"wabash\":\"nectary\",\"fasten\":\"655d0c37-0322-484f-ad5d-c24abfe26a40\",\"alveoli\":\"onelinevideo.com\",\"cocktail\":\"1.0.0\",\"pontiac\":\"\",\"quintus\":\"\",\"skulk\":\"530d1b26-40a1-43e1-80ac-332b18487e54\"},\"sunk\":\"h5_lix_page_show\",\"choral\":{\"ua\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"fingerprint_id\":\"faed01b113cfb270c624ee1aa793ad6c\",\"browsertabid\":\"8fc9079b-62f2-4168-a884-8022db54d59a\",\"h5_url\":\"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\",\"uid\":\"1952377772555378689\",\"station_Id\":\"1952377772555378689\",\"link_id\":\"jVuHp8sy\",\"file_id\":\"02c5dc54-24ff-482a-8f19-650409399146\",\"linkid\":\"jVuHp8sy\",\"os\":\"web\",\"ip\":\"\",\"url\":\"https://www.jumplixytd.com\",\"platform\":\"\",\"level1\":\"\",\"country\":\"\",\"level1_domain\":\"pidep.de\",\"level2_domain\":\"www.jumplixytd.com\",\"h5_page_type\":\"h5_page_embed\"}}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: no-store\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":38,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with no line terminators","md5":"41611663fde32b81bd5dcc781455ff7a","sha1":"682b1cdac1dd58624934bdaa82642b574dc394ea","sha256":"93a808c3cf4f080872febb184314944f05b15bd4ecf0af6009ead8f711069563","sha512":"1dc010496fb559a51266efab69e20dc09df155533f00a8bae43cdea08a27312a4e00dec72a861409640cb28f1b4e5144939a77459c578fd3ce21a4f650c9e2aa","ssdeep":"","tlshash":"5e80044f5100c30c5cc5f75d05504f7115d01c070153150d15370101df473104301d04","first_seen":"2025-11-28T11:32:39.489203Z","last_seen":"2025-11-28T11:32:39.489203Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1709,"timings":{"blocked":803,"dns":101,"connect":114,"send":0,"wait":104,"receive":0,"ssl":582},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.wpadmngr.com/static/adManager.js","fqdn":"js.wpadmngr.com","domain":"wpadmngr.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.wpadmngr.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 01 Nov 2025 03:32:41 GMT","end":"Fri, 30 Jan 2026 03:32:40 GMT"},"fingerprint":{"sha1":"E3:9D:D3:89:FB:90:7B:AA:8C:19:20:0E:65:8F:8A:B8:25:1C:19:1C","sha256":"DA:2F:33:FE:DB:D4:DD:3C:4D:80:E7:DE:2D:70:4B:D7:61:B4:0C:64:DA:A2:78:BB:8F:0B:66:29:AA:A3:2F:37"}}},"request":{"raw":"GET /static/adManager.js HTTP/1.1\r\nHost: js.wpadmngr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: nginx/1.18.0\r\nlast-modified: Thu, 27 Nov 2025 13:21:53 GMT\r\netag: W/\"69285071-23ef9\"\r\ncontent-encoding: gzip\r\nexpires: Fri, 28 Nov 2025 11:37:11 GMT\r\ncache-control: max-age=300\r\nx-cdn-host-id: AH1747\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":147193,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators","md5":"f53567558bdea644af1ba8782f7bef6f","sha1":"427ef1766f7e2c19847cbde1e10cabd6c73db7b4","sha256":"ce967986ad0d59087854c3e9cfc27814a9b7eca95aee2ce82d9fe9e0929a0ca6","sha512":"3558bc6b343a3bc9de9e552b36619aa00167fbf5f11d25f2b23accdef7e1898e66416edf7f0c478d73abab83dbe03de19e4f0457d26abb5aefe1431f670cff1f","ssdeep":"1536:OpOPpA6P9rHRFts5dWmj6zzKEpKf7JbcacZwJ8jBl8Q8MdnCW9212FoXV0jtQyET:U6FDTts5dWmOzGoKFoaswoRebX","tlshash":"37e33adcb2d2b07407e75099d43f1206b73a1a16b80c9058f6a6e9c17878ddb5237f7a","first_seen":"2025-11-27T13:47:15.836385Z","last_seen":"2025-12-02T14:58:27.680717Z","times_seen":117,"resource_available":true,"data":null}},"time_used":145,"timings":{"blocked":-1,"dns":53,"connect":21,"send":0,"wait":42,"receive":0,"ssl":29},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"js.wpadmngr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/solid.gif?z=2081141\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.642-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=aSygMFPaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9qVnVIcDhzeT9sdjE9cGlkZXAuZGU\u0026afid=3774801797430272\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026pload=3060\u0026rlp=%5B0%2C68%2C103%2C74%2C73452%2C8186%2C4102%2C6493%2C1%5D\u0026srw=1280\u0026srh=1024\u0026im=1\u0026noch=1\u0026cs=5","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.906Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"driverhugoverblown.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 14:23:57 GMT","end":"Wed, 21 Jan 2026 14:23:56 GMT"},"fingerprint":{"sha1":"AB:39:B2:8C:70:D6:0B:38:B0:1E:73:99:51:2D:35:30:EA:6B:4A:70","sha256":"86:18:14:14:6C:52:E9:C3:AC:03:AF:10:49:19:37:24:9D:9A:36:E6:1A:05:C8:1C:8E:69:BE:53:1E:CE:6F:65"}}},"request":{"raw":"POST /solid.gif?z=2081141\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.642-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=aSygMFPaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9qVnVIcDhzeT9sdjE9cGlkZXAuZGU\u0026afid=3774801797430272\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026pload=3060\u0026rlp=%5B0%2C68%2C103%2C74%2C73452%2C8186%2C4102%2C6493%2C1%5D\u0026srw=1280\u0026srh=1024\u0026im=1\u0026noch=1\u0026cs=5 HTTP/1.1\r\nHost: driverhugoverblown.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-route-id: stats.tag.loaded\r\nset-cookie: PTS=; Path=/; Expires=Fri, 01 Jan 2027 11:32:11 GMT; Secure; SameSite=None\nUID=2511280632ccf9b67e8ff6430b85163d18fc; Path=/; Expires=Fri, 01 Jan 2027 11:32:11 GMT; Secure; SameSite=None\nCHCK=1; Path=/; Expires=Fri, 01 Jan 2027 11:32:11 GMT; Secure; SameSite=None\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"28e463819a210071de3b45ebe7633613","sha1":"6dccd571828ec0912629119cf7eabfea9f33ddbc","sha256":"44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84","sha512":"8a82ac5a7883cd9b74bdb561cf825ce86474e259ad8c445e538d697b0003e3f2b1d6edcd3dc6512f4ad16e9074da204a79938257c457ecf68f4329eac0182e67","ssdeep":"","tlshash":"04900003e280e082c3a0c0300e0ccb802b88a2308a28030fb0fc2baefc3a3a20c23000","first_seen":"2023-04-05T09:26:54Z","last_seen":"2026-05-31T16:47:01.291741Z","times_seen":22084,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/loading-BhHO9tGn-1764298795951.png","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.018Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /assets/loading-BhHO9tGn-1764298795951.png HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\r\nCookie: _ga_FZ6E2FXG92=GS2.1.s1764329529$o1$g0$t1764329529$j60$l0$h0; _ga=GA1.1.1570273686.1764329529; test=test; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:12 GMT\r\ncontent-type: image/png\r\ncontent-length: 8388\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC8729AF6B2D28D8A718F2008\r\netag: \"c584e97170f409c8b0ee613f4e261d9a\"\r\nlast-modified: Fri, 28 Nov 2025 03:00:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2574426\r\nvia: EU-ESP-madrid-AREA1-CACHE2[4],EU-ESP-madrid-AREA1-CACHE1[0,TCP_HIT,3],EU-IRL-dublin-GLOBAL1-CACHE3[2],EU-IRL-dublin-GLOBAL1-CACHE17[0,TCP_HIT,1]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 6a0497d6199410fd582e40e93dba84f5\r\nnginx-hit: 1\r\nage: 2942\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LCPfKeWkV942NfrAvW%2BvYO2ap6T4b48LuS5bQWxW7VIMxaI6eGUlZLoygsUb4%2BKeF%2BG73fVYE%2FR%2BuH58FnaPcBUAFXwUGdh2VM6at%2F4KulE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9a598b171dfe56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":8388,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 224 x 224, 8-bit/color RGBA, non-interlaced","md5":"c584e97170f409c8b0ee613f4e261d9a","sha1":"511c0a69f005cc83da8f38f8cee8144b01f45554","sha256":"a75904f829e92591c7a5c6511c396f2d0d1a7f6c2b658d81242e7b242287e255","sha512":"e9687faffabad4448c395854efe8528a0da4e192261840c44cc461176722f29dbd454649b6afda98470ba028acfaa2e96a76cdba2b1064dda4202db1c56e74a1","ssdeep":"192:ueFidHBHC1QzXtvUVIQe6Hb3BuCJ6j0g4VW5usCGeViwj:ueIBHCuzdgId6HbQY6j75us/eV1","tlshash":"5f02b0996f4cad34f5a8d17817b0085fcba0e00ec4e67e908bc9fcf586926d969101bd","first_seen":"2025-11-25T20:27:33.485625Z","last_seen":"2026-02-01T11:16:31.05073Z","times_seen":46,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sm.videqqwuieyui.com/thumbnails/xbox-streaming/1969230756371636226/1daef2dd-88d6-4be5-82da-9e3673dc0026/screenshot/3x3.jpg","fqdn":"sm.videqqwuieyui.com","domain":"videqqwuieyui.com","tld":"com"},"ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:12.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sm.videqqwuieyui.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 11:20:40 GMT","end":"Sun, 21 Dec 2025 12:16:35 GMT"},"fingerprint":{"sha1":"25:15:81:2D:A6:DF:1F:2B:FB:5E:A3:85:2A:59:36:15:22:2F:04:8B","sha256":"D6:EC:C0:5D:23:AC:A3:65:51:E9:AE:90:91:12:79:50:66:5F:F4:71:76:38:6B:0F:6D:C1:F9:BF:C3:59:3A:A8"}}},"request":{"raw":"GET /thumbnails/xbox-streaming/1969230756371636226/1daef2dd-88d6-4be5-82da-9e3673dc0026/screenshot/3x3.jpg HTTP/1.1\r\nHost: sm.videqqwuieyui.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 104097\r\nserver: Google-Edge-Cache\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A7D5ECA9CB2D601611269C32D\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-origin-time: 353\r\nvia: EU-NLD-amsterdam-EDGE3-CACHE1[365],EU-NLD-amsterdam-EDGE3-CACHE2[362,TCP_MISS,364],EU-GER-frankfurt-GLOBAL1-CACHE6[356],EU-GER-frankfurt-GLOBAL1-CACHE14[353,TCP_MISS,354]\r\nx-hcs-proxy-type: 0\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 4b675b6c4516fa85005fe42332bad4a3\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\nx-request-id: 267ff17b-98fd-4e86-aace-6c8c86d5a68f\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\ndate: Thu, 13 Nov 2025 13:19:15 GMT\r\nage: 1289577\r\nlast-modified: Mon, 22 Sep 2025 04:40:01 GMT\r\netag: \"e4a4e6da528a430d745ed913c59d1432\"\r\ncontent-type: image/jpeg\r\ncache-control: public,max-age=86000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":104097,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 675x676, segment length 16, comment: \"Lavc58.134.100\", baseline, precision 8, 1152x2160, components 3","md5":"e4a4e6da528a430d745ed913c59d1432","sha1":"40f8305d3a00a87017960ea0c7f72f104b3599bb","sha256":"8d78ef05ea20dcc3e9de87602fb208dc232055e8f1baf33978c800fd19effe4c","sha512":"c4ec1ad96a85d09b3de60d7db26f2d8627f696af8577da39806334b692ff8c5c998f0927a716a345f595114b4ef20aa2fede960bc63516eeb37fbf3fd726767b","ssdeep":"1536:WjAJKtOSjhBJGT/3rrjx4EZhT1lykq9MSr3vADme2MztvMF1y9DsMVaQA2bXF:WjjJGT3jx4EvBlyk4r3PGzFPxLr1","tlshash":"41a312221dce8e7fc9b757dcb4e81127892958f6fdc901c45da7bd15a1bc1489ca7830","first_seen":"2025-11-28T11:32:39.491873Z","last_seen":"2025-11-28T11:32:39.491873Z","times_seen":1,"resource_available":false,"data":null}},"time_used":304,"timings":{"blocked":110,"dns":27,"connect":21,"send":0,"wait":28,"receive":55,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bereave.onelinevideo.com/moire/calibre/eclipse","fqdn":"bereave.onelinevideo.com","domain":"onelinevideo.com","tld":"com"},"ip":{"addr":"47.252.7.200","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:13.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bereave.onelinevideo.com","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Mon, 21 Apr 2025 00:00:00 GMT","end":"Mon, 20 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E0:8E:3E:B2:04:D3:F1:8E:24:9D:86:3A:9E:82:A4:F5:45:3F:D1:AD","sha256":"92:99:82:77:56:12:E5:7A:6F:E4:9E:E1:33:D0:ED:6E:11:A4:AF:65:E4:1A:60:B9:75:F8:9B:59:74:D7:01:8B"}}},"request":{"raw":"POST /moire/calibre/eclipse HTTP/1.1\r\nHost: bereave.onelinevideo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1335\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1335,"data":"{\"annotate\":{\"togging\":\"\",\"rumpus\":1764329533006,\"porch\":\"\",\"mesmeric\":\"\"},\"most\":{\"wabash\":\"nectary\",\"fasten\":\"3dc7b642-a7ce-401e-9631-1a39f22e15a8\",\"alveoli\":\"onelinevideo.com\",\"cocktail\":\"1.0.0\",\"pontiac\":\"\",\"quintus\":\"\",\"skulk\":\"530d1b26-40a1-43e1-80ac-332b18487e54\"},\"sunk\":\"h5_play_video_fail\",\"choral\":{\"ua\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"fingerprint_id\":\"faed01b113cfb270c624ee1aa793ad6c\",\"browsertabid\":\"8fc9079b-62f2-4168-a884-8022db54d59a\",\"h5_url\":\"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\",\"uid\":\"1952377772555378689\",\"station_Id\":\"1952377772555378689\",\"link_id\":\"jVuHp8sy\",\"file_id\":\"02c5dc54-24ff-482a-8f19-650409399146\",\"linkid\":\"jVuHp8sy\",\"os\":\"web\",\"ip\":\"\",\"url\":\"https://www.jumplixytd.com\",\"platform\":\"\",\"level1\":\"\",\"country\":\"\",\"level1_domain\":\"pidep.de\",\"level2_domain\":\"www.jumplixytd.com\",\"h5_page_type\":\"h5_page_embed\",\"errorCode\":5103,\"errorMsg\":\"{\\\"playerVersion\\\":\\\"3.0.23\\\",\\\"currentTime\\\":0,\\\"duration\\\":368.733333,\\\"ended\\\":false,\\\"readyState\\\":1,\\\"networkState\\\":1,\\\"src\\\":\\\"https://sm.videqqwuieyui.com/xbox-streaming/1969230756371636226/4e238e51-04c3-42a3-908b-a1ff58235570.mp4\\\",\\\"errorType\\\":\\\"media\\\",\\\"errorCode\\\":5103,\\\"message\\\":\\\"Failed to decode media\\\",\\\"mediaError\\\":{},\\\"originError\\\":\\\"\\\",\\\"host\\\":\\\"sm.videqqwuieyui.com\\\"}\"}}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:13 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: no-store\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":38,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with no line terminators","md5":"066264d5a2c818322097de066b28814c","sha1":"f1977c9e74f1f823f72fc1a6d8d679e0aa2909d6","sha256":"c67a676b0da782e4df5ddb93c54652a23ce884286f31b6d5d646a5ccf20931a3","sha512":"9669a2a39bdfccfd46e524dc0c9f1bd3dfe77ea12402978a053da0d2e4181db10409a8edd5ac4d44bcf9eb07de1d07b2cebdfd63a548c1879d85f28bf535cdfe","ssdeep":"","tlshash":"81800453570353005300d3511410c410c531040d05df4070d53c4c15dd001700005531","first_seen":"2025-11-28T11:32:39.492847Z","last_seen":"2025-11-28T11:32:39.492847Z","times_seen":1,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/vendor-chunks-dWl4zWpl-1764298795951.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:09.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /assets/vendor-chunks-dWl4zWpl-1764298795951.js HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/assets/main-Gb0ezMPB-1764298795951.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:09 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC867EC5AB018E4DC4279F666\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 28 Nov 2025 03:00:07 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EU-BLR-minsk-EDGE1-CACHE2[6],EU-BLR-minsk-EDGE1-CACHE3[0,TCP_HIT,5],EU-GER-frankfurt-GLOBAL1-CACHE4[2],EU-GER-frankfurt-GLOBAL1-CACHE14[0,TCP_HIT,1]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 0740c99a737b1f983b1d641b2b871cd8\r\nnginx-hit: 1\r\nage: 1099\r\nx-ccdn-expires: 2590901\r\ncontent-encoding: br\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"df23f828155ae662baf85ef31c309a12\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=x63GYakL11exQvFF0DeX7qPoIq%2Bhu%2FEmNlPjzRhBev0cV8ZHX84pA1YWH8dW5zw%2BinnD%2FPMlUGkdohl%2Bl1CckX89iyElcBoQku3%2Fk4UFKRI%3D\"}]}\r\ncf-ray: 9a598b060d2c56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1251671,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (37925)","md5":"512c5e18bb1e588aaeac5f1344070025","sha1":"aad7a476be3bea3ffd7e8896f1928714dadfe0f1","sha256":"d16b77cbcce58d6c9540272c84ff5b09eb23d99a60b36c4c4feab240535ee5d2","sha512":"b3eb91b7c3d48561a47ee92e342bcfb068a90a1fc798882f0a63452924c4bb37bfbf2f35596ef9602c06f275cfc4c1725dd2770d6dd97e09b3f801aca0edcb77","ssdeep":"24576:Fqszmatc0Ox3S4MAM/H8r6iDSJMLlvDOB31Z82kzcbGKlCWRU:Fqszmatc0Ox3DMx/H8r6i+qvDOB31Z8J","tlshash":"a5254bd972a6706287d361a4403f5207723a3916248cc45cf63afdea2eb8d09647bf7d","first_seen":"2025-11-20T16:58:31.622392Z","last_seen":"2026-01-07T02:54:23.189237Z","times_seen":194,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":127,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v2/s/assets/f?id=02c5dc54-24ff-482a-8f19-650409399146\u0026uid=1952377772555378689","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.719Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"OPTIONS /v2/s/assets/f?id=02c5dc54-24ff-482a-8f19-650409399146\u0026uid=1952377772555378689 HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-length: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE\r\naccess-control-allow-headers: content-type\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QG865IbefK11hvbq0INqvyo97PUr7VsXrvHJxKPZxLhAKFKripCCHXtOd3W5Cq1wH68wUBzKnxLDfMm37SFyb%2Byj8DWqbkL2skmr4FQ%2BlassOit1RANhIg%3D%3D\"}]}\r\ncf-ray: 9a598b0efc87723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":204,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":204,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v1/user/gray/rules/check","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"OPTIONS /v1/user/gray/rules/check HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-length: 0\r\npriority: u=4,i=?0\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE\r\naccess-control-allow-headers: content-type\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CdxxtUITeiQfA2kL6RxeUbcnh9d9MSFgIGCTmhoXw7Qubv%2FbHyr6whlEXUKcn6luUQnp6xudq6Zll6Kecz%2BdAFr1PqVkT5eM8sdf83tmUPFUvuRiMUY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a598b0f3ee956ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-31T17:30:56.233389Z","times_seen":15970160,"resource_available":true,"data":null}},"time_used":223,"timings":{"blocked":0,"dns":1,"connect":0,"send":0,"wait":222,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494246?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:11.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 06 Nov 2025 23:28:43 GMT","end":"Wed, 04 Feb 2026 23:28:42 GMT"},"fingerprint":{"sha1":"66:4E:04:65:51:00:00:6F:45:5C:CD:BC:6C:DD:60:70:78:C4:D0:F8","sha256":"57:1A:C5:4F:7F:E6:61:6B:64:F0:82:6B:5F:1D:34:EC:2B:4C:B2:39:E0:5B:C9:DE:A4:CA:BD:76:ED:3E:9A:61"}}},"request":{"raw":"GET /api/users/494246?host=www.jumplixytd.com\u0026ev=225\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de\u0026sid=3dd38426-ff73-49a9-abb4-2dadffb7e880\u0026i=1\u0026s1=1952377772555378689\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2FjVuHp8sy%3Flv1%3Dpidep.de HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: nauid=TOZG2Zl4Ga4deJ3BOKak\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:11 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":661,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (351)","md5":"e146e9acd761ac37eefa9487d1ce4832","sha1":"61c85c3133fe98d8429950d4e7e4667998ffcaac","sha256":"896df2505a7a41b8746fe31dc70cb2d393d6ddbbfdaba3a965f145ab1f805212","sha512":"3803457a89f9f4026ceb8fb7151c5af724bfb53f2eee469bab95e58e614b274b423ea3f45903576d12c6ece380e6195b0b13b27b962781950dacffeb8c834760","ssdeep":"","tlshash":"1d0102c19b9c96ff474490b3cd3c4eb74a4e45792714600afb34830f58ce282436029b","first_seen":"2025-11-28T11:32:39.494361Z","last_seen":"2025-11-28T11:32:39.494361Z","times_seen":1,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enrtx.com/get/","fqdn":"enrtx.com","domain":"enrtx.com","tld":"com"},"ip":{"addr":"94.130.197.239","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:13.518Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"popunder-base.infrapu.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 05 Nov 2025 02:48:33 GMT","end":"Tue, 03 Feb 2026 02:48:32 GMT"},"fingerprint":{"sha1":"DF:80:3A:A1:4E:A7:47:86:A1:5F:68:2B:5B:AF:F5:A8:BC:15:A6:70","sha256":"4D:BD:57:8F:2B:73:C5:49:EE:D9:2E:BE:D6:03:16:1E:BD:42:5D:7E:AA:12:FA:BF:8D:DF:AA:CB:5D:D0:5F:CD"}}},"request":{"raw":"POST /get/ HTTP/1.1\r\nHost: enrtx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1738\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1738,"data":"{\"imp\":[{\"secure\":1,\"ext\":{\"user_keywords\":\"\",\"tag_ab\":\"a\",\"id\":2612,\"spaceid\":2612,\"type\":\"pop\",\"subid\":\"1450210302\",\"utm1\":\"\",\"utm2\":\"\",\"utm4\":\"\",\"spot_id\":1457063,\"labels\":\"\",\"blocked_verticals\":\"\",\"allowed_labels\":\"\",\"ad_tags\":\"\",\"refdomain\":\"\",\"is_iframe\":false,\"gyr\":0,\"features\":\"\",\"accel\":0,\"ssp\":3758,\"rchange\":false,\"otype\":3,\"stratagem\":\"\",\"v2_track\":0,\"cla\":0,\"v2\":0,\"mn\":0,\"timezone_olson\":\"UTC\",\"event_id\":\"ac4d7547-e1cf-4449-936a-e5f8deee9b45\",\"testab\":0,\"approved_mainstream\":0,\"ver\":\"1.170.2\"},\"pext\":{\"ab\":0},\"metrics\":{\"sp_scr\":0,\"intes\":[],\"high_fr_clicks\":false,\"dev_cons_act\":false,\"scroll_percent\":0,\"empty_clicks\":0,\"prev_step_diff\":939,\"act_su\":1,\"izb\":\"0\"}}],\"site\":{\"id\":\"1457063\",\"cat\":[\"IAB25\"],\"page\":\"https%3A//www.jumplixytd.com/e/jVuHp8sy%3Flv1%3Dpidep.de\"},\"device\":{\"w\":1280,\"h\":1024},\"user\":{\"id\":\"59af962887f337d7299b142fa6337684\",\"fp\":null,\"fp_str\":\"\",\"ua_data\":null,\"interest_ids\":[],\"is_webview\":false,\"is_inapp\":false,\"social_network\":\"\",\"device_specs\":{\"brand\":\"\",\"gpu_brand\":\"\",\"gpu_version\":\"\",\"os_name\":\"Windows\",\"cpu_cores\":48,\"device_memory\":0,\"width\":1024,\"height\":1280}},\"fp_params\":{\"plugins\":[\"PDF Viewer\",\"Chrome PDF Viewer\",\"Chromium PDF Viewer\",\"Microsoft Edge PDF Viewer\",\"WebKit built-in PDF\"],\"languages\":[\"en-US\",\"en\"],\"fonts\":[\"Bitstream Vera Sans Mono\",\"Century\"],\"fontPreferences\":{\"default\":173.11666870117188,\"apple\":173.11666870117188,\"serif\":173.11666870117188,\"sans\":162.01666259765625,\"mono\":122.68333435058594,\"min\":10.800003051757812,\"system\":162.01666259765625},\"platform\":\"Win32\",\"colorDepth\":24,\"deviceMemory\":0,\"hardwareConcurrency\":48,\"indexedDB\":true,\"sessionStorage\":true,\"localStorage\":true,\"cookiesEnabled\":true,\"colorGamut\":\"srgb\"},\"ext\":{\"dt\":1764329533497}}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.16.0\r\ndate: Fri, 28 Nov 2025 11:32:13 GMT\r\ncontent-type: application/json\r\ncontent-length: 1376\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.16.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4114,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"4da026dde2f7b84f7c8577abd7d93b6d","sha1":"58ad1038cbb4b5a886d803d57349dc44eb8a8e5e","sha256":"153677d4634cf9a9b2ab62417eb67b2381a853ea7c678670f67174d52e4f7391","sha512":"2240390ba2dd4929165918ad3310c8c3afd7f1a82c6e571773d1a6b7ed8aae91df633ce58f624baf6160add458d4cd91d7936a4c067a9c319e6b169a9cda2794","ssdeep":"96:zoXoOlHcW0Fagh8EzTCy+10XoOlHcW0F/8EzTCy+1B:WGapE3JzG0E3JS","tlshash":"9481f989b867fe2504c29063b151b2642bd5db6b8f9e4d8de1f0cb3684a43b701ddd0d","first_seen":"2025-11-28T11:32:39.495804Z","last_seen":"2025-11-28T11:32:39.495804Z","times_seen":1,"resource_available":false,"data":null}},"time_used":424,"timings":{"blocked":94,"dns":14,"connect":25,"send":0,"wait":234,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/main-Cqlqk20n-1764298795951.css","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:09.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 06:29:22 GMT","end":"Sun, 22 Feb 2026 07:25:28 GMT"},"fingerprint":{"sha1":"71:29:C1:90:EF:AF:3C:C0:BD:05:88:7D:D2:1D:DD:E6:51:BD:53:CE","sha256":"0B:68:46:2E:54:B2:3B:92:33:B8:26:F3:23:D1:33:2E:F4:62:D7:3B:FC:82:CB:C5:9A:FF:29:38:E4:52:04:D6"}}},"request":{"raw":"GET /assets/main-Cqlqk20n-1764298795951.css HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019AC867D9E7B019CF04720B21F2\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 28 Nov 2025 03:00:06 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: LA-MEX-mexicocity-EDGE2-CACHE5[7],LA-MEX-mexicocity-EDGE2-CACHE2[0,TCP_HIT,4],LA-MEX-mexicocity-GLOBAL1-CACHE16[3],LA-MEX-mexicocity-GLOBAL1-CACHE22[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 74f96f376c8620fc4bb2c29e5f4af5da\r\nnginx-hit: 1\r\nage: 1109\r\nx-ccdn-expires: 2590891\r\ncontent-encoding: br\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"cb2d2977149af663e98bbc0c2424aac2\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8aazcicDR6ApL0Qzl%2BKgbcQh%2BL1w4DqUpyRwD3JgzUIcU6JORvQrBjKQANIg6yiKgLVzARtAPw%2FGsKCcW3EBhijwWt4sVGZL7s%2F42TsQGp0%3D\"}]}\r\ncf-ray: 9a598b04dd2856c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":64289,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (64288)","md5":"cb2d2977149af663e98bbc0c2424aac2","sha1":"733aa06f80356e7245868ebcefd5e8807f1ea268","sha256":"2ea9705c01412bbbd249f3beecd6396fa9c61f4aeeb9bbb4e3b366050461191e","sha512":"b763f7d58a6a2f808abd0d170149d99d8717e1604d90a0e4ba67a176264c36a4e693ed1521fd186db630fc597e299933f76dd8074ae844c06321e464a0c76e5c","ssdeep":"1536:sSEBZ2V5wPPcXQ5qNsmbHDXEfSCZDfhTwDzfTK2HnO0iyAoP7GitdtmnyWl04QOU:uBZ2zw3eQ5qNsmbHDXEfpDfhTwDzfTKE","tlshash":"c2538421b6174129b833b9e6e5d4ab5e31389d0ec922c7ddf601b52dcece395243722e","first_seen":"2025-11-28T06:41:44.700695Z","last_seen":"2025-12-02T01:56:26.147635Z","times_seen":16,"resource_available":false,"data":null}},"time_used":954,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":953,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/settings/494334","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/jVuHp8sy?lv1=pidep.de","date":"2025-11-28T11:32:10.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 06 Nov 2025 23:28:43 GMT","end":"Wed, 04 Feb 2026 23:28:42 GMT"},"fingerprint":{"sha1":"66:4E:04:65:51:00:00:6F:45:5C:CD:BC:6C:DD:60:70:78:C4:D0:F8","sha256":"57:1A:C5:4F:7F:E6:61:6B:64:F0:82:6B:5F:1D:34:EC:2B:4C:B2:39:E0:5B:C9:DE:A4:CA:BD:76:ED:3E:9A:61"}}},"request":{"raw":"GET /api/settings/494334 HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 28 Nov 2025 11:32:10 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1be64b6d6652effba7dcf744e90def6a","sha1":"d9fbc7d1fa49fa4733f90a3739882d63972c2352","sha256":"72d79d0ad9a70ef53c1bab65c588d44bffb1a1b5aba0eb2f9f6a886c4c3aec4f","sha512":"ff1aee5b5d4ba25f4f78a0ddc80cd878856815c1ded88b32370c72bff242e73522e6aefb60fa5e53c434f10d2611dab7679152edf9321edc2b656e0265ef7006","ssdeep":"","tlshash":"408004c00dc1545410c010f4434043150103140f535c3304d41d1701147f4d17030150","first_seen":"2023-04-06T10:58:14Z","last_seen":"2026-05-20T02:25:30.848628Z","times_seen":7611,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":72,"dns":36,"connect":13,"send":0,"wait":13,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-28","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}