{"report_id":"75ff5f34-ace2-497d-9ebc-e6a56316fa59","version":6,"status":"done","tags":[],"date":"2026-05-01T12:06:28Z","url":{"schema":"http","addr":"bbvirtua4l-cancelarbgtal.iceiy.com","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":0,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"title":"Portal","dom":{"size":6958,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"00063a79e03d80c9bfb51864655e5397","sha1":"206a71865e36298cf2bc9461d23b28e3ca05ca7b","sha256":"bcef6a85571629628a2fa6173364bcbdf9b95d7bf94fa37efb696cf190b145b5","sha512":"670a88fcd3b3e7861e9f7ae847b86bb2add8fcfdf6b43020c1065d4cac8fa7af647a7d7bb1ca53fcb4e07e2f5f3fddb5713471c1474d0e32008a60466835a6fb","ssdeep":"96:uKImdZ9ulhsbKeqjsVPTYb8tq/E5w+r3ThKxcq4K8poFJbj:am/94qbKeqARTYb87r3ThKxcqFbj","tlshash":"cfe1b7539aea0c2c315385548bbfb29d39684113c30ed544be9cb3b4cf46aeec92769c","dom_hash":"domhasha745beda01ae5d51b5238ce36c9b668e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bbvirtua4l-cancelarbgtal.iceiy.com","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":0,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-05T12:06:28Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"bbvirtua4l-cancelarbgtal.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ajax.googleapis.com","ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3691,"first_seen":"2012-05-22T10:38:03Z","last_seen":"2026-04-26T23:27:43.968903Z","alert_count":0,"request_count":1,"received_data":90462,"sent_data":463,"comment":"","tags":null,"fingerprints":null},{"fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2020-12-06","domain_rank":0,"first_seen":"2026-05-01T12:06:29.177022Z","last_seen":"2026-05-01T12:06:29.177022Z","alert_count":7,"request_count":7,"received_data":1502163,"sent_data":3662,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"052f83e0160e97a6ccf6a229f1ff94ef","sha1":"14b1ede3ac0d4508c8493db70dbd04e178a7f177","sha256":"4dd7cfc1185766380d7ed43ddb3ff3801f7e400cd0a65b0fe5e445ab58703bfe","sha512":"7e5ab0d95de3974e57018d8e861e38137a566979d6ea1ef4d96ceccc106faebbcf0945db2c5dcc5b6ad2b042b191fc0565dd8e590518f214d921463c32b5107f","ssdeep":"","tlshash":"24f00c7ce170a0da8bc45062083b968fd0661bd2f652c5bfc40292a06a92dee0689d2b","size":622,"data":"","first_seen":"2026-05-01T12:06:30.980211Z","last_seen":"2026-05-01T14:46:22.602048Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/aes.js","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"756722c3542f271367cc3b074113a8ee","sha1":"c5c24b4cfc44d597fb7d82d79a7dcea4a8d07e2b","sha256":"ed1d3bd967abe66cff832561cb911c572a2f85fd6cffc32ef3cec68dbc60c7ce","sha512":"ec3293d425646848dc2cf5d3cebae22b91d99461d3565ed17599af961f6f0062167446f732e91ade94f7e589000cda7e85259a217c5ce571bc11c175435a4290","ssdeep":"","tlshash":"8d1150a5034607bcf6cd0ec8c40a321a21f1c04abe2112c9afb36ae77c3b8840034e26","size":1000,"data":"","first_seen":"2025-03-10T10:15:36.223346Z","last_seen":"2026-05-01T16:40:12.062716Z","times_seen":1901,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"0c7a9ef62a1006d912a96f24eecda65e","sha1":"af32e1914ac94f4ea0139db9820b22b12fa8be9c","sha256":"fa8524a17174b41b8ea7c893af7fa6a485abe61d4e2843144b248a8206743da9","sha512":"54952b9ad00ea45a6b21b49bcbf3054f500d044d9f8ffd22d8eff4b24895ffad5f01ad2e92d938958f816e081d7b17e156dd3d5f925593d8f6fafd42850a8a36","ssdeep":"","tlshash":"86d0123843701d3240fb89e33668fbc93e76005612ca2905aa6cb16049dce66eee5dd6","size":202,"data":"","first_seen":"2026-05-01T12:06:30.981959Z","last_seen":"2026-05-01T14:46:22.599296Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/dscrd.js","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ff1a053a10fce9221b92d5776c4a10b7","sha1":"0f78316eb53a6033712e6dc665a4df0b9da2dc1c","sha256":"37f374ce91805657b2be3de05ac175ac581809c72c62f384ad133f1f2131f4b4","sha512":"1dbf882189bdd005dd6b7c1dc7a70fe951fe6612190855e82cf6297636e893d68fbd7612248bd8aebcef6f4e7f6cbef0a657c527bf220c8b11c7868ab0986e26","ssdeep":"","tlshash":"43c08ca3b22a00220a7884f08203840c4bcb084f6855c9d2b26a913a01de4972008943","size":151,"data":"","first_seen":"2026-05-01T12:06:30.972028Z","last_seen":"2026-05-01T14:46:22.595039Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89476,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-05-01T17:39:59.354263Z","times_seen":230573,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"084546bbf36a2f8544a7397fda6270f8","sha1":"24667f8b297310850a853b0c3c2ef1df1bbdd469","sha256":"7cbd92ee6bdde5dbd17cce4c7ac1cfde0bedf8b7cd60e486b3546c8ef2ce5e3e","sha512":"20736c03766c1f072e0d0790a0636c8b6238efd36f0a78ec38cd4b5b8a6cbe721c5e223df89a8dc8bc4a021f7e708f507e776da11ad92262dbec936746d806e3","ssdeep":"","tlshash":"c3b022033b83083280b832a228ae03a82b38020a08020ac02808c0c28f22cb003eeca8","size":128,"data":"","first_seen":"2026-05-01T12:06:30.982901Z","last_seen":"2026-05-01T14:46:22.600805Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"64f15590373d8dd9333060bff46eb817","sha1":"19ce328ed889317debe18fdac89c1a477885a693","sha256":"f83e07ddb5ba505626db9c7c9ecde8578b5a8cb75bec370cbb3292eb96ffbe3e","sha512":"820aaa069eaaca9ba30be3a2ee5c68ea06b1fa7c1f0193843bbd17d32e25b45b35b2a3ca1cdefa69d9501405b68baf98c39eeb50421f9121e9b8ba2b65b88772","ssdeep":"","tlshash":"9921cc0fbce61654063374a5812fa108272512979e58dd00beddb6a63f48bfed2096ae","size":1129,"data":"","first_seen":"2026-05-01T12:06:30.9837Z","last_seen":"2026-05-01T14:46:22.604171Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","date":"2026-05-01T12:06:07.648Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"1A:63:7B:F3:04:6F:4C:E4:F3:15:87:E8:E7:FA:DD:B1:F7:7E:89:49","sha256":"5E:36:5D:D1:35:3B:0A:E9:8A:55:91:DC:12:B0:50:4A:AE:D9:A7:97:06:7C:0D:D7:F0:23:3E:8A:B2:08:19:00"}}},"request":{"raw":"GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvirtua4l-cancelarbgtal.iceiy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 31021\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 29 Apr 2026 14:54:50 GMT\r\nexpires: Thu, 29 Apr 2027 14:54:50 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nage: 162677\r\nlast-modified: Fri, 08 May 2020 07:05:03 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89476,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-05-01T17:39:59.354263Z","times_seen":230573,"resource_available":true,"data":null}},"time_used":210,"timings":{"blocked":92,"dns":2,"connect":8,"send":0,"wait":9,"receive":8,"ssl":87},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/aval.png","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","date":"2026-05-01T12:06:07.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /aval.png HTTP/1.1\r\nHost: bbvirtua4l-cancelarbgtal.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1\r\nCookie: __test=376d7ea332196496b8870e04a7a6dc36\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Fri, 01 May 2026 12:06:07 GMT\r\nContent-Type: image/png\r\nContent-Length: 11271\r\nConnection: keep-alive\r\nLast-Modified: Thu, 30 Apr 2026 12:58:16 GMT\r\nETag: \"2c07-650ad048cb2eb\"\r\nCache-Control: max-age=2592000, public, proxy-revalidate\r\nExpires: Sun, 31 May 2026 12:06:07 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":11271,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 319 x 37, 8-bit/color RGBA, non-interlaced","md5":"89ca09df3a8b2674f8f8eb640d2982c3","sha1":"9f206957774fc9c9bc1eac1aa733cb623dda2918","sha256":"ffeda54e851b5ae9de1576c43744a308978a5470c7e7f7a274549a2b128fe658","sha512":"6ab4a1e971a3e27424f9c200e26ab5ca08d689c9fbd0dd5d7f68069f387df1b9d5bdd4613d5542b5fab9d51de396cece8d96fe874051ed087bebf1f6b47942db","ssdeep":"192:2Z1Emhed/QeQoCiRalz09rpLXUbeWoKGy/8TiZhCClrNxXedYcjkrHCREXGO8:Y1ZhU/H7wzak13rNZ6YqkL7GO8","tlshash":"2032bf1dc083d46061d621e65f37a3a60fef67cce928f756c89ca1562b1a49ecb9400f","first_seen":"2026-05-01T12:06:30.965631Z","last_seen":"2026-05-01T14:46:22.597832Z","times_seen":3,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":96,"dns":1,"connect":31,"send":0,"wait":33,"receive":3,"ssl":45},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"bbvirtua4l-cancelarbgtal.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-01T12:06:07.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bbvirtua4l-cancelarbgtal.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Fri, 01 May 2026 12:06:07 GMT\r\nContent-Type: text/html\r\nContent-Length: 861\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":861,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (861), with no line terminators","md5":"509e217b001f83b21225060936d6767e","sha1":"2ba100ac06b17f7b47264f9c850403373059a8fe","sha256":"6cc2adf3a141f320b1cee42dee482aa1d92cd1a6a588cf6952c346e1e4062771","sha512":"06a14011675524b86303746ef0ac9839e5833f8b1fa783832267973372d99c830eee6f79ace71371d46f565d8b6d2775b63eb014ff222ac0626f32aa9e5ddaae","ssdeep":"","tlshash":"5c1112b8dca0e0c59bc000d11837d55ea45596a5e651c9af84c242e55691bdd0d85c3b","first_seen":"2026-05-01T12:06:30.968633Z","last_seen":"2026-05-01T14:46:22.593588Z","times_seen":3,"resource_available":true,"data":null}},"time_used":503,"timings":{"blocked":233,"dns":77,"connect":31,"send":0,"wait":32,"receive":4,"ssl":121},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"bbvirtua4l-cancelarbgtal.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/aes.js","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bbvirtua4l-cancelarbgtal.iceiy.com/","date":"2026-05-01T12:06:07.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /aes.js HTTP/1.1\r\nHost: bbvirtua4l-cancelarbgtal.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvirtua4l-cancelarbgtal.iceiy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-01T17:39:27.62522Z","times_seen":14482959,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"bbvirtua4l-cancelarbgtal.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/dscrd.js","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","date":"2026-05-01T12:06:07.650Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /dscrd.js HTTP/1.1\r\nHost: bbvirtua4l-cancelarbgtal.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1\r\nCookie: __test=376d7ea332196496b8870e04a7a6dc36\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Fri, 01 May 2026 12:06:07 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 151\r\nConnection: keep-alive\r\nLast-Modified: Thu, 30 Apr 2026 12:58:18 GMT\r\nETag: \"97-650ad04ad2c58\"\r\nCache-Control: max-age=2592000, public, proxy-revalidate, must-revalidate\r\nExpires: Sun, 31 May 2026 12:06:07 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":151,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"ff1a053a10fce9221b92d5776c4a10b7","sha1":"0f78316eb53a6033712e6dc665a4df0b9da2dc1c","sha256":"37f374ce91805657b2be3de05ac175ac581809c72c62f384ad133f1f2131f4b4","sha512":"1dbf882189bdd005dd6b7c1dc7a70fe951fe6612190855e82cf6297636e893d68fbd7612248bd8aebcef6f4e7f6cbef0a657c527bf220c8b11c7868ab0986e26","ssdeep":"","tlshash":"43c08ca3b22a00220a7884f08203840c4bcb084f6855c9d2b26a913a01de4972008943","first_seen":"2026-05-01T12:06:30.972028Z","last_seen":"2026-05-01T14:46:22.595039Z","times_seen":3,"resource_available":true,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"bbvirtua4l-cancelarbgtal.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/52f25e05d3da6af1aeac.svg","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","date":"2026-05-01T12:06:07.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /52f25e05d3da6af1aeac.svg HTTP/1.1\r\nHost: bbvirtua4l-cancelarbgtal.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1\r\nCookie: __test=376d7ea332196496b8870e04a7a6dc36\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Fri, 01 May 2026 12:06:07 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1460462\r\nConnection: keep-alive\r\nLast-Modified: Thu, 30 Apr 2026 12:58:17 GMT\r\nETag: \"1648ee-650ad049e2442\"\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=0\r\nExpires: Fri, 01 May 2026 12:06:07 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1460462,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b3def55c2d6d541510ef83155bcb605e","sha1":"0ede3e92e065851a0f82c3e50f65e51906bc7c03","sha256":"1c4437f6cd89a35904f8c81a43a5ce3ecf461db9bbedfd7b53c3134b399ae9b8","sha512":"7e0dbfb87917e7bdb723f59e8457f66fa0a7f8296d1685c927a49010f94a24f58ca44d206a54dd308dc3e81d6234d3054ccab8e4eab3d32396b9a003d8c3c642","ssdeep":"24576:IYLGxaTF4yYLopVW9Nam8O/90GZjJLQQnFQQIQQJvQQMQQhvQQbQQAQQNMLQQ0Qh:vR4UFgqDtPLWR","tlshash":"d125d0a4f632ee9898be3d70915705125efe1c4ae2c297fc6409d76992c87f0da3d870","first_seen":"2026-05-01T12:06:30.973077Z","last_seen":"2026-05-01T14:46:22.592088Z","times_seen":3,"resource_available":false,"data":null}},"time_used":377,"timings":{"blocked":101,"dns":0,"connect":0,"send":0,"wait":36,"receive":240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"bbvirtua4l-cancelarbgtal.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/logotipo.png","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","date":"2026-05-01T12:06:07.660Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /logotipo.png HTTP/1.1\r\nHost: bbvirtua4l-cancelarbgtal.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvirtua4l-cancelarbgtal.iceiy.com/?i=1\r\nCookie: __test=376d7ea332196496b8870e04a7a6dc36\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Fri, 01 May 2026 12:06:07 GMT\r\nContent-Type: image/png\r\nContent-Length: 20505\r\nConnection: keep-alive\r\nLast-Modified: Thu, 30 Apr 2026 12:58:21 GMT\r\nETag: \"5019-650ad04deffac\"\r\nCache-Control: max-age=2592000, public, proxy-revalidate\r\nExpires: Sun, 31 May 2026 12:06:07 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20505,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1585 x 271, 8-bit/color RGBA, non-interlaced","md5":"067d1488078d2dd59029da5a263eeb1a","sha1":"c30a41af7665846690c27283fcf81b96db8b2eca","sha256":"3ae708c19af42f42e7bfe9189343677af712bc6f00f8ff650c34c321706e8551","sha512":"1c28f5515232696a6a6a85261c293c864034dd0c37def0ebd58603f0697a8f633de61cbeb0116c558ff98450f61130e4220e03efd2f214445563590eadc4bf96","ssdeep":"384:diwQSW8Ek8RY+rHamSbOwGOPxmvQ4y7iuxjCjWkWn5domfiXXI+gWX:3jWFkSZHaBiwfIrciuxjwWDXfo42X","tlshash":"e192c1b0712e9ad7ca8c55b0ab4f6f3b4f7686cc2d89079b2f66f0253e5f858001562d","first_seen":"2026-05-01T12:06:30.974494Z","last_seen":"2026-05-01T14:46:22.596631Z","times_seen":3,"resource_available":false,"data":null}},"time_used":283,"timings":{"blocked":97,"dns":1,"connect":33,"send":0,"wait":41,"receive":34,"ssl":53},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"bbvirtua4l-cancelarbgtal.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvirtua4l-cancelarbgtal.iceiy.com/?i=1","fqdn":"bbvirtua4l-cancelarbgtal.iceiy.com","domain":"iceiy.com","tld":"com"},"ip":{"addr":"185.27.134.139","port":443,"asn":34119,"as":"Wildcard UK Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-01T12:06:07.561Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iceiy.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 27 Mar 2026 00:00:00 GMT","end":"Thu, 25 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:24:71:C4:C4:07:BB:E5:80:30:EC:11:32:67:55:A7:60:0E:D8:39","sha256":"31:12:E9:3C:26:C5:0D:90:79:20:15:74:87:0E:91:26:43:BD:32:93:E3:DF:29:3E:B9:02:99:28:3D:EF:92:43"}}},"request":{"raw":"GET /?i=1 HTTP/1.1\r\nHost: bbvirtua4l-cancelarbgtal.iceiy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvirtua4l-cancelarbgtal.iceiy.com/\r\nCookie: __test=376d7ea332196496b8870e04a7a6dc36\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Fri, 01 May 2026 12:06:07 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 6982\r\nConnection: keep-alive\r\nLast-Modified: Thu, 30 Apr 2026 12:58:18 GMT\r\nETag: \"1b46-650ad04aeb303\"\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=2592000, public, proxy-revalidate\r\nExpires: Sun, 31 May 2026 12:06:07 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]}],"data":{"size":6982,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"42a074066d001cc781d1cef9434a052f","sha1":"45cc03d0f8fd715c4f30c43035d88eacd7894083","sha256":"1049f2a63494dbf1ab26a235c05572e7aafc8501fa96d0162f5702091fb206b7","sha512":"443b0e5b044d01cbb2d94c1c798690bf45dda3975d0898991495c9b327ad988614b6dd813a93f1dd35768bba53faddf6f3166660c654cfa67d54b9da95f0182c","ssdeep":"96:yKImdZ9ulhsbKeqjsVPTYb8tq/E5wer3ThpDlq4K8poFJl:em/94qbKeqARTYb89r3ThpDlqFl","tlshash":"e2e1b8535aea0c2c315385548bbfb29d3a684113c34ed544be9cb3b4cf46aeec92769c","first_seen":"2026-05-01T12:06:30.978713Z","last_seen":"2026-05-01T14:46:22.588876Z","times_seen":3,"resource_available":true,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-01","alert":"Sinkholed","trigger":"bbvirtua4l-cancelarbgtal.iceiy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}