{"report_id":"76aae89f-0f4f-4416-84d9-11d2c2c6eadc","version":6,"status":"done","tags":[],"date":"2026-03-02T16:39:56Z","url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":0,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"title":"Reward Checker","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":0,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-06T16:39:56Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"poly-allocation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"poly-allocation.com","ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":7,"request_count":7,"received_data":5425626,"sent_data":3088,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"poly-allocation.com/49f3413a-6b91-4c20-8ce3-e1446f24d70a","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"a21a307e4e7ed5da52142b5737bcd3ef","sha1":"b1522f1ce5020d29ed42b071aceea56a491c9849","sha256":"5b7ae5455757d2993e3cd2bed64ae73464a84d02b1bca81f36ec155cb2f50d32","sha512":"b3e7854f9f616d2ce8d32830881627075b93b91ad0366114d50075756f23248d2d66a309beaebaef24aedb24e2d10c268c6b8a7b7045a81eec797bf2063af1ed","ssdeep":"49152:B7OwPEZJsBqatPwW2QUSvhjG+EyY4bfO3xrQanJfCpszVtYth:z","tlshash":"7df523422c47a9f68f4843a5b0f76d0b64a44e13499cb0dad794f8c2386dfb581df92e","size":3528410,"data":"","first_seen":"2026-03-02T16:40:18.596695Z","last_seen":"2026-03-02T16:40:18.596695Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"0e1ee9f442371606d9a13b41a0dbeaff","sha1":"a05c25c8ad9127fe7d45319ce13e8b4a485d2e01","sha256":"713285cbc0cb910dfd2e7a86c604d191a27789ae50964ab1c674507ff4a20c45","sha512":"1dbac9fa1e0b338e780a3600f1a3da140a6c83a961a1d0c6c80fe3dc5a9041c346c471d264a07ccc87457cdccc2a28b768d02283512ba9cee0fc2e2b7124e42d","ssdeep":"","tlshash":"0221fedeb2826488526794d742cd8dceb8e617a919008c20452ef299225c3e8fb6ad54","size":1177,"data":"","first_seen":"2025-08-01T04:16:24.218288Z","last_seen":"2026-06-07T19:52:02.536142Z","times_seen":2988,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"f278e1582a6b32d6a9a05328bba73b0f","sha1":"02780b645a044990e49787663d3dba06626b1e3d","sha256":"07317dc90130ec69ed8e07a8362168074f9067473354101f361449cff37110aa","sha512":"08463b63ba1654bf203117d8f0c0a2ce4b5d92914ffba7c8ac3d942ff1a812c86cc61d9e840e5f3422c2b22d1b71b1a06b9a6d40d4e4259b32fd8cd40cc8357f","ssdeep":"","tlshash":"55319948a43216904242e8f1c676abeeabe774080574446d349cbec7eff8447e521678","size":1529,"data":"","first_seen":"2025-08-01T04:16:24.221852Z","last_seen":"2026-06-07T19:52:02.534591Z","times_seen":3070,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"1e21743cd2ee2004cd56bfc5c29e3609","sha1":"bf516634ffbcfd3186b71dafc0ecdcc47894c439","sha256":"0e428980439e794b176e0ee3cd84e4878510b1d52c1efc1c00f4af9729a17029","sha512":"4264e5ce5b4f3acb24046582388132a5915398c9266c18c6349d75fb94bd74bac990dc6ebd12e1e118a3a24752a3e4badae2faabd69b9827d1f223a0750da4c2","ssdeep":"48:atoyTqSsM+c69M+c69M+c69M+c60778KK7NaaM//M+A:atlDNDNDNDl778KKw//M+A","tlshash":"25913f32165427da63ce8fd45a85751d01d2c89a383e60bdff3279eded3a683c031612","size":4506,"data":"","first_seen":"2025-08-01T04:16:24.215618Z","last_seen":"2026-06-08T13:16:56.580916Z","times_seen":3039,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"3433c9d3e9b7e8e5b34ed72e309db572","sha1":"d53d7df082088749c1df6b08330ee9b9e4076932","sha256":"1d96fa9904e3743570bccd5be90e83fd91975299f374093cc6f723673d582dd1","sha512":"ffd0e047331871f21738643968b7eb7fa045ee0e45346a9ea986c4b8a3e745dd310542c6b2734f6d244408bba6548ec66f5cd7662c69485b5e59e3b9432cdff2","ssdeep":"","tlshash":"06f04245bd825a24d35670ddc41f978cc53690dd91491c4cbb64ece1de94c2cdfc6534","size":585,"data":"","first_seen":"2025-08-01T04:16:24.219641Z","last_seen":"2026-06-08T13:16:56.579886Z","times_seen":3107,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"8de04e3dc63af7585af0e827672eb149","sha1":"02ee5e4b4e73e430d629744c4b7a3e38c36ed06d","sha256":"123e2a4c9c65ad62ea2b0992b1f80073e18a341a810f9ba40d1c4cdc31f1e759","sha512":"a42fcbfd4fc45305b75c0093524abafcf73f7d10f3bbe8cf573f3ea87803f672ae7fd293a116e7c24aeb0ef9fb24b9ea32e48200a56243187d5b550407631184","ssdeep":"","tlshash":"a911cce0aa6c599781c2095034894b02b13cb020203d9fd0bf75f0ce7c7c7ec96d262a","size":1000,"data":"","first_seen":"2025-12-20T20:03:49.143914Z","last_seen":"2026-06-07T00:08:21.702938Z","times_seen":1701,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"2a840bee45e95c87ed1f7d091e50ee9c","sha1":"1bf335389a3176d0292bd2f2adaf2c8485f5fa13","sha256":"238c1cec4227d682e242d91e9a3ccc43bf5a20b369c431ea5f9f23b8637cb529","sha512":"3e37f6e889979088ea11c277952b15fe9232b5af49509aeb849ac765654bc1e33ef624ecb475dd0ab6456d84e5a99d3f362e5045fab1090c893903d0a02f6e51","ssdeep":"768:cO2nbt6T51WWDg6cJc4/q37PoUL7WH2OBSGr53FSowzGXVp31RLfoG1FhMMZFb:cnJKaWYiowzg7FhMMZx","tlshash":"e84397aa1e4694944f0927efc0e69c8a96149e768ddc744ad92fccc13628ff6c0c653f","size":56696,"data":"","first_seen":"2026-03-02T16:40:18.600764Z","last_seen":"2026-03-02T16:40:18.600764Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"59a13eef9e5e0ec7844e58e8b47d54a0","sha1":"0fb2b2059a878b87f8524284d448dd46a4351953","sha256":"c890c150b008d069bfddb86ee2c2e3fe979515939053b4c53fd6853b68e4fe35","sha512":"7fcdb614d30b1141e9a1e134a98e2888007f786f866c24e6383106d3e003f094e72901aa295e7d3450fccf5a249b25b436401a5b9439205da6b0eec8d72cfc80","ssdeep":"","tlshash":"33f0beaf336126ca23ae6ad20796c01d1e72e4ab3002163c575a36ca0cb6f52521b07e","size":494,"data":"","first_seen":"2025-08-01T04:17:54.874483Z","last_seen":"2026-06-08T13:16:56.58729Z","times_seen":2901,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"5e82ae3e75488b2f3d02d146e5650b67","sha1":"f9ed3815c43b183c8ddd19c238413a422bb00fe0","sha256":"993c8e12657069e0ff17311e68aaa20ea3af54614820bfeecaaac7af174f9440","sha512":"ef838b5e4acdbd1bc9c5ad995f7b4c2827500ff36d28ebe4db674acca1360dd0dfe8b93a0873efe7c1cb2f34f9e099f3655426fe6fea315bd9c9c34870c57019","ssdeep":"49152:67OwPEZJsBqatjwW2QUSvhjG+EyY4bfO3xrQanJfCpszVteXi:R","tlshash":"51f523461c43a9f2cf4853a5b0e76d0b54a44e13499ca0dfe395f8c1386dfa281ef92e","size":3525943,"data":"","first_seen":"2026-03-02T16:40:18.603263Z","last_seen":"2026-03-02T16:40:18.603263Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/main.js","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"358f48191855f03765f65d708ff53cf0","sha1":"5a5aedc7101c0eb97c35ef043da042aea65bcc4a","sha256":"c173af11b10f5cd2ea0f95cdb5f23ced1f3ad401621fa633f3f8f94d3ad8c684","sha512":"dd5ba7f317d43fcb6a580fdcb23e011a01d71cf7e396fb16b79317a6974bdddc953cfdc9edbe03aea1623b51873e62a363f28071f6c6d48dbcb9c36e06456c0a","ssdeep":"","tlshash":"1b81d076366312508a7237bb6e9352aaf67960233440e3e53f9c82102f729549973fcd","size":4062,"data":"","first_seen":"2026-03-02T16:40:18.59545Z","last_seen":"2026-03-02T16:40:18.59545Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/0a9qhtt2.php","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"984a065445e945b5f9b6dcaff9815bcf","sha1":"50772fde20e86ec7f64cbea196342523cd0a71b9","sha256":"6ad8190a6e050cddec01763447fe9d13d33d08c7283efeb528fe41a70a51b4b0","sha512":"6ed0a7cbfa6c4716e29351a1a511bd8b78aedbacba066a502f7fe9cd3dc02b8e99d1eaabed46dbb42343f401b3d95e58c0b575eb11f56f36e0b0f044402a6876","ssdeep":"3072:dz4WPiqdcS7OlR0DLpGh06LtomGkav0kf897AIB:dz4WPifS7A0fAh06LtomGnv0pOIB","tlshash":"c78430d5eb9bc09cce99518ec0a3fd45e8584e528a5cb4d3fe1ecdc22419b76808726f","size":396527,"data":"","first_seen":"2026-03-02T16:40:18.619612Z","last_seen":"2026-03-02T16:40:18.619612Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"2380d391cf784bce2f77e0e16fa2268b","sha1":"2b88cb08e3d7f56772d46fe1a10d84774e8728d5","sha256":"e65fcff70fe965f3d1878fe515a7ebcd265dfe61b15461521450c882e8d081d7","sha512":"0f3264af3a045928be20d2ee1ef3af905571d07e3fc25eaeda22199baca89b8c9bff94d90d81124ff45b16c5e40df291c2f49d9464ba901d2d961f6fd1196f1f","ssdeep":"","tlshash":"e6411b1e00aa0aa31ba3054333ce846d0956c2cedcc73534d3b27f8134c67832a93bea","size":2254,"data":"","first_seen":"2025-08-01T04:17:54.882582Z","last_seen":"2026-06-08T13:16:56.583434Z","times_seen":2932,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"poly-allocation.com/favicon.ico","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://poly-allocation.com/","date":"2026-03-02T16:39:35.356Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poly-allocation.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:38:30 GMT","end":"Tue, 26 May 2026 23:38:29 GMT"},"fingerprint":{"sha1":"2C:41:F5:EA:52:3E:DB:CE:D0:38:B5:73:A7:EE:E0:A8:C4:9E:CD:8B","sha256":"38:B5:1C:E5:D6:BA:43:9F:BA:1A:54:51:9E:0C:54:5E:1E:27:34:2E:02:7A:2B:46:F1:6A:E3:F3:0A:37:E5:A9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: poly-allocation.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://poly-allocation.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:39:48 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 187309\r\nLast-Modified: Thu, 26 Feb 2026 00:01:45 GMT\r\nConnection: keep-alive\r\nETag: \"699f8d69-2dbad\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":187309,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"55d05b327b83a2e1956939a2820e4dfe","sha1":"8c32b11db4fe655c788b094d16bd7127bc3b5140","sha256":"f5f620c702aa84b27eafcd65068d23d834a13c25794f945771053e8adc2b85f1","sha512":"b4aa95dc2dfaa8a370c53d570654100cd2d542bb84af145420d0ff17cb3a08f7b54bfd7eddff6ef652f9ffbc2d82e98b94c981e519113dd4f6285d77c4a0cd8a","ssdeep":"1536:tN47hpUgJbIG1Xw02KSmRcJnUVHpJoymOMfrH6vVTyGjjPTLLcAWMtfLo:X47j2JUO7u1kAWMtfLo","tlshash":"8304a2f974144994df792e3411f5dca8226f6f6dbc48b3845882b4e26bb37dda3a040e","first_seen":"2026-03-02T13:22:37.593235Z","last_seen":"2026-03-07T00:54:56.961974Z","times_seen":3,"resource_available":false,"data":null}},"time_used":13483,"timings":{"blocked":13351,"dns":0,"connect":0,"send":0,"wait":51,"receive":81,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"poly-allocation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/0a9qhtt2.php?m=2954115","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://poly-allocation.com/","date":"2026-03-02T16:39:49.368Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poly-allocation.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:38:30 GMT","end":"Tue, 26 May 2026 23:38:29 GMT"},"fingerprint":{"sha1":"2C:41:F5:EA:52:3E:DB:CE:D0:38:B5:73:A7:EE:E0:A8:C4:9E:CD:8B","sha256":"38:B5:1C:E5:D6:BA:43:9F:BA:1A:54:51:9E:0C:54:5E:1E:27:34:2E:02:7A:2B:46:F1:6A:E3:F3:0A:37:E5:A9"}}},"request":{"raw":"GET /0a9qhtt2.php?m=2954115 HTTP/1.1\r\nHost: poly-allocation.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://poly-allocation.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:39:49 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nAccess-Control-Allow-Headers: *\r\nAccess-Control-Max-Age: 3600\r\nCache-Control: public, max-age=300\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3528410,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"9b64fcceddfbc788ff9316eb6f403f18","sha1":"389f7486c2a9907f7aa4ff958aad263de8741599","sha256":"6bfece8b511c369c1d6c43d207157a815bfd14b4ed7a00bddf21422aa1bfec20","sha512":"1bcd7387a1ef6b3acadf3d88d86719de066e96203c5d06159e31f7217d8e3acd9b22074138162ae68fc2455697c92219e089594d55e49506b9152dba74afa0ba","ssdeep":"24576:JnV8/8Yae0PgGswPpBroS7InwbjtsJshJuEbdJ8cB:B7OwPEZJs1","tlshash":"db2533026e17fa6a4f4cab76b8bb3d8725518f4344cd20dbe952d8c021787b582dda1f","first_seen":"2026-03-02T16:40:18.588113Z","last_seen":"2026-03-02T16:40:18.588113Z","times_seen":1,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":153,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"poly-allocation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-02T16:39:31.192Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poly-allocation.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:38:30 GMT","end":"Tue, 26 May 2026 23:38:29 GMT"},"fingerprint":{"sha1":"2C:41:F5:EA:52:3E:DB:CE:D0:38:B5:73:A7:EE:E0:A8:C4:9E:CD:8B","sha256":"38:B5:1C:E5:D6:BA:43:9F:BA:1A:54:51:9E:0C:54:5E:1E:27:34:2E:02:7A:2B:46:F1:6A:E3:F3:0A:37:E5:A9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: poly-allocation.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:39:32 GMT\r\nContent-Type: text/html\r\nLast-Modified: Fri, 27 Feb 2026 00:39:01 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a0e7a5-ec6\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3782,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"2b782121718a910b2c72a1568e844929","sha1":"28b8baed5c7367e8cfb22da888668117d085d07f","sha256":"0ce67a80db88ece51def3a39906251cf88ce2984e2f9dc9a1333d4c243b95bce","sha512":"a1c85f71cdcf174da0ce187c6daac82135cc7597b91f028b74df41b617de4443c2bf90f23c75921c21c09dcf3bfbf4d11808a89d6c3eed611f789379014ef80e","ssdeep":"","tlshash":"ee7140a461f26b73911346aa78d18b7a2de2c643ca1901053bfd07e44fa7e86ce6714e","first_seen":"2026-03-02T16:40:18.591298Z","last_seen":"2026-03-02T16:40:18.591298Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3083,"timings":{"blocked":1529,"dns":1481,"connect":20,"send":0,"wait":20,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"poly-allocation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/styles.css","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://poly-allocation.com/","date":"2026-03-02T16:39:32.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poly-allocation.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:38:30 GMT","end":"Tue, 26 May 2026 23:38:29 GMT"},"fingerprint":{"sha1":"2C:41:F5:EA:52:3E:DB:CE:D0:38:B5:73:A7:EE:E0:A8:C4:9E:CD:8B","sha256":"38:B5:1C:E5:D6:BA:43:9F:BA:1A:54:51:9E:0C:54:5E:1E:27:34:2E:02:7A:2B:46:F1:6A:E3:F3:0A:37:E5:A9"}}},"request":{"raw":"GET /styles.css HTTP/1.1\r\nHost: poly-allocation.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://poly-allocation.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:39:32 GMT\r\nContent-Type: text/css\r\nContent-Length: 8862\r\nLast-Modified: Wed, 25 Feb 2026 23:55:58 GMT\r\nConnection: keep-alive\r\nETag: \"699f8c0e-229e\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8862,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"201acdd8525bc7b68b66d41ec0592d91","sha1":"f00ef76708d1dedf76f4511c909cdcf0407eb51f","sha256":"1e956ec720e4b58b0394de1e94c1f26649b2506ab02a8fdef9acff16669308df","sha512":"9444a90ecef5cc5d806cb0348210d5087fd1426e857adbb6c93b1782115d55dfeee6cb91a7e4c5b06f84aa78266893156506f75d698ea9132be95b0ae5b8938e","ssdeep":"192:4cbp97lEQ2lVsX6XKZLyJ/f0bQt2dh/Phh:4PS6M","tlshash":"c50274952bf00504b12bd66879d7eb9eb3aca053841fcd79bbd1205d4f882ec5361b48","first_seen":"2026-03-02T16:40:18.592301Z","last_seen":"2026-03-02T16:40:18.592301Z","times_seen":1,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"poly-allocation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/0a9qhtt2.php","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://poly-allocation.com/","date":"2026-03-02T16:39:32.927Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poly-allocation.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:38:30 GMT","end":"Tue, 26 May 2026 23:38:29 GMT"},"fingerprint":{"sha1":"2C:41:F5:EA:52:3E:DB:CE:D0:38:B5:73:A7:EE:E0:A8:C4:9E:CD:8B","sha256":"38:B5:1C:E5:D6:BA:43:9F:BA:1A:54:51:9E:0C:54:5E:1E:27:34:2E:02:7A:2B:46:F1:6A:E3:F3:0A:37:E5:A9"}}},"request":{"raw":"GET /0a9qhtt2.php HTTP/1.1\r\nHost: poly-allocation.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://poly-allocation.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:39:48 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nAccess-Control-Allow-Headers: *\r\nAccess-Control-Max-Age: 3600\r\nCache-Control: public, max-age=3600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":397961,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (42231), with no line terminators","md5":"1f6e5528466f02873c5a3c0915361712","sha1":"af2d745a32bbd1c43f7c51af71a4dc9a67995aab","sha256":"0bee708469ea0f186c2cdbb5eb920580b724ec980b2bc1d1b67659ebf9424742","sha512":"34abea9494966378f08f585fb8a9dc6d701bd8e12be7ca16d6cbcfef0e103916d4f37f0ecb363619bab922564361e74aba5578b328acbeba95552c0589f39985","ssdeep":"3072:dz4WPiqdch2OlJkDLpGh06LtomGkav0FfS8oRWY:dz4WPifh2okfAh06LtomGnv0UdWY","tlshash":"edb42f81eb7bb39c8944768e90a2fc45e7d84912c95cb497ee1dcdc32418fad818727e","first_seen":"2026-03-02T16:40:18.593194Z","last_seen":"2026-03-02T16:40:18.593194Z","times_seen":1,"resource_available":false,"data":null}},"time_used":15780,"timings":{"blocked":12,"dns":0,"connect":0,"send":0,"wait":15681,"receive":87,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"poly-allocation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/hero.png","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://poly-allocation.com/","date":"2026-03-02T16:39:32.929Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poly-allocation.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:38:30 GMT","end":"Tue, 26 May 2026 23:38:29 GMT"},"fingerprint":{"sha1":"2C:41:F5:EA:52:3E:DB:CE:D0:38:B5:73:A7:EE:E0:A8:C4:9E:CD:8B","sha256":"38:B5:1C:E5:D6:BA:43:9F:BA:1A:54:51:9E:0C:54:5E:1E:27:34:2E:02:7A:2B:46:F1:6A:E3:F3:0A:37:E5:A9"}}},"request":{"raw":"GET /hero.png HTTP/1.1\r\nHost: poly-allocation.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://poly-allocation.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:39:48 GMT\r\nContent-Type: image/png\r\nContent-Length: 1293281\r\nLast-Modified: Thu, 26 Feb 2026 00:01:48 GMT\r\nConnection: keep-alive\r\nETag: \"699f8d6c-13bbe1\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1293281,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 780 x 809, 8-bit/color RGBA, non-interlaced","md5":"57715b829672b688020ce793433e3b2d","sha1":"8a462e39c8ed8871ef9ce75e8c1cf92ff73be0cf","sha256":"c3d6725f06efe8e36cb8144d852f7c8730e7a919d8d6453098812b265fad606a","sha512":"f179940c0fd854a0c1ce53dc3aea1e728510d6ae282411203801989970c5c5693bd5cd4ea06c2d60fced24b9be776dfc3f9e9d02db98aacedc2cb64dc9e24e95","ssdeep":"24576:f+l5RC8+gQXosXKOPo5a1Vg/BsAYAjOJpHXU9b:uRL+bosaOwx5sAd0pkx","tlshash":"b225338d3a1f212532646909e3329b3f63d27add2448f061ffe68db2765dbbc4888175","first_seen":"2026-03-02T13:22:37.591418Z","last_seen":"2026-03-07T00:54:56.959298Z","times_seen":3,"resource_available":false,"data":null}},"time_used":15867,"timings":{"blocked":15779,"dns":0,"connect":19,"send":0,"wait":23,"receive":65,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"poly-allocation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"poly-allocation.com/main.js","fqdn":"poly-allocation.com","domain":"poly-allocation.com","tld":"com"},"ip":{"addr":"74.0.32.219","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://poly-allocation.com/","date":"2026-03-02T16:39:32.930Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"poly-allocation.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Feb 2026 23:38:30 GMT","end":"Tue, 26 May 2026 23:38:29 GMT"},"fingerprint":{"sha1":"2C:41:F5:EA:52:3E:DB:CE:D0:38:B5:73:A7:EE:E0:A8:C4:9E:CD:8B","sha256":"38:B5:1C:E5:D6:BA:43:9F:BA:1A:54:51:9E:0C:54:5E:1E:27:34:2E:02:7A:2B:46:F1:6A:E3:F3:0A:37:E5:A9"}}},"request":{"raw":"GET /main.js HTTP/1.1\r\nHost: poly-allocation.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://poly-allocation.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:39:33 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 4062\r\nLast-Modified: Fri, 27 Feb 2026 00:39:22 GMT\r\nConnection: keep-alive\r\nETag: \"69a0e7ba-fde\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4062,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"358f48191855f03765f65d708ff53cf0","sha1":"5a5aedc7101c0eb97c35ef043da042aea65bcc4a","sha256":"c173af11b10f5cd2ea0f95cdb5f23ced1f3ad401621fa633f3f8f94d3ad8c684","sha512":"dd5ba7f317d43fcb6a580fdcb23e011a01d71cf7e396fb16b79317a6974bdddc953cfdc9edbe03aea1623b51873e62a363f28071f6c6d48dbcb9c36e06456c0a","ssdeep":"","tlshash":"1b81d076366312508a7237bb6e9352aaf67960233440e3e53f9c82102f729549973fcd","first_seen":"2026-03-02T16:40:18.59545Z","last_seen":"2026-03-02T16:40:18.59545Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1237,"timings":{"blocked":604,"dns":557,"connect":20,"send":0,"wait":20,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"poly-allocation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}