{"report_id":"7b29d83d-fb0b-4c6c-aeff-51c409947815","version":0,"status":"done","tags":[],"date":"2026-06-17T16:42:38Z","url":{"schema":"http","addr":"okcappro.com","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":0,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"final":{"url":{"schema":"https","addr":"okcappro.com/","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"title":"Okcoin","dom":{"size":165674,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (40219)","md5":"8839fccfef179977102fa75516410b05","sha1":"028140b960270293b3f78ddb630bfca04dae4ba9","sha256":"0287af8bab3cf369d3f3b8da2364d776208bbe663920a91239a80d741ddb6529","sha512":"92a4b90c217622061994dd8e7c82074db1829c75ab6ea9a1c7d99a0e217fea4328f7b42d99acbf1b086b9f702a0b49e4db5cad34e16eedee5cd1a1b1340029aa","ssdeep":"3072:G1I0rMOjvDPRGhOD6c7YKgcok6xV4x439boI22LJ00UA0ksk4k4aaTmGtxjyzM2E:G1I0rMIvDPRGhOD6c7YKgcok6xV4x43S","tlshash":"5cf371b0da116319502fa1e8f05097aef363525ae716194cabed3b12f3decb104a25fd","dom_hash":"domhash6bdf7b878cc0061423b7e137b87480c1","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"okcappro.com","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":0,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-22T16:42:38Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"okcappro.com","ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"domain_registered":"2026-03-31","domain_rank":0,"first_seen":"2026-06-15T11:24:33.325847Z","last_seen":"2026-06-15T11:24:33.325847Z","alert_count":58,"request_count":29,"received_data":2841122,"sent_data":13619,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"api.okdstyz.com","ip":{"addr":"34.223.104.36","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-05-11","domain_rank":0,"first_seen":"2026-06-15T11:24:33.32632Z","last_seen":"2026-06-15T11:24:33.32632Z","alert_count":0,"request_count":7,"received_data":288659,"sent_data":3951,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"okcappro.com/assets/MarketTabs.vue_vue_type_script_setup_true_lang-DOljQnB8.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"e0c84390b866b81be8fd6c396c4ef6fd","sha1":"8270a25d31e35405a4412fba9461bb6ecb751251","sha256":"1450660cccd0c0fb37a2254a51f18c793e889eb4b345c920acc5846b47e35e18","sha512":"14357641fdeae9006f728d75952b19b6602ecde13249adab6800660cc2daabb85a505290a951a4582db1659ab6a4a7d300c67ea42741e1d7ba1dca50159d74b1","ssdeep":"","tlshash":"8851b55bf40a967c09f70998e0644441eb7c3a9ab2154693b1bf89102bc1cbaf11bf35","size":2885,"data":"","first_seen":"2026-03-28T14:53:25.588223Z","last_seen":"2026-06-17T16:42:42.618727Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/HomeView-6CYhW-UQ.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"851ec2dd81989d6f8719ee38adee854d","sha1":"01d35cdc62a2ea437fa7ea0fd94eb320a13dfc1e","sha256":"9cb38d5c601cb1b5ebd2ac44a3676072b243d6577cac96091ba7176a6ffd6685","sha512":"0aad9a4c05ac6bffe99586a53d6b6bb9009ff539b4bc150d3bab23e0a858a1b6c31b61409fe76114afb7c40537c35f7903616dd3d55531fd5e4c4feeea307679","ssdeep":"192:AN7zYjsobzXRaClC4LD4pFaI5Bf+YRqcjR7wv1rMEVk4p:AhkjsozXRamC4LKai2wqr1w0","tlshash":"f0024b4674a68efe54b70a5ce0254041ab783f5ef3459641b0ef5c102bdacbdba4cb29","size":8251,"data":"","first_seen":"2026-03-28T14:53:25.573679Z","last_seen":"2026-06-17T16:42:42.60624Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/config-Dvz9uSFg.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"7a7f97545ae57588854195ab20135a19","sha1":"1c74eaf20aaeb39d8bcb869481639bb4ee66f4ed","sha256":"dc6d6fcbb7862ddd807adfe7bbf9c7dab48e2441e2fc6c86331f409560b9f008","sha512":"a04346fa29920d08741c03d64977e570cd3e8a2f0509bc853eb2dbbd142181d308062bec186bd1427c27f4411a12bc9042d5ee084b114549e0d64857f5fbe8a8","ssdeep":"","tlshash":"8fd09220f5110379ec0ea7c85601645ac3ccc416a5e49dc5f0b51c072f56f4d68f8f3a","size":255,"data":"","first_seen":"2025-12-13T04:04:45.155858Z","last_seen":"2026-06-17T20:20:10.493724Z","times_seen":59,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/index-3VULh2ko.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"59b334bc6d5ce0bb32304de6466f7738","sha1":"787bac80a7be3f5b9489fe4d0fbe6566a2df87c7","sha256":"db20e5caa019d8561bd65de31c4cdc1236669f919f6f5832c7c2007bbfc60866","sha512":"5d21fd26355a1ff5dc88dc9125243b17ff343b71ed81448594ba09fda66ab48a7f77e713b8f9d3d34fd8bde4f54b7e41cf65457db90ab8ee6f2d76f6ff1e9943","ssdeep":"49152:4g9Ftkxln1Ld5OP2ZJFdZiqur/+Dd7Seo2XdXk3Fktowjz/xHLdWF:HerXYAs","tlshash":"faa5b69174cb9ca483d485915d6e6190f1888d63309ae7e2cdbdec2ab8f2571c6b3f1c","size":2094785,"data":"","first_seen":"2026-06-15T11:24:38.863636Z","last_seen":"2026-06-17T16:42:42.619953Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/web-BLFDJiqZ.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"importedModule","is_inline":false,"md5":"b05f0e480af3b27c43e02ba14db3b14e","sha1":"1b7f6fd1d06463b04eecf50bb3a430c1a9411a6a","sha256":"c1fd7a4c083be16be1347e420f71afcc62f9c48e713b4bdfb7ebfba26eeb9a9a","sha512":"343f4eb2f3b7f21b1332e73bc7043c79d1a9d439366616581d5bc2feff7b94ed88c71f5c5309c053df0c1e0a555b1d01e7d64043e154df3efcbee7b821aca823","ssdeep":"","tlshash":"7521df5023db6b2205cc34d090b2513af202b9d47c57907df06d6ad118a1f45437eeb7","size":1245,"data":"","first_seen":"2026-03-28T14:53:25.60723Z","last_seen":"2026-06-17T16:42:42.592163Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/MainWrapper-BChrVd19.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"eb652caadd4cd2f0aa32d62ce73ad70c","sha1":"2a483d00fcef3579fb0f33d648ee617ca2abea29","sha256":"e1997d033d36749b24b93a9774a4c20e97006f24b5fe4f66c932e7da9af39230","sha512":"a6ab1a430133568e82573660efb2124cf8555debeb8c090b47fb82e289dade27053fb7e1d675f21e51cab59b8eaef23dc22ffc7aafdda5e0d2fce54a4be309c0","ssdeep":"768:sc7ksTp3aFVa3WgjvLt4i9eexcar5tbMQZ14Q1oxsrf:3kstcM3WqLzeWcstPf","tlshash":"74e2bf68740c6b3693a349e4040dc890d9261bded454a0c973ff5f1c7fea97427ad3a9","size":32452,"data":"","first_seen":"2026-03-28T14:53:25.605746Z","last_seen":"2026-06-17T16:42:42.602541Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/PaperSfc-99YSRj4L.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"db0c8a52b82bae7fa4c73160bcdacf92","sha1":"53752f05cf17fd8e49a4519e2bae715f45b86101","sha256":"4bcadcf45f17de17db9ab846907b1be7ad9edc1ff7a1d9501c582c75310db516","sha512":"ecda4326279d61ea2f1df767857d43583ee936111f8624672324be2342faf106ecad0da3366a233057c7b9723ea969d7253b6b294b0fcd2270685baa17f0ca84","ssdeep":"","tlshash":"94113ea7b42e617b926f00e350896708253189fce62080e6e287733b161b1187fea708","size":1037,"data":"","first_seen":"2026-03-28T14:53:25.565989Z","last_seen":"2026-06-17T16:42:42.604105Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"e540444e77f37a8ebff45b76f71fa5e7","sha1":"4c2199dbc89f7d4d399b325c1093637c678d3569","sha256":"9a6a3fdef95d6579c541a3caae8f99b5471ee7430f22e3586548de6945c95142","sha512":"d8fbd80ef494d3c9bfbc38b9d74e0c4b9c522ce81a7999f3625ccfe3a45f83f0146f3e2ca28c660aec45df87d105c9319a88bba70935977b1546c140378e5039","ssdeep":"","tlshash":"5431fd47e53f00421503c8b83a1a8941ad50b51be60b9e5a32ad87d9cf8f4f980d7bfd","size":1712,"data":"","first_seen":"2026-06-15T11:24:38.862231Z","last_seen":"2026-06-17T16:42:42.620998Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/_plugin-vue_export-helper-DlAUqK2U.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","size":91,"data":"","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-06-21T00:30:26.603853Z","times_seen":22843,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/index-C_JhHoiK.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"8ec788ccbfe5bdc4f9f6d37449986222","sha1":"668055361155bbd269a7eb6e35837242b91c6d0f","sha256":"18797f65c19361a95190a6750944fcbc5e83f5800a074dfb01b94b239dd68b00","sha512":"d32690167a93062b9b703181cc447856fbdd48961d54e156392a51930537fcd1a9c3aa7700b9897f6051d479e752431c4049ab73e7e31fab9397be198114d457","ssdeep":"384:MQ9RFs+pVR30f0Wn428lUQoisnRn/0XuiRDMLMpxuh1AZd4ulLQMFjve0d3crAzu:P9RFs+LRE8i428NoisRn/0XuiJMLMpx6","tlshash":"9b6209817450b472977ba5c8c01849d0563e2bc8b138c6eaf06f2e163a99ce4b5eef19","size":15438,"data":"","first_seen":"2026-03-28T14:53:25.585175Z","last_seen":"2026-06-17T16:42:42.599517Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/VarSearch.vue_vue_type_script_setup_true_lang-DemdysW6.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"77a37b4f832959dcb3b610480a43e0df","sha1":"534755225adbaae93ada4d63d706084269484752","sha256":"9f5bab38426d589244557dc064c3cc02f592c30b8dc9f3b8d667cf7e8308c3ae","sha512":"e044b15491ba835191e0b292038e1c1f43bbdf2659575ba94b7cafb32854b31b83124c481cc4d35e0b1d62bc9a5ae2adbfef306fc00806d3d82acc9f17e45b37","ssdeep":"","tlshash":"9b11634f28fac2ba44978aaa72bf5050ae191b1fe1244991897f142737a9cd1c32a20c","size":922,"data":"","first_seen":"2026-03-28T14:53:25.575144Z","last_seen":"2026-06-17T16:42:42.590135Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/lightweight-charts.production-DltLnXkY.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"dbaa3177b324a6836c15b53fcf8f5052","sha1":"915c6af8ceba03488122ae8414fc0f88714f34a8","sha256":"deaa30914d2916603e77399ae3b408eabe1715b56e729e671e0a3f9fe3367203","sha512":"d138b13b8f7c8334c6c5e941e63f31f827acf0cb183dd93473fae01dde915c081ee7783d2f725dedf4ff905d59839cd186f4fc66e3f964a2a39cfa55016d49bb","ssdeep":"3072:gCBre6/F9GBlNhefB7nw33ICa3e4X9XvqDEfZ8gAXhthWwh6MO:gCBre6/olNgfB7nwHICa3e4t/qDEfZ84","tlshash":"01f3fb9172aa685213e1caf954360003f31a7885398b847cb17dddc73da9d4a71febb8","size":160397,"data":"","first_seen":"2026-03-28T14:53:25.594391Z","last_seen":"2026-06-17T16:42:42.603584Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/CellSfc-R9eaHeN1.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"7d7839ba1b2a3adf70efea2eaf7b99fb","sha1":"5c6215c26cedcddc1d6a446a0180bf5acafb0af2","sha256":"80e38f05924940109b916f48c19ad54572b91c0dd9464e071e7f9a99ba392cf9","sha512":"b25e542b29fc9fbbc672f470f76f68c9e245956487286dcecab73839f076b8710d9270aad7d27964830e4d4346806648652dde47ac33fbe1e49fa373eee54922","ssdeep":"","tlshash":"963154283c46477b99ab5085e45c5c08e1f41f4ccc2040d57bf7926e7f525aa9bfa31c","size":1771,"data":"","first_seen":"2026-03-28T14:53:25.589098Z","last_seen":"2026-06-17T16:42:42.600645Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/LocalesSwitcher.vue_vue_type_script_setup_true_lang-Cir8KSnN.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"25a44da73556d0aa59a1814c46c64341","sha1":"9f2bfe560394959067021292a09994c7a73a012a","sha256":"f535bc607496ab9558d26817dd695a3155903b82eea6f1b11ca0544834b886fb","sha512":"820af660816fb637dba3045428cb9d3f66e46b3cc5d9a8efd88a4a92be08a5357261510a57af20b29f1167665a6ffb0f49b751ff30cdcdf42b2dc2e2f9afe324","ssdeep":"","tlshash":"d601230f3d964bb6231f5981e81a4005802c0dff6a288ec1a15b64382f528dddbbc3a4","size":665,"data":"","first_seen":"2026-03-28T14:53:25.587387Z","last_seen":"2026-06-17T16:42:42.601584Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/swipeItem-BcpxSX83.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"6e8d1a3fc7373c4e41f361c24f7fac39","sha1":"15b05b025c70772835c825437710be01a787e360","sha256":"df930f973844b6e941cb3f0a21e21de2a912b886f22b56c9250651097b70cca1","sha512":"c6209ff22bd9a4a473cede57d0ba4d2ad5b675a9fde7cc4b40d400d328d944ae9a34513bb1bc7cd51f89fda748b63a58cec4464344bc3b4755ec6be8fb297b21","ssdeep":"192:0VIMNlbuqJN/sUzw1wzDuplO47YLKRbsQBruDxULfLmZfmZdRhRtRxW:0VIsl1JpkOz2lt7YLKRbsKr53m9mDRfA","tlshash":"7e02d959b984b83397370091b14909d4633b8bf89430b2e4b197af5e3dd5c2c3baf659","size":8690,"data":"","first_seen":"2026-03-28T14:53:25.608551Z","last_seen":"2026-06-17T16:42:42.607963Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"okcappro.com/assets/index-3VULh2ko.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:06.886Z","timestamp":1781714526886,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/index-3VULh2ko.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 11 May 2026 14:26:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a01e71e-1ff6c1\"\r\nexpires: Thu, 18 Jun 2026 04:42:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2094785,"size_decoded":582420,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (46773)","md5":"a99e1f4ca9060cc6d2b25594ef4ac87b","sha1":"835a42ac3d54fd724664e5211b7945875b0ff286","sha256":"5d1503857834302c58fc1d64f893b0068b0d5271b4ff8ddef4ffb0f400dcce94","sha512":"4d31e5f469dfc1ebe9977392d86e607be6bb80969adb7f207328d9802e4802254f86d5fbd0e2a1d038ba2b975b8a6ebf343defae174c72a9693491d3e1a0d4a7","ssdeep":"12288:4g94PmtkrF+Onc3ZQakdugWwBsKwGFvPRX6mD85xB2D9vPnKYUDxeIfta0r1yFdj:4g94etkxlncWLdugOP2Zd0r1yFdj","tlshash":"59351ca4b0cbd885c7c8c44264a62090f2984d97345ab6a3dcf9dc6bfde2575c2b7f18","first_seen":"2026-06-15T11:24:38.853186Z","last_seen":"2026-06-17T16:42:42.587046Z","times_seen":2,"resource_available":false,"data":null}},"time_used":359,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":359,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/united-kingdom-CamCehN9.png","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:10.310Z","timestamp":1781714530310,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/united-kingdom-CamCehN9.png HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-4c77\"\r\nexpires: Fri, 17 Jul 2026 16:42:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19575,"size_decoded":19299,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"aac0dfefc080856931658ea9c760534e","sha1":"6495d0a202721472461a53b11c79aea953184a7c","sha256":"16d2af8dfe6bff63fd76dc7434e09f1c98de85b1aa8d35ab98b473bae3c1f97d","sha512":"b515165c08b5ce687c5e346d0ccebef61c18479e0cc351d03206c22271093564b9bd5d71bb172f37c2d36c11c74d1f8360878b39dd5e1d5a1e16ca7f99e6f40f","ssdeep":"384:padN/jQnWhc1RHy0kXMsjjGabl8QAQObXTbzR3S0Ay25iW0yIVu9EUaYwu:paXsn/1cTMpaIXT/RCyHH6mw","tlshash":"e592d16a46a7857368484a387c4c41a883e94d0f139f322dffcb69c46b767395577882","first_seen":"2023-04-14T10:28:17Z","last_seen":"2026-06-19T22:29:11.370658Z","times_seen":589,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"wss://api.okdstyz.com/ws3","fqdn":"api.okdstyz.com","domain":"okdstyz.com","tld":"com"},"ip":{"addr":"34.223.104.36","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:10.864Z","timestamp":1781714530864,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin.okdstyz.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 13:20:58 GMT","end":"Sun, 09 Aug 2026 13:20:57 GMT"},"fingerprint":{"sha1":"F8:DD:6E:EA:4E:B4:FA:CA:56:D3:E9:9A:31:43:44:48:D7:25:26:7F","sha256":"EE:27:56:E6:CF:DE:B8:95:34:64:22:9D:AA:1D:6E:D2:8B:7A:54:D8:58:DE:36:0E:9F:31:39:4F:35:FD:CC:FE"}}},"request":{"raw":"GET /ws3 HTTP/1.1\r\nHost: api.okdstyz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-WebSocket-Version: 13\r\nOrigin: https://okcappro.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: IGkkMTRUpr7vtQmC4nXHjQ==\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: Upgrade\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx\r\nDate: Wed, 17 Jun 2026 16:42:11 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Version: 13\r\nSec-WebSocket-Accept: p0CPgAYD2ZM0SXBvCYknKAaONaE=\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":208,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-21T00:29:48.592548Z","times_seen":16594319,"resource_available":true,"data":null}},"time_used":515,"timings":{"blocked":0,"dns":0,"connect":170,"send":0,"wait":170,"receive":0,"ssl":174},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.okdstyz.com/storage/images/8172402cb79e5b0112f28b05d53007da.jpg","fqdn":"api.okdstyz.com","domain":"okdstyz.com","tld":"com"},"ip":{"addr":"34.223.104.36","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:11.326Z","timestamp":1781714531326,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin.okdstyz.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 13:20:58 GMT","end":"Sun, 09 Aug 2026 13:20:57 GMT"},"fingerprint":{"sha1":"F8:DD:6E:EA:4E:B4:FA:CA:56:D3:E9:9A:31:43:44:48:D7:25:26:7F","sha256":"EE:27:56:E6:CF:DE:B8:95:34:64:22:9D:AA:1D:6E:D2:8B:7A:54:D8:58:DE:36:0E:9F:31:39:4F:35:FD:CC:FE"}}},"request":{"raw":"GET /storage/images/8172402cb79e5b0112f28b05d53007da.jpg HTTP/1.1\r\nHost: api.okdstyz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 28 Apr 2025 18:21:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"680fc746-d47a\"\r\nexpires: Fri, 17 Jul 2026 16:42:11 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":54394,"size_decoded":45135,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1406, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=2500], baseline, precision 8, 1000x400, components 3","md5":"42ea02770d28ec7d591fb1cbfebc0b04","sha1":"f49752bc3f2180ead03248be55d8b4eacdecd5df","sha256":"d8eb9137b78286b8210b64de05f71a88de58cfb8093ca6622fb4169ec153423c","sha512":"6f3392ad08cf55559d38e1cf7e94126742316936e503b4ac574b16ea2bb5a8f6225153eb472994e95a16279cc0df6c4b09da9dd22db4e96fb8099db8dde2a633","ssdeep":"1536:jgybHLUlxK+2yeUkufXLVwvlYEFxPJ8L78i:jgKlJUkuLVwdx8V","tlshash":"6c33c0127300cec6f8a9b5794de0df827751aca81bab26ab7c8c66163b717d44e3c315","first_seen":"2026-06-15T11:15:43.694705Z","last_seen":"2026-06-17T20:20:10.481993Z","times_seen":9,"resource_available":false,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/VarSearch.vue_vue_type_script_setup_true_lang-DemdysW6.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.718Z","timestamp":1781714529718,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/VarSearch.vue_vue_type_script_setup_true_lang-DemdysW6.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 922\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\netag: \"697111ac-39a\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":922,"size_decoded":1441,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (921)","md5":"77a37b4f832959dcb3b610480a43e0df","sha1":"534755225adbaae93ada4d63d706084269484752","sha256":"9f5bab38426d589244557dc064c3cc02f592c30b8dc9f3b8d667cf7e8308c3ae","sha512":"e044b15491ba835191e0b292038e1c1f43bbdf2659575ba94b7cafb32854b31b83124c481cc4d35e0b1d62bc9a5ae2adbfef306fc00806d3d82acc9f17e45b37","ssdeep":"","tlshash":"9b11634f28fac2ba44978aaa72bf5050ae191b1fe1244991897f142737a9cd1c32a20c","first_seen":"2026-03-28T14:53:25.575144Z","last_seen":"2026-06-17T16:42:42.590135Z","times_seen":8,"resource_available":true,"data":null}},"time_used":516,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":516,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T16:42:05.331Z","timestamp":1781714525331,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:06 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 31 Mar 2026 21:59:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cc43bf-b7b\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2939,"size_decoded":1660,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"67b954195e54429106722650925a2928","sha1":"6e6690e360f3568122761266c3ae7ff536a0546f","sha256":"91cdfe689579d91383888e76dd759be4c3a0ce19ffbe6151edbb048585249486","sha512":"02193f578e76db74f959cfc4de529ef4d6f14e842552ae95faf99bf8f4b8c662ccea4279617fe03ca7eceb9d8edf9f210982f2cce9b828170fc5d844a308cfda","ssdeep":"","tlshash":"d8514342d4bb84062113c4787e97b4049d10a55bd7069e5d32ed53e9cf8a5f880d7bfd","first_seen":"2026-06-15T11:24:38.859633Z","last_seen":"2026-06-17T16:42:42.591236Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1286,"timings":{"blocked":-1,"dns":195,"connect":268,"send":0,"wait":268,"receive":0,"ssl":554},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/web-BLFDJiqZ.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.109Z","timestamp":1781714529109,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/web-BLFDJiqZ.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/assets/index-3VULh2ko.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-4dd\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1245,"size_decoded":1131,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1244)","md5":"b05f0e480af3b27c43e02ba14db3b14e","sha1":"1b7f6fd1d06463b04eecf50bb3a430c1a9411a6a","sha256":"c1fd7a4c083be16be1347e420f71afcc62f9c48e713b4bdfb7ebfba26eeb9a9a","sha512":"343f4eb2f3b7f21b1332e73bc7043c79d1a9d439366616581d5bc2feff7b94ed88c71f5c5309c053df0c1e0a555b1d01e7d64043e154df3efcbee7b821aca823","ssdeep":"","tlshash":"7521df5023db6b2205cc34d090b2513af202b9d47c57907df06d6ad118a1f45437eeb7","first_seen":"2026-03-28T14:53:25.60723Z","last_seen":"2026-06-17T16:42:42.592163Z","times_seen":8,"resource_available":true,"data":null}},"time_used":271,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/swipeItem-BBNNXvsl.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.715Z","timestamp":1781714529715,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/swipeItem-BBNNXvsl.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-f10\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3856,"size_decoded":1406,"mime_type":"text/css","magic":"ASCII text, with very long lines (3855)","md5":"6a6eeb66579d717c87f676d1b8f095a5","sha1":"b399bfc1307d295f41d0970fa491db907bf48f73","sha256":"b4a722de10e61ebfb1d95331008451b72e11c6eab0b654bb9ad5b8530b0b033c","sha512":"6b6bea4bc02349eb6f8d082dd944cb2f6b61ec89d7f04a1a67f65a9bca765c07dbfdf7c143e1b389a3f9fceb5121a912dbd49644ef2f904552db7caaff1d7228","ssdeep":"","tlshash":"fa8168f1d6a04425c4335123aace9ad8d53dcde172613ba470d62e1dc6beaf4470fb4a","first_seen":"2026-03-28T14:52:07.681213Z","last_seen":"2026-06-17T20:20:10.498454Z","times_seen":57,"resource_available":false,"data":null}},"time_used":517,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":517,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/avatar-DxIrKUCN.png","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:10.309Z","timestamp":1781714530309,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/avatar-DxIrKUCN.png HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-1117\"\r\nexpires: Fri, 17 Jul 2026 16:42:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4375,"size_decoded":4918,"mime_type":"image/png","magic":"PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced","md5":"60514a40322af60dc8502d3f8fb525a6","sha1":"caea935db2f5a3f5a2ab1092d932d5b2ce4debe0","sha256":"52c7af9cdec8a0bcd028e4a3f569474bee53e00cc1d6ddd3ebce8ddc1b78a5ea","sha512":"9c2675a9e2a5bcf60dcdf4075af42fdaafcc396a4b871bb348a3a5ab8df68b84ddeb98a203874ba6e8464c34b7d7272cf2699e6779a05a441ce9ded64248b2fc","ssdeep":"96:1+/7HYYG7xWDhAHfUcO+o9rbC4+eLCpW+DFX7m:4TY11AhWUhxLCpXDFXC","tlshash":"83917d6d33a93b34fc2b6ef340491136e7dd00557941402db749a6eabd84298dd3b158","first_seen":"2026-03-28T14:52:07.730136Z","last_seen":"2026-06-17T16:42:42.595735Z","times_seen":24,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":277,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/index-B55LSaPF.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:06.888Z","timestamp":1781714526888,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/index-B55LSaPF.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:07 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-53ea4\"\r\nexpires: Thu, 18 Jun 2026 04:42:07 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":343716,"size_decoded":101406,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65018), with no line terminators","md5":"135ece64dc57016ad634d07ca32e8e8a","sha1":"42d0eaef20881862c6649fdb359151162c85b0ee","sha256":"b83d1a2985f0b844c4eb6c68b5f6043ec75d80ee5defd743e3377385db47e8cb","sha512":"5de6d2de60c1a7b4442585715601439f58cea414c92af840ef11037dedb08832c7c11337f38683e38cb5d091696f2e026bdc16ed03933117747d06f1d472c62a","ssdeep":"6144:7RxsaICW8PGYW8SPhwLNs90ZS5JlcC4JP5QColZxu98JlQG64xsASwl:7R1O8PGYOPhwLNs90ZS5J6C4JP5QColz","tlshash":"ee74f8b4eb8082bcaf17e569cb8b66dcba3cf572ed00d9b4f10551184ac37f91523929","first_seen":"2026-03-28T14:53:25.600394Z","last_seen":"2026-06-17T16:42:42.596518Z","times_seen":8,"resource_available":false,"data":null}},"time_used":1090,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1090,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/loading.gif","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:06.896Z","timestamp":1781714526896,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /loading.gif HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:07 GMT\r\ncontent-type: image/gif\r\nlast-modified: Wed, 21 Jan 2026 17:49:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111aa-cff9\"\r\nexpires: Fri, 17 Jul 2026 16:42:07 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":53241,"size_decoded":48072,"mime_type":"image/gif","magic":"GIF image data, version 89a, 400 x 400","md5":"97e23ab316dafad70085144a6c822a48","sha1":"0869aab79b03cca5d47f47cd4d45c8764659b34e","sha256":"1b5dd93a363984bac27654d1a3292cf711a40614e6f9623525ca1851a4298143","sha512":"e3481e1f5d5c410129686831cb37a304110e8f0171e45d93e6906a98d43666c70374a4700e2f71c0a814128e9728e584e67fbeed9b8a5204b9b60d4f1b571022","ssdeep":"768:PSLSAjUxtsF2TCy5yAM5cFs3dKNc0+gBrhaqDAXDCYafJhAzVAcJnPm/ccJGCDAf:nAQtMQyJ5cFu0+gfOX+4AmPmkcJuXP","tlshash":"3933df797168a7bc9a2e46fd048a40ea3cefcc411d6218e30da0f87f624d57c645dc8b","first_seen":"2025-12-13T04:04:45.170156Z","last_seen":"2026-06-17T20:20:10.496544Z","times_seen":67,"resource_available":false,"data":null}},"time_used":1082,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1082,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/logo.png","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.222Z","timestamp":1781714529222,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 21 Jan 2026 17:49:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111aa-5caa\"\r\nexpires: Fri, 17 Jul 2026 16:42:09 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":23722,"size_decoded":24055,"mime_type":"image/png","magic":"PNG image data, 265 x 265, 8-bit/color RGBA, non-interlaced","md5":"4a4c67e872210c7a02d74b6385e6a523","sha1":"56793b50e61ac27409f228e61119c481cfc336b4","sha256":"b9a5abe5bccd84ce51b66b0be4de68066a194756e6ce647a8a38e5f4372e3497","sha512":"b7517be1feebf3f75618535e136548c3c746c3d2163a1a806828985fd1c30903bca80fe6264c681468a7e3ff464d988c3baa77e97904e407dfd84869dec6765d","ssdeep":"384:+KkUBbgw8h/sWMxmggySU86CfIWOjXc/rXZvuWAhAdZbweQ/zC09KKdOd0p:1gKsgHSJ7fIWlrXZGWAhERweQ/X4KIdG","tlshash":"5fb2f1c2190e688758cd4ff9969d8be7016b9e5349c07dc07b7ba7d032c8fb66b91406","first_seen":"2026-03-28T14:52:07.688306Z","last_seen":"2026-06-17T16:42:42.598654Z","times_seen":18,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/index-C_JhHoiK.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.702Z","timestamp":1781714529702,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/index-C_JhHoiK.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-3c4e\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15438,"size_decoded":7218,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (15437)","md5":"8ec788ccbfe5bdc4f9f6d37449986222","sha1":"668055361155bbd269a7eb6e35837242b91c6d0f","sha256":"18797f65c19361a95190a6750944fcbc5e83f5800a074dfb01b94b239dd68b00","sha512":"d32690167a93062b9b703181cc447856fbdd48961d54e156392a51930537fcd1a9c3aa7700b9897f6051d479e752431c4049ab73e7e31fab9397be198114d457","ssdeep":"384:MQ9RFs+pVR30f0Wn428lUQoisnRn/0XuiRDMLMpxuh1AZd4ulLQMFjve0d3crAzu:P9RFs+LRE8i428NoisRn/0XuiJMLMpx6","tlshash":"9b6209817450b472977ba5c8c01849d0563e2bc8b138c6eaf06f2e163a99ce4b5eef19","first_seen":"2026-03-28T14:53:25.585175Z","last_seen":"2026-06-17T16:42:42.599517Z","times_seen":8,"resource_available":true,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/CellSfc-R9eaHeN1.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.712Z","timestamp":1781714529712,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/CellSfc-R9eaHeN1.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-6eb\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1771,"size_decoded":1337,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1770)","md5":"7d7839ba1b2a3adf70efea2eaf7b99fb","sha1":"5c6215c26cedcddc1d6a446a0180bf5acafb0af2","sha256":"80e38f05924940109b916f48c19ad54572b91c0dd9464e071e7f9a99ba392cf9","sha512":"b25e542b29fc9fbbc672f470f76f68c9e245956487286dcecab73839f076b8710d9270aad7d27964830e4d4346806648652dde47ac33fbe1e49fa373eee54922","ssdeep":"","tlshash":"963154283c46477b99ab5085e45c5c08e1f41f4ccc2040d57bf7926e7f525aa9bfa31c","first_seen":"2026-03-28T14:53:25.589098Z","last_seen":"2026-06-17T16:42:42.600645Z","times_seen":8,"resource_available":true,"data":null}},"time_used":519,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":519,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/LocalesSwitcher.vue_vue_type_script_setup_true_lang-Cir8KSnN.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.717Z","timestamp":1781714529717,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/LocalesSwitcher.vue_vue_type_script_setup_true_lang-Cir8KSnN.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 665\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\netag: \"697111ac-299\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":665,"size_decoded":1184,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (664)","md5":"25a44da73556d0aa59a1814c46c64341","sha1":"9f2bfe560394959067021292a09994c7a73a012a","sha256":"f535bc607496ab9558d26817dd695a3155903b82eea6f1b11ca0544834b886fb","sha512":"820af660816fb637dba3045428cb9d3f66e46b3cc5d9a8efd88a4a92be08a5357261510a57af20b29f1167665a6ffb0f49b751ff30cdcdf42b2dc2e2f9afe324","ssdeep":"","tlshash":"d601230f3d964bb6231f5981e81a4005802c0dff6a288ec1a15b64382f528dddbbc3a4","first_seen":"2026-03-28T14:53:25.587387Z","last_seen":"2026-06-17T16:42:42.601584Z","times_seen":8,"resource_available":true,"data":null}},"time_used":517,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":517,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/MainWrapper-BChrVd19.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.693Z","timestamp":1781714529693,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/MainWrapper-BChrVd19.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-7ec4\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":32452,"size_decoded":22251,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (32451)","md5":"eb652caadd4cd2f0aa32d62ce73ad70c","sha1":"2a483d00fcef3579fb0f33d648ee617ca2abea29","sha256":"e1997d033d36749b24b93a9774a4c20e97006f24b5fe4f66c932e7da9af39230","sha512":"a6ab1a430133568e82573660efb2124cf8555debeb8c090b47fb82e289dade27053fb7e1d675f21e51cab59b8eaef23dc22ffc7aafdda5e0d2fce54a4be309c0","ssdeep":"768:sc7ksTp3aFVa3WgjvLt4i9eexcar5tbMQZ14Q1oxsrf:3kstcM3WqLzeWcstPf","tlshash":"74e2bf68740c6b3693a349e4040dc890d9261bded454a0c973ff5f1c7fea97427ad3a9","first_seen":"2026-03-28T14:53:25.605746Z","last_seen":"2026-06-17T16:42:42.602541Z","times_seen":8,"resource_available":true,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/index-Cm0gOXVh.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.704Z","timestamp":1781714529704,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/index-Cm0gOXVh.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-1352\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4946,"size_decoded":1908,"mime_type":"text/css","magic":"ASCII text, with very long lines (4945)","md5":"d95c2665712cc9adbbda2820a3795ced","sha1":"012f0dcaa65548f35b7ebc4cbf5c54e7fd99eace","sha256":"3164dead0b27c8f1cbada0960d02a5f1485dc2138aef2b77f5da42bd20f95174","sha512":"fdd13f4a59f459056b0ea3eeaecfe2af4c0b3f10e9d3d14918807d9487ddf60a726e1b4fa0fe19c49da928cf4c28b9b115970e4c150719b004d4c9a85fb7b70a","ssdeep":"96:o1eQwE9E9TRKQoYETEXtXYYJMXcQMpvMVsFWjSU:o1eQwE9ExkQoYETEXtPSv","tlshash":"f6a1cb35e6b0957bdf12f13da7d666c8b03ce7706d51b6a5b1042018cacbbf8052390b","first_seen":"2026-03-28T14:52:07.679062Z","last_seen":"2026-06-17T16:42:42.603063Z","times_seen":18,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/lightweight-charts.production-DltLnXkY.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.706Z","timestamp":1781714529706,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/lightweight-charts.production-DltLnXkY.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-2728d\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":160397,"size_decoded":58121,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (56479)","md5":"dbaa3177b324a6836c15b53fcf8f5052","sha1":"915c6af8ceba03488122ae8414fc0f88714f34a8","sha256":"deaa30914d2916603e77399ae3b408eabe1715b56e729e671e0a3f9fe3367203","sha512":"d138b13b8f7c8334c6c5e941e63f31f827acf0cb183dd93473fae01dde915c081ee7783d2f725dedf4ff905d59839cd186f4fc66e3f964a2a39cfa55016d49bb","ssdeep":"3072:gCBre6/F9GBlNhefB7nw33ICa3e4X9XvqDEfZ8gAXhthWwh6MO:gCBre6/olNgfB7nwHICa3e4t/qDEfZ84","tlshash":"01f3fb9172aa685213e1caf954360003f31a7885398b847cb17dddc73da9d4a71febb8","first_seen":"2026-03-28T14:53:25.594391Z","last_seen":"2026-06-17T16:42:42.603584Z","times_seen":14,"resource_available":true,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/PaperSfc-99YSRj4L.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.709Z","timestamp":1781714529709,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/PaperSfc-99YSRj4L.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-40d\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1037,"size_decoded":1116,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1036)","md5":"db0c8a52b82bae7fa4c73160bcdacf92","sha1":"53752f05cf17fd8e49a4519e2bae715f45b86101","sha256":"4bcadcf45f17de17db9ab846907b1be7ad9edc1ff7a1d9501c582c75310db516","sha512":"ecda4326279d61ea2f1df767857d43583ee936111f8624672324be2342faf106ecad0da3366a233057c7b9723ea969d7253b6b294b0fcd2270685baa17f0ca84","ssdeep":"","tlshash":"94113ea7b42e617b926f00e350896708253189fce62080e6e287733b161b1187fea708","first_seen":"2026-03-28T14:53:25.565989Z","last_seen":"2026-06-17T16:42:42.604105Z","times_seen":8,"resource_available":true,"data":null}},"time_used":522,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":522,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/PaperSfc-DDLmlf1o.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.710Z","timestamp":1781714529710,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/PaperSfc-DDLmlf1o.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: text/css\r\ncontent-length: 358\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\netag: \"697111ac-166\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":358,"size_decoded":863,"mime_type":"text/css","magic":"ASCII text, with very long lines (357)","md5":"804ed6dff41e1c0f7c48007004155fd4","sha1":"2c9a4b9f36727ce06d4979d13a4aa76a5fe8d043","sha256":"49e1228c9c973e98ff26fafa142395f8fcb6961c882a616ab10e9d4e8e2fd14a","sha512":"c01d6202bc4f7717c56b7b6849aa370b85c24e72c35edee4e6a5ea44b4ad7cb07445143675fb4de3deba1a41d5945f5a05b9d848cd6778e4bf7ae1a9aaae75da","ssdeep":"","tlshash":"d8e0d8a4eb4d527db42fe724d5db8bcba61aa17144504628b05436e810c6d96cc7340d","first_seen":"2025-12-13T04:04:45.154401Z","last_seen":"2026-06-17T16:42:42.605085Z","times_seen":42,"resource_available":false,"data":null}},"time_used":521,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":521,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.okdstyz.com/api/app/getNews","fqdn":"api.okdstyz.com","domain":"okdstyz.com","tld":"com"},"ip":{"addr":"34.223.104.36","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:11.184Z","timestamp":1781714531184,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin.okdstyz.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 13:20:58 GMT","end":"Sun, 09 Aug 2026 13:20:57 GMT"},"fingerprint":{"sha1":"F8:DD:6E:EA:4E:B4:FA:CA:56:D3:E9:9A:31:43:44:48:D7:25:26:7F","sha256":"EE:27:56:E6:CF:DE:B8:95:34:64:22:9D:AA:1D:6E:D2:8B:7A:54:D8:58:DE:36:0E:9F:31:39:4F:35:FD:CC:FE"}}},"request":{"raw":"OPTIONS /api/app/getNews HTTP/1.1\r\nHost: api.okdstyz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: lang\r\nReferer: https://okcappro.com/\r\nOrigin: https://okcappro.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 \r\nserver: nginx\r\ncache-control: no-cache, private\r\ndate: Wed, 17 Jun 2026 16:42:11 GMT\r\naccess-control-allow-origin: https://okcappro.com\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: lang\r\naccess-control-max-age: 0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":600,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-21T00:29:48.592548Z","times_seen":16594319,"resource_available":true,"data":null}},"time_used":242,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":242,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/ImageSfc-BaahJttm.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.720Z","timestamp":1781714529720,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/ImageSfc-BaahJttm.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: text/css\r\ncontent-length: 83\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\netag: \"697111ac-53\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":83,"size_decoded":586,"mime_type":"text/css","magic":"ASCII text","md5":"c12016b85c820292f1adff7f94496866","sha1":"50f5c2eea0d362c73bd45acc7870f4a184990652","sha256":"57d5eaf0827d2c0fdba97b14ec04028f7b33c3f8e6721496e893064374b86416","sha512":"0c959ea482b073ad64e97955e0aac99d21911cf8481d6d04ab998d7e017171b3d3e17c2599247264c2cd9d0ca414774c9fe70cba20c2179706c868c9c5b3d425","ssdeep":"","tlshash":"bda012b90d24d09a8021c514a4cf4aca4515c50003018744891034200d490042a33050","first_seen":"2026-03-28T14:52:07.706821Z","last_seen":"2026-06-17T20:20:10.500657Z","times_seen":57,"resource_available":false,"data":null}},"time_used":514,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":514,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/logo.png","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.220Z","timestamp":1781714529220,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: image/png\r\nlast-modified: Wed, 21 Jan 2026 17:49:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111aa-5caa\"\r\nexpires: Fri, 17 Jul 2026 16:42:09 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":23722,"size_decoded":24055,"mime_type":"image/png","magic":"PNG image data, 265 x 265, 8-bit/color RGBA, non-interlaced","md5":"4a4c67e872210c7a02d74b6385e6a523","sha1":"56793b50e61ac27409f228e61119c481cfc336b4","sha256":"b9a5abe5bccd84ce51b66b0be4de68066a194756e6ce647a8a38e5f4372e3497","sha512":"b7517be1feebf3f75618535e136548c3c746c3d2163a1a806828985fd1c30903bca80fe6264c681468a7e3ff464d988c3baa77e97904e407dfd84869dec6765d","ssdeep":"384:+KkUBbgw8h/sWMxmggySU86CfIWOjXc/rXZvuWAhAdZbweQ/zC09KKdOd0p:1gKsgHSJ7fIWlrXZGWAhERweQ/X4KIdG","tlshash":"5fb2f1c2190e688758cd4ff9969d8be7016b9e5349c07dc07b7ba7d032c8fb66b91406","first_seen":"2026-03-28T14:52:07.688306Z","last_seen":"2026-06-17T16:42:42.598654Z","times_seen":18,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/HomeView-6CYhW-UQ.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.699Z","timestamp":1781714529699,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/HomeView-6CYhW-UQ.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-203b\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8251,"size_decoded":5745,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (8095)","md5":"851ec2dd81989d6f8719ee38adee854d","sha1":"01d35cdc62a2ea437fa7ea0fd94eb320a13dfc1e","sha256":"9cb38d5c601cb1b5ebd2ac44a3676072b243d6577cac96091ba7176a6ffd6685","sha512":"0aad9a4c05ac6bffe99586a53d6b6bb9009ff539b4bc150d3bab23e0a858a1b6c31b61409fe76114afb7c40537c35f7903616dd3d55531fd5e4c4feeea307679","ssdeep":"192:AN7zYjsobzXRaClC4LD4pFaI5Bf+YRqcjR7wv1rMEVk4p:AhkjsozXRamC4LKai2wqr1w0","tlshash":"f0024b4674a68efe54b70a5ce0254041ab783f5ef3459641b0ef5c102bdacbdba4cb29","first_seen":"2026-03-28T14:53:25.573679Z","last_seen":"2026-06-17T16:42:42.60624Z","times_seen":8,"resource_available":true,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/config-Dvz9uSFg.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.705Z","timestamp":1781714529705,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/config-Dvz9uSFg.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 255\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\netag: \"697111ac-ff\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":255,"size_decoded":773,"mime_type":"application/javascript","magic":"ASCII text","md5":"7a7f97545ae57588854195ab20135a19","sha1":"1c74eaf20aaeb39d8bcb869481639bb4ee66f4ed","sha256":"dc6d6fcbb7862ddd807adfe7bbf9c7dab48e2441e2fc6c86331f409560b9f008","sha512":"a04346fa29920d08741c03d64977e570cd3e8a2f0509bc853eb2dbbd142181d308062bec186bd1427c27f4411a12bc9042d5ee084b114549e0d64857f5fbe8a8","ssdeep":"","tlshash":"8fd09220f5110379ec0ea7c85601645ac3ccc416a5e49dc5f0b51c072f56f4d68f8f3a","first_seen":"2025-12-13T04:04:45.155858Z","last_seen":"2026-06-17T20:20:10.493724Z","times_seen":59,"resource_available":true,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/swipeItem-BcpxSX83.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.714Z","timestamp":1781714529714,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/swipeItem-BcpxSX83.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-21f2\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8690,"size_decoded":3896,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (8689)","md5":"6e8d1a3fc7373c4e41f361c24f7fac39","sha1":"15b05b025c70772835c825437710be01a787e360","sha256":"df930f973844b6e941cb3f0a21e21de2a912b886f22b56c9250651097b70cca1","sha512":"c6209ff22bd9a4a473cede57d0ba4d2ad5b675a9fde7cc4b40d400d328d944ae9a34513bb1bc7cd51f89fda748b63a58cec4464344bc3b4755ec6be8fb297b21","ssdeep":"192:0VIMNlbuqJN/sUzw1wzDuplO47YLKRbsQBruDxULfLmZfmZdRhRtRxW:0VIsl1JpkOz2lt7YLKRbsKr53m9mDRfA","tlshash":"7e02d959b984b83397370091b14909d4633b8bf89430b2e4b197af5e3dd5c2c3baf659","first_seen":"2026-03-28T14:53:25.608551Z","last_seen":"2026-06-17T16:42:42.607963Z","times_seen":8,"resource_available":true,"data":null}},"time_used":518,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":518,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.okdstyz.com/storage/images/f071fabe8a1c659fd24d2d132bc103ba.jpg","fqdn":"api.okdstyz.com","domain":"okdstyz.com","tld":"com"},"ip":{"addr":"34.223.104.36","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:11.331Z","timestamp":1781714531331,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin.okdstyz.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 13:20:58 GMT","end":"Sun, 09 Aug 2026 13:20:57 GMT"},"fingerprint":{"sha1":"F8:DD:6E:EA:4E:B4:FA:CA:56:D3:E9:9A:31:43:44:48:D7:25:26:7F","sha256":"EE:27:56:E6:CF:DE:B8:95:34:64:22:9D:AA:1D:6E:D2:8B:7A:54:D8:58:DE:36:0E:9F:31:39:4F:35:FD:CC:FE"}}},"request":{"raw":"GET /storage/images/f071fabe8a1c659fd24d2d132bc103ba.jpg HTTP/1.1\r\nHost: api.okdstyz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 28 Apr 2025 15:24:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"680f9d9f-1d827\"\r\nexpires: Fri, 17 Jul 2026 16:42:11 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":120871,"size_decoded":112480,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2024:09:01 01:37:50], baseline, precision 8, 1125x450, components 3","md5":"c21dc18cfc95154c9a2bb5f5d91305cb","sha1":"31478dbf6eae8d05db643493fd7ed4bad268b2d9","sha256":"fda76a1210fa05ddf32fc7df93034672f0750b26247329f76da5b199ca5d0878","sha512":"1eccddb690708670974474baa45fc3e60462f0d0f9ec71796dadaffead854bd4cdc1cab5d77afa3d7f727e7352cc2c144f8d6ced7d6ccc88da026f43a7a6c23a","ssdeep":"3072:l4uty6/Gt18bBiEw5NYE9swHWryXlueIabg5HT7x:Xty6/Gt18bEENUH5XlueIas5z9","tlshash":"bcc302105f40aec1ebd8b1b09461a897f168df8195e3aa063cdfea157f743b95c680a3","first_seen":"2026-06-15T11:24:38.850522Z","last_seen":"2026-06-17T16:42:42.60911Z","times_seen":2,"resource_available":false,"data":null}},"time_used":683,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":683,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/MainWrapper-p_0J-9LZ.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.697Z","timestamp":1781714529697,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/MainWrapper-p_0J-9LZ.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-1d81\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7553,"size_decoded":2345,"mime_type":"text/css","magic":"ASCII text, with very long lines (7552)","md5":"99cf8ea93b838ebfd0ee0c99c000ecb1","sha1":"da0803cb4c2709f76b152538180d6362a8ede13e","sha256":"62e41758195a20934fe0b1a9da96cfb71de13c1d496a931535730ccc2b9938ff","sha512":"f0579b280730a1566fd161d3f7cd1e866593368bc340071bc9ada461726f87480b24fea977fcf7495a084cc599a4a92ee1fb67fbe6f8d0e54d33a477eebb6c08","ssdeep":"96:r9eQBNnMdnTNSWwSw7LVefXspZ0hdcmnaAB5rFx699y0NmWFJAtt82JIJ:H9n7LVQXspZ0hRaABZFxWZp","tlshash":"43f17892b5b4667e9737e3bb9f4dd29ce126d9f4c89137e473c6132409c1ae82223e05","first_seen":"2026-03-28T14:52:07.716032Z","last_seen":"2026-06-17T16:42:42.615604Z","times_seen":10,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/index-Bk_W8rqQ.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.707Z","timestamp":1781714529707,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/index-Bk_W8rqQ.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-1d43\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7491,"size_decoded":2705,"mime_type":"text/css","magic":"ASCII text, with very long lines (7490)","md5":"4071f2fad07065c255a3dc31716438f2","sha1":"70fde71f390e0a0b7312a47a2b0c644dfe11c35d","sha256":"2248b173e91fe1ef2e4204e0bd8de808f2e000b7215a27eb4c843f0320888777","sha512":"f505b101312cc583e2cb7887d12a5330ed33858e6eedc866a01386a8d8a3767f786f96ff8059af885c7de699e40b6204c0c34c6226af512b9340e314c9166f52","ssdeep":"192:o/ZpHrL6MQFhe7eMlQLTcOSidPlTcOSidPymqW9lMe:auLhe7eMlQLTcOSidPlTcOSidPymqSv","tlshash":"85f10e26e94042391f026695af9655ecf5bce2f2ee12d4e8b18413e51bc3bf80733a47","first_seen":"2026-03-28T14:52:07.690057Z","last_seen":"2026-06-17T16:42:42.616157Z","times_seen":18,"resource_available":false,"data":null}},"time_used":286,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/HomeView-BoR0mnBW.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.719Z","timestamp":1781714529719,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/HomeView-BoR0mnBW.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: text/css\r\ncontent-length: 258\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\netag: \"697111ac-102\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":258,"size_decoded":763,"mime_type":"text/css","magic":"ASCII text","md5":"9b0b2b60cc2ac8145a33f6957c062248","sha1":"8555657f87dc01151ccc495b99a1761947a3305b","sha256":"a0d63883cfd62ccaeae2a7bf20345f6605b53e34e93dee5991d822814896eb20","sha512":"3682ebb440f89af9b18ad2e1b4f6658f1fc653fa7bbd23a471ddaa88b9e8d0e18d87cf832aa71998a7df594c9c7b4d80a966825f10186b588366e8c9f3f23cc3","ssdeep":"","tlshash":"54d02bd45135442c3333cdcbb0ec560c955efd13d4063f20224124c0d0270cd461c562","first_seen":"2026-03-28T14:53:25.604884Z","last_seen":"2026-06-17T16:42:42.616954Z","times_seen":8,"resource_available":false,"data":null}},"time_used":515,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":515,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.okdstyz.com/storage/images/1c5a6facc569e2ef1136753ab6b4ca76.jpg","fqdn":"api.okdstyz.com","domain":"okdstyz.com","tld":"com"},"ip":{"addr":"34.223.104.36","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:11.328Z","timestamp":1781714531328,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin.okdstyz.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 13:20:58 GMT","end":"Sun, 09 Aug 2026 13:20:57 GMT"},"fingerprint":{"sha1":"F8:DD:6E:EA:4E:B4:FA:CA:56:D3:E9:9A:31:43:44:48:D7:25:26:7F","sha256":"EE:27:56:E6:CF:DE:B8:95:34:64:22:9D:AA:1D:6E:D2:8B:7A:54:D8:58:DE:36:0E:9F:31:39:4F:35:FD:CC:FE"}}},"request":{"raw":"GET /storage/images/1c5a6facc569e2ef1136753ab6b4ca76.jpg HTTP/1.1\r\nHost: api.okdstyz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 28 Apr 2025 13:21:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"680f80ce-1ad0c\"\r\nexpires: Fri, 17 Jul 2026 16:42:11 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":109836,"size_decoded":99996,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1406, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=2500], baseline, precision 8, 1000x492, components 3","md5":"6041d0fce2920663f0a8d900a055a55e","sha1":"3614dc74d78464bf98acc77944544ad501d2c972","sha256":"e2cd10269bf82e81dff51693e519698320b658a511c03d1af699c16445f6fada","sha512":"a638b409f50a5ead657615e4b3e8336e51a487943bb7dfa1f5fcec602e737577a1d33891eedf3ada6322b34003d7b1541647d8785c754b1c0b01c0b8cf723793","ssdeep":"1536:VP7cu3vw+ySiAM0GdkaXlYgpwlx8sSEQ+R2yYmVeaQ7DyZ5CVsG+agkNH8x8A:VP/fFPitXK6hGx8sw+RImVwX+6U","tlshash":"7eb30205ae20bda2fdca667be221e6532011f48214b6076774fc7d49fba9bc25c6f211","first_seen":"2026-06-15T11:15:43.686132Z","last_seen":"2026-06-17T20:20:10.497994Z","times_seen":9,"resource_available":false,"data":null}},"time_used":515,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":515,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/_plugin-vue_export-helper-DlAUqK2U.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.694Z","timestamp":1781714529694,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/_plugin-vue_export-helper-DlAUqK2U.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 91\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\netag: \"697111ac-5b\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":91,"size_decoded":608,"mime_type":"application/javascript","magic":"ASCII text","md5":"25e3a5dcaf00fb2b1ba0c8ecea6d2560","sha1":"7850b3fd4aeb69387bdb5a60025d15c41351d5eb","sha256":"cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa","sha512":"2e5cc9b53d5641147f68c73e5db0442d93fb6a64da45cfc051da5550a2fad07e912e651bd730e54325ef74eb706be0c5df612355c1dca144ab6e9cc8c4ecc73b","ssdeep":"","tlshash":"1fb012c81cc3e078939818d47738c15844380448310742b0808c0943e2c20809797c1d","first_seen":"2023-03-08T16:39:49Z","last_seen":"2026-06-21T00:30:26.603853Z","times_seen":22843,"resource_available":true,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/MarketTabs.vue_vue_type_script_setup_true_lang-DOljQnB8.js","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.701Z","timestamp":1781714529701,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/MarketTabs.vue_vue_type_script_setup_true_lang-DOljQnB8.js HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-b45\"\r\nexpires: Thu, 18 Jun 2026 04:42:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2885,"size_decoded":2024,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2884)","md5":"e0c84390b866b81be8fd6c396c4ef6fd","sha1":"8270a25d31e35405a4412fba9461bb6ecb751251","sha256":"1450660cccd0c0fb37a2254a51f18c793e889eb4b345c920acc5846b47e35e18","sha512":"14357641fdeae9006f728d75952b19b6602ecde13249adab6800660cc2daabb85a505290a951a4582db1659ab6a4a7d300c67ea42741e1d7ba1dca50159d74b1","ssdeep":"","tlshash":"8851b55bf40a967c09f70998e0644441eb7c3a9ab2154693b1bf89102bc1cbaf11bf35","first_seen":"2026-03-28T14:53:25.588223Z","last_seen":"2026-06-17T16:42:42.618727Z","times_seen":8,"resource_available":true,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"okcappro.com/assets/CellSfc-CDIb0k8S.css","fqdn":"okcappro.com","domain":"okcappro.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.713Z","timestamp":1781714529713,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"okcappro.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:43:57 GMT","end":"Fri, 28 Aug 2026 08:43:56 GMT"},"fingerprint":{"sha1":"4A:42:11:A7:E5:D5:97:C6:15:91:46:63:67:F1:FC:3A:B1:66:31:47","sha256":"E1:F4:B5:73:A8:30:0B:C6:85:8F:1B:96:75:84:44:6B:55:5C:EE:66:22:49:43:F0:70:BF:A1:3E:03:C1:E4:AB"}}},"request":{"raw":"GET /assets/CellSfc-CDIb0k8S.css HTTP/1.1\r\nHost: okcappro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://okcappro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 21 Jan 2026 17:49:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"697111ac-5be\"\r\nexpires: Thu, 18 Jun 2026 04:42:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1470,"size_decoded":1092,"mime_type":"text/css","magic":"ASCII text, with very long lines (1469)","md5":"6c09dca13a8a624b5036aa96f1780137","sha1":"26571a9ea136f6c462fe49361f75f82af45c51db","sha256":"e0154ab8dae966b73ccf94078b61a340d9787fe769147aaecdfcfc3b088fb41d","sha512":"c57dbc094876d854fa3cd1a3af755632f7b4c396c6db82a50f5ecd8bf9214236ead9f33274db84223953c0c143a99e9872fb44b4142698211085ebe0d1f3e365","ssdeep":"","tlshash":"c031d8bdee60c2ade05fba193fe88bacf964ab748c1585657f40401063c27f389d3910","first_seen":"2025-12-13T04:04:45.174789Z","last_seen":"2026-06-17T20:20:10.485449Z","times_seen":67,"resource_available":false,"data":null}},"time_used":518,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":518,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"okcappro.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.okdstyz.com/api/app/index/logo","fqdn":"api.okdstyz.com","domain":"okdstyz.com","tld":"com"},"ip":{"addr":"34.223.104.36","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:09.727Z","timestamp":1781714529727,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin.okdstyz.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 13:20:58 GMT","end":"Sun, 09 Aug 2026 13:20:57 GMT"},"fingerprint":{"sha1":"F8:DD:6E:EA:4E:B4:FA:CA:56:D3:E9:9A:31:43:44:48:D7:25:26:7F","sha256":"EE:27:56:E6:CF:DE:B8:95:34:64:22:9D:AA:1D:6E:D2:8B:7A:54:D8:58:DE:36:0E:9F:31:39:4F:35:FD:CC:FE"}}},"request":{"raw":"OPTIONS /api/app/index/logo HTTP/1.1\r\nHost: api.okdstyz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: lang\r\nReferer: https://okcappro.com/\r\nOrigin: https://okcappro.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 \r\nserver: nginx\r\ncache-control: no-cache, private\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\naccess-control-allow-origin: https://okcappro.com\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: lang\r\naccess-control-max-age: 0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":600,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-21T00:29:48.592548Z","times_seen":16594319,"resource_available":true,"data":null}},"time_used":786,"timings":{"blocked":-1,"dns":30,"connect":170,"send":0,"wait":242,"receive":0,"ssl":344},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.okdstyz.com/api/app/indexList","fqdn":"api.okdstyz.com","domain":"okdstyz.com","tld":"com"},"ip":{"addr":"34.223.104.36","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://okcappro.com/","date":"2026-06-17T16:42:10.325Z","timestamp":1781714530325,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"admin.okdstyz.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 13:20:58 GMT","end":"Sun, 09 Aug 2026 13:20:57 GMT"},"fingerprint":{"sha1":"F8:DD:6E:EA:4E:B4:FA:CA:56:D3:E9:9A:31:43:44:48:D7:25:26:7F","sha256":"EE:27:56:E6:CF:DE:B8:95:34:64:22:9D:AA:1D:6E:D2:8B:7A:54:D8:58:DE:36:0E:9F:31:39:4F:35:FD:CC:FE"}}},"request":{"raw":"OPTIONS /api/app/indexList HTTP/1.1\r\nHost: api.okdstyz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: lang\r\nReferer: https://okcappro.com/\r\nOrigin: https://okcappro.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 \r\nserver: nginx\r\ncache-control: no-cache, private\r\ndate: Wed, 17 Jun 2026 16:42:10 GMT\r\naccess-control-allow-origin: https://okcappro.com\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: lang\r\naccess-control-max-age: 0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":600,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-21T00:29:48.592548Z","times_seen":16594319,"resource_available":true,"data":null}},"time_used":250,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}