{"report_id":"7fda8ec1-984a-4ec3-9c19-77c73f48f738","version":6,"status":"done","tags":[],"date":"2026-02-02T15:37:14Z","url":{"schema":"http","addr":"molts-allocations.xyz","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"172.67.166.15","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"molts-allocations.xyz/","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"title":"$MOLT Pre-sale","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"molts-allocations.xyz","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"172.67.166.15","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-09T15:37:14Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"molts-allocations.xyz","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-31","domain_rank":0,"first_seen":"2026-02-02T12:31:04.572185Z","last_seen":"2026-02-02T12:31:04.572185Z","alert_count":18,"request_count":18,"received_data":1648027,"sent_data":8559,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"molts-allocations.xyz/secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fdeeplab.desktop.umd.js%3Ft%3D29500776%26u%3DDFEVxoxB2OhOFVhvGDY5MjU2NDNjMjhjZmYzYzM0MDI3YTQ2Ob5-H5Ar3fQ2yWWhsg","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"96c2ff1601099c21c598c24e6f43c7c4","sha1":"d78fa2e81b7b5ccf287c793c5a9985caaa0f6162","sha256":"7fd19c564761e2c8c9b583cf30db810e313417c7d3572f637f8cedf4d2cc1e91","sha512":"d7df68372670f0173ac5dc3c54ee38f13b29703dde9f71ec74827b535735e99b2b253e07960d66d8c3230f13cf29f20aa0f083db014cee0710379ffab68932be","ssdeep":"6144:0ujB8gltIeTM5/S8g6zRh5gDVLU2GIt/KJAsJRrydM147u/lhDlEqH96lm:vhltVM/g61sNUWsSdG7R","tlshash":"1ed438c2821814f684eb0ab6d133a21fdb4cce9dc69f2d20bfe55c9553c87a292f655c","size":656642,"data":"","first_seen":"2026-01-02T13:08:19.247086Z","last_seen":"2026-06-08T13:18:27.600009Z","times_seen":2556,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/gridsome.plus.min.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b1070b961675253e6530490564d6e433","sha1":"2a003903ee23c703d9c18d0ef6acbf559ff2b9f3","sha256":"a8c3236a266a9972cbb3e5f34d9a99f3afd9eac142e48aca7b4802083b6bf98c","sha512":"dd3847fce922b4d068d2a7c3ef773154f8ec3013ad9c9289a4af61928d53e67a1c6cf5f34b97cbe5f9c04b7f84237cce5638cad3cadfb82e28f34a0fb3a34dfe","ssdeep":"6144:LW80XxuzZAOL0ZS/Rt27Jvm0lKT1iNdcU2RwHFzTLYkwlRbcYk3gaGbYk3gttj3Q:LGo1AOL0ZS/Rt27Jvm0lKTY3ctwHFzTy","tlshash":"2f744f9a0caa66cccedd90504538d89cb9c01c468bfd9f75e98ef39af48047154ef29e","size":370655,"data":"","first_seen":"2026-01-23T23:57:15.23163Z","last_seen":"2026-04-30T11:07:04.994304Z","times_seen":180,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/particles.min.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"00debcf6cf0789a19cee2278011afcd4","sha1":"8017f8b1869077db728573f1ca4684a00af69462","sha256":"faee7815a5fd27e938d1e01c8392b66332024908eb118048f608eee671371df6","sha512":"29e7f9b1cee07d369c47b4d929e95cad1b35e62a5fefeb7e9fb661ea628d25b996fbf4517425bd9f07cb9f8617d2cda73ba2afe58d8286a8086a4682e8f5b4f4","ssdeep":"384:NkfJtGvWjT6uYvqhCz8wSEHESxtVAFPQcYpeib+9rOEKXWd/:NC7T6uYvn8wRxwyryVOEKXW5","tlshash":"61a2934d23f73e77378ab2e09be9d122c774a4d1399b04b0f93c667da52549201ee7a0","size":23364,"data":"","first_seen":"2023-03-07T01:16:44Z","last_seen":"2026-06-08T22:35:33.735126Z","times_seen":5017,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"adb5accbf3eea1a9809fe2f31a17dc51","sha1":"b5dd2e8dd5de9825a940e9b3cac200a1a3b022ac","sha256":"74f41e9217fdfb6538bad20759a5185689b15ad82280de27abe2dfc2b3c034b0","sha512":"01774b850246e42054968343c0726b2f1d81c0542a03f7cf26952862207dc1517e01bd321ce411cbbb8342b1a41c6191076139e4d6ec8a058ae1753a4c36cbeb","ssdeep":"","tlshash":"dc71282ce9b41cb3104ab07908be5247b570955b0d2a3d35bd4c829c5f0ee6e61be7e9","size":3587,"data":"","first_seen":"2024-08-19T21:41:20.669609Z","last_seen":"2026-05-06T23:47:35.269243Z","times_seen":366,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/cdn-cgi/challenge-platform/h/b/scripts/jsd/de9364586261/main.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"07e9d6b2107b59eb3e5788efa853cf96","sha1":"abf31fa23202c9a1184f80f5077868f602b67200","sha256":"1de2d25e6d578f35e7bf25547ee9b8f936ea7ff5f6db7ad23c358636562598ac","sha512":"24a6fd8be43df5c2a681279cc8a5569460b3cc4efa6ee669c02cc5678da90212a19a2ef61581c179d56fd46ff3849a3347694bf02ea1bb48f765f82e61e09286","ssdeep":"384:B0UYpQCK/JL6nDQszR64jjMhaQw+SvZYJWi5aSvAwC/6DS:eQ//Zy769SaWi5a0AwyGS","tlshash":"7f92c5d935d9f468c33228b045bb34cb6deaacc1302b2c458761dcb4bdf4749a4aad6d","size":19992,"data":"","first_seen":"2026-02-02T15:37:16.427845Z","last_seen":"2026-02-02T16:27:15.799115Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/snowflakes.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4a492afe47e2af6e5f5cc87512db9b62","sha1":"47e1342d2e705c3fd5c917ac47d6c4ca6677ede2","sha256":"d63054d0d07b0e61e0f1e5a3ea8670fbe0f2eae377913603a043f03d1cb3252c","sha512":"4c14d1e90c11f74d16c28834f2ce68ee4acaee657f5d4bb7e7dc13def8018a5e540913481f757adb6d45187a306db0e7a4fd1a26f7dfa01253aa9f19053c56f9","ssdeep":"","tlshash":"08510d4860a23828157f631d7ad2988ce5302027be014d7ebeae42635f71c4cdc98dfd","size":2457,"data":"","first_seen":"2025-08-31T03:13:37.754782Z","last_seen":"2026-05-01T15:06:22.864567Z","times_seen":342,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"68901382a907d096d9735743dd0b7a77","sha1":"01369302ed4ac728de3e7bdac9e7cb43004823f1","sha256":"4deb0e1c723fbc566f043ecb8c4b9227de7f4337bcd78b08f75dd687e0f3a344","sha512":"241fa15edacd0d6d49e29d2e74740da2e36bc231c681522ae527e2504332c663bc5a18c98fc4b9bc767d1df946a70e9b7eb7ade4e6a9bac93202e0f5add22679","ssdeep":"6144:POVbzsn7QOL0ZS/7t27Jv80JKrFg7zgIM/t8xFzTLYkwlRbcYk3gaGbYk3gttj3F:PO67QOL0ZS/7t27Jv80JKrOPgJF8xFzz","tlshash":"f9745f9a0caa66ccceddd0505938d8a8b9c01c468bbd5f75e88ef395f88047164ef2dd","size":364114,"data":"","first_seen":"2026-01-23T23:57:15.258715Z","last_seen":"2026-04-30T11:07:04.997693Z","times_seen":167,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/index_1.html","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ac4786192a3916566ee22c5fc6ad0a9e","sha1":"1ec501d88894554b12177a24ce0d2fabfd718d7a","sha256":"90c19ed8f3fde66963f3bbecab7a6aa3b587baf67e2cdddfd99642d615873e4e","sha512":"26f003352039e1794a65f64ce5a3c933abd3e371dade96d76d891e2babc125a0b562550542e36a5cf120c308b84093f4c5a8f977363c045f0b7233e556b0e8e1","ssdeep":"","tlshash":"13d02bae48a2892456c6004e21fec364351161c85967628055d9cc19d904d578551d56","size":263,"data":"","first_seen":"2025-08-07T19:45:13.889869Z","last_seen":"2026-05-01T15:06:22.86674Z","times_seen":211,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/main.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1f216e5143a1d3a59abf6d0141053981","sha1":"260102aa3f4f88cd051e9d5ea84ffde2538fcc44","sha256":"2df1d83244ca5ef0c0e749d6854927d7317de9b4735ea08d2ba06e1c836dfdaf","sha512":"a8f43481669d4b6fc0deafca36801a539dca1f992f2d75a93f2cb59e6743051c8d9bc30283dce8039a6a4cd2e69a43b538e7c08ea898fe21ae75259e596d5ef8","ssdeep":"192:UjT5pwq3bv9M6b8/888vdB3uacRu7boDVvQPkfNVb:UjT5pT3bv9M6b8iFB7Mhv2cNVb","tlshash":"c4f1e8da7f82b54202726db7108f6ce3a09d9f6259204c5be160c4d8bb37344e0eeed6","size":7922,"data":"","first_seen":"2025-09-06T12:15:29.241549Z","last_seen":"2026-05-01T15:06:22.861257Z","times_seen":201,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"molts-allocations.xyz/endless.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /endless.js HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:50 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=75Pj%2F3ogQiqstlQ2vNAUopZOo%2FeSOjBRblW5Jk5rBYUb6pTklkYnWrIaQBENztY7i%2BwCSnmJz98xzY9aOzlSvL14ChLcVmE8bFJCn4ET9kPz%2FMY%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9c7ac441cd0bb521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T23:17:23.623528Z","times_seen":16252840,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/main.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://molts-allocations.xyz/index_1.html","date":"2026-02-02T15:36:53.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /main.js HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/index_1.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:53 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:49 GMT\r\netag: W/\"697e2ab5-1ef2\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 11168\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Vud7V775GekOPmZW%2FA0zZ4l10pSwcShI1HHYUfHLyNa41QHeKWlJ4b7fEgX43nFnKOz69vq6ISA%2BnjN9%2FMiAKOhI2vBKR8e9MODMPaSI57gB52g%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac446ba39b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7922,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (7922), with no line terminators","md5":"1f216e5143a1d3a59abf6d0141053981","sha1":"260102aa3f4f88cd051e9d5ea84ffde2538fcc44","sha256":"2df1d83244ca5ef0c0e749d6854927d7317de9b4735ea08d2ba06e1c836dfdaf","sha512":"a8f43481669d4b6fc0deafca36801a539dca1f992f2d75a93f2cb59e6743051c8d9bc30283dce8039a6a4cd2e69a43b538e7c08ea898fe21ae75259e596d5ef8","ssdeep":"192:UjT5pwq3bv9M6b8/888vdB3uacRu7boDVvQPkfNVb:UjT5pT3bv9M6b8iFB7Mhv2cNVb","tlshash":"c4f1e8da7f82b54202726db7108f6ce3a09d9f6259204c5be160c4d8bb37344e0eeed6","first_seen":"2025-09-06T12:15:29.241549Z","last_seen":"2026-05-01T15:06:22.861257Z","times_seen":201,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/snowflakes.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /snowflakes.js HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:49 GMT\r\netag: W/\"697e2ab5-999\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UDVQIaWkR5jzwE2Bj35399e2x2zk3TuK23XAeavjQFF62739LX%2F7PXzshxo%2B9y7T0jmhlHHH%2FDDrETRELo7%2BIoDNTGeG%2FOXPrpJ0M2DsH4bGhg0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac441cd09b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2457,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"4a492afe47e2af6e5f5cc87512db9b62","sha1":"47e1342d2e705c3fd5c917ac47d6c4ca6677ede2","sha256":"d63054d0d07b0e61e0f1e5a3ea8670fbe0f2eae377913603a043f03d1cb3252c","sha512":"4c14d1e90c11f74d16c28834f2ce68ee4acaee657f5d4bb7e7dc13def8018a5e540913481f757adb6d45187a306db0e7a4fd1a26f7dfa01253aa9f19053c56f9","ssdeep":"","tlshash":"08510d4860a23828157f631d7ad2988ce5302027be014d7ebeae42635f71c4cdc98dfd","first_seen":"2025-08-31T03:13:37.754782Z","last_seen":"2026-05-01T15:06:22.864567Z","times_seen":342,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/logo.jpg","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /logo.jpg HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 61678\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:49 GMT\r\netag: \"697e2ab5-f0ee\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RLtK8eyd2ezFEOK5pIby2w8vH8dqkAhAQfqhXFhD6TIgNZDtGiiq5dizo%2BQSbokOybQAhjWje7d3QwqAk2p4c5M8oNAnl4kU2VSwKcWitSJoGm0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac441cd0eb521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":61678,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.3], baseline, precision 8, 400x400, components 3","md5":"c1cda9a48911b7ca593efac5ce242261","sha1":"ec9afa9503188fbb45a5baf46bdd92fb6aba0b5e","sha256":"4e0a9a41191b4744d73bc98574a054b85700111dadc8bbd947c48449b5850e44","sha512":"c76fb74ad53881b197ee687afd4ce7dc88f58c7b98a10ff5e618126902faf652e6c4dcf38493ce4ee0a86b00287e0d3339ebd4fc4cdd1a59107a48728a6e6d56","ssdeep":"1536:fpQprEAruHBhLpf4eeriLRCJCMlJs8caj2gwmAbRv3:2FDiHHLmedRCJCMTs8caqgwmAJ3","tlshash":"4753021f8f480259cb872374dea41ae1c05a9778d3ca14001437de62d99e21e7d9d77f","first_seen":"2026-02-02T12:29:11.446099Z","last_seen":"2026-02-02T16:47:23.512427Z","times_seen":4,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/f9fa0444b908def7e2cacce9c162c39a60167a27.svg","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /f9fa0444b908def7e2cacce9c162c39a60167a27.svg HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:50 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=na1iVBzL0f%2BhRenpVRos%2Bkuu1BdWK5mme%2FNTGmvaNjDUs5ZT5XRdrVQTZidOpV5bGu73MfvRtTAZflkXLmtNGaPn68Ug5NrlB0XYPnaY3d5PYSI%3D\"}]}\r\netag: W/\"697e2ab6-1a6\"\r\ncontent-encoding: br\r\ncf-ray: 9c7ac441dd12b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":422,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9e47aa80842b4d43a41898ac56baa984","sha1":"f9fa0444b908def7e2cacce9c162c39a60167a27","sha256":"e94f4ec3d5f854f7281c9c36eeff5313fe0b739a16c7f2b6336eea87f1c013d3","sha512":"be8707bd09706a2691cd3f855f1fdd9f5bc3c4b49c87c876b7da2dc97b611ef52ced2b5290afdc1bd9efd378e42d60daf38deca85f0c955a228dbb2f27daedd1","ssdeep":"","tlshash":"6ee02395523ed45d6403d94dfe2934d15856b1e9b3084ff9e354533c9cd09ff3441164","first_seen":"2023-06-14T18:42:25Z","last_seen":"2026-06-02T16:59:59.322744Z","times_seen":357,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/119246100adcd76322fde730b9f8859e.txt","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:53.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /119246100adcd76322fde730b9f8859e.txt HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:53 GMT\r\ncontent-type: text/plain\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:49 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RmtqO3Txl7go6S1FLWZ6RsFJvMeufXr70T0T8Ez5uX2iGYnxjxRv7Cpi9QBQD4iC8dFohbPlOJPbPB4xa0yviMVyhtiN8x3aEN6o8hvJ%2BQtqlMY%3D\"}]}\r\netag: W/\"697e2ab5-0\"\r\ncontent-encoding: br\r\ncf-ray: 9c7ac4460991b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T23:17:23.623528Z","times_seen":16252840,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/logo.jpg","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:53.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /logo.jpg HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 61678\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:49 GMT\r\netag: \"697e2ab5-f0ee\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 11170\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Se%2Bu6bTZFWG94m9UYxfkcvdFiUF6A6NjjF8VM%2F8dtV0odYDL9IVpVH3NK32HfPpL4MGVsf39W1NpYP0olr%2FvFCg2PdbJUc1Yhp0pia%2FfG4FS4lM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac44629a5b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":61678,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.3], baseline, precision 8, 400x400, components 3","md5":"c1cda9a48911b7ca593efac5ce242261","sha1":"ec9afa9503188fbb45a5baf46bdd92fb6aba0b5e","sha256":"4e0a9a41191b4744d73bc98574a054b85700111dadc8bbd947c48449b5850e44","sha512":"c76fb74ad53881b197ee687afd4ce7dc88f58c7b98a10ff5e618126902faf652e6c4dcf38493ce4ee0a86b00287e0d3339ebd4fc4cdd1a59107a48728a6e6d56","ssdeep":"1536:fpQprEAruHBhLpf4eeriLRCJCMlJs8caj2gwmAbRv3:2FDiHHLmedRCJCMTs8caqgwmAJ3","tlshash":"4753021f8f480259cb872374dea41ae1c05a9778d3ca14001437de62d99e21e7d9d77f","first_seen":"2026-02-02T12:29:11.446099Z","last_seen":"2026-02-02T16:47:23.512427Z","times_seen":4,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fdeeplab.desktop.umd.js%3Ft%3D29500776%26u%3DDFEVxoxB2OhOFVhvGDY5MjU2NDNjMjhjZmYzYzM0MDI3YTQ2Ob5-H5Ar3fQ2yWWhsg","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:53.842Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fdeeplab.desktop.umd.js%3Ft%3D29500776%26u%3DDFEVxoxB2OhOFVhvGDY5MjU2NDNjMjhjZmYzYzM0MDI3YTQ2Ob5-H5Ar3fQ2yWWhsg HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:54 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: cloudflare\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\nvary: Accept-Encoding\r\ncache-control: max-age=2592000, must-revalidate\r\netag: W/\"a0502-14+i6Bt7XM8ofHk8WpmFyqoPYWI\"\r\nexpires: 0\r\npragma: no-cache\r\ncontent-disposition: attachment; filename=deeplab.desktop.umd.js\r\ncdn-proxyver: 1.43\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 02/02/2026 15:36:54\r\ncdn-edgestorageid: 1056\r\ncdn-requestid: 3d3e2fc0706909b4d194086dce6dde43\r\ncdn-cache: MISS\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MoUCjtZLtm%2FItsQPYVsuqKEoWEBUl4ivnoQxsZSq3sebkdmxJyriLvq%2Be6GQ60bYnSdS6MEjTev7N8k5ybJxjkGHcZunRiDz9NCcV4gN%2BL1mZ1o%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac4488c64b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":656642,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"96c2ff1601099c21c598c24e6f43c7c4","sha1":"d78fa2e81b7b5ccf287c793c5a9985caaa0f6162","sha256":"7fd19c564761e2c8c9b583cf30db810e313417c7d3572f637f8cedf4d2cc1e91","sha512":"d7df68372670f0173ac5dc3c54ee38f13b29703dde9f71ec74827b535735e99b2b253e07960d66d8c3230f13cf29f20aa0f083db014cee0710379ffab68932be","ssdeep":"6144:0ujB8gltIeTM5/S8g6zRh5gDVLU2GIt/KJAsJRrydM147u/lhDlEqH96lm:vhltVM/g61sNUWsSdG7R","tlshash":"1ed438c2821814f684eb0ab6d133a21fdb4cce9dc69f2d20bfe55c9553c87a292f655c","first_seen":"2026-01-02T13:08:19.247086Z","last_seen":"2026-06-08T13:18:27.600009Z","times_seen":2556,"resource_available":true,"data":null}},"time_used":1018,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":833,"receive":185,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz//secureproxy?s=%2Fjmpd%2F","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:55.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"POST //secureproxy?s=%2Fjmpd%2F HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://molts-allocations.xyz/\r\ncontent-type: application/json\r\nContent-Length: 2207\r\nOrigin: https://molts-allocations.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2207,"data":"{\"route\":\"8XUwkBv9vhPYfVpD1fxb7EC65sUXJdqr\",\"payload\":\"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\"}"}},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:56 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: no-cache\r\netag: W/\"e6-l3dWs7PfU7DnzzSwSTUTaP3Rvr4\"\r\nx-ratelimit-limit: 10000\r\nx-ratelimit-remaining: 9999\r\nx-ratelimit-reset: 1770046676129\r\ncdn-proxyver: 1.43\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 02/02/2026 15:36:56\r\ncdn-edgestorageid: 883\r\ncdn-requestid: 1b91dd468d63aeded79a14054ee92a28\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c7yjjuoqn39gy00ner3Er30l1zNvtbA80GT6R0YIzhawf3Kte4zMB2EFWj%2FvIhWwBmIKDt8ul5yObjIYsUgHXKHIEZfUIi58tBIBDypDa4Ry9CA%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac455285fb521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":230,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f162688768df387c6d9aa5ad1784cc69","sha1":"977756b3b3df53b0e7cf34b049351368fdd1bebe","sha256":"0cff6018b6be267b3f0f9a6a67b28ed019a4079c0e576170562c4114afdb82c9","sha512":"531c2d8403017c9b13364fc4c0bfda97c2ef3ce96f68c00be51aefab5cb22cfc4e10f2670857780c620dc03682f4eeadadcb2ab9e7ea1cd8b1d56f0039f2f5fe","ssdeep":"","tlshash":"31d09796b2b2d31e3a6c192152c208caa922bc6eca088581c7202c00848fcc02041acf","first_seen":"2026-02-02T15:37:16.425516Z","last_seen":"2026-02-02T15:37:16.425516Z","times_seen":1,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":536,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/f0438febff768476c4bd646204034239a5fc20d9.svg","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.778Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /f0438febff768476c4bd646204034239a5fc20d9.svg HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:49 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q6eItEtHeCuXfKlkdsn7L6XVNGclXH4BXbchRzxKXSdxKZLU3vbOu2WHsko%2FLOc1K0oTgl4cCb9H3z6Cedu3AaN%2F2L4b2w%2BY1kxXMD%2BT45baTco%3D\"}]}\r\netag: W/\"697e2ab5-286\"\r\ncontent-encoding: br\r\ncf-ray: 9c7ac441dd11b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":646,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bcb0acca5ca36852531960b5d63a86be","sha1":"f0438febff768476c4bd646204034239a5fc20d9","sha256":"3bd151eb77e3cc456935eb7decbc0984759fb4d00598088fef0e3632968140ff","sha512":"757a3b9e03791be66c6a21e54115ab9a1d29f41eb23809f8512ba13d899960b3eb91bbf4b2a4779329469199f4f0b5e3571aaa24bae2b1cbc3d03da540533d9a","ssdeep":"","tlshash":"7cf07bd366684368cd06c0cfb30fa810564770c9e25a5e9b924c0b2b958fbcf34425d8","first_seen":"2023-11-14T00:56:20Z","last_seen":"2026-06-02T16:59:59.330573Z","times_seen":358,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/e56b52e48bc2824b9833e6b5e5470e1c6e04451f.svg","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.780Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /e56b52e48bc2824b9833e6b5e5470e1c6e04451f.svg HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:50 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dV02iwRgyjdgwIFpdRdSSfmnPvu%2BPMGdDqvG5ffFgGKX32OJNHWwtcUF6LyNr%2F6y2KPJPrujkBIhDQWXRCOFuTFbtj7%2BV%2FaFfRFc0KhKxdTAxRo%3D\"}]}\r\netag: W/\"697e2ab6-3dc51\"\r\ncontent-encoding: br\r\ncf-ray: 9c7ac441dd14b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":253009,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6af765d49f03a1d726a49e72ab2df3e1","sha1":"e56b52e48bc2824b9833e6b5e5470e1c6e04451f","sha256":"5785e2a1df6aee7333aed78b1c3163b915a6c88a26f9cdd42329c5082df4e79c","sha512":"b39a46f586125452b17d1289c554e73f746f5762b0e65fdc1a94420142da058d424a427246452088782f7dbcd5f8cb876f4606d9c741cbba0694b4db722365af","ssdeep":"768:pf+qNBs8IWBD9WW1m/ztiNEtoTdacD7WGZAdfFuulqGW3R4HjWmoN7CI1g8xOME5:u8IWBD9WGm/ztiNS","tlshash":"e1346c38c068f4d85229563da3a4dedb2403a75b6728ea4d4748a127fe0bc705a3d77f","first_seen":"2025-08-07T19:45:13.876916Z","last_seen":"2026-05-01T15:06:22.8605Z","times_seen":213,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/secureproxy?e=ping_proxy","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:53.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /secureproxy?e=ping_proxy HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://molts-allocations.xyz/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:53 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nlast-modified: Mon, 02 Feb 2026 12:30:43 GMT\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4Uw0fZ5wN%2B2tBBpv1trYpCVmZMozcsyaMYIQC5pw1Hlbf986%2FC87nz4n9Dk6oGEwyTspl2Ab00VU5WImYRdVrPE835OA6EvdVqefmzln53jCwzs%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9c7ac4435eeeb521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"6fdb087aa3fbfbcb8287a593a0919e61","sha1":"0e514a0662bcb69dc863953d1ce26e3d40e81a87","sha256":"9795c5ff8937f23526ccb207a5684c1fc94a7854e19c021b39d944e51f5baef2","sha512":"be5457d14c930b51b47ab152850c1ceaafe6ef88c8671b48164abbc83410b0c07a1e178540f6cdeac5f2672cadb1d1cbbb3434b3e39bc2c50c4646a2bae57437","ssdeep":"","tlshash":"fe300000300000000000000c0000000000000000000000000000000000300000000000","first_seen":"2023-04-12T09:14:15Z","last_seen":"2026-06-08T21:23:45.649253Z","times_seen":8785,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/cdn-cgi/challenge-platform/h/b/scripts/jsd/de9364586261/main.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://molts-allocations.xyz/index_1.html","date":"2026-02-02T15:36:53.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/de9364586261/main.js HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/index_1.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:53 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncontent-encoding: br\r\ncache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public\r\nx-content-type-options: nosniff\r\npriority: u=3,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=1wtgSMLYQWI4%2FicYCIFmREdHCWYelG5ruDApsv2H%2F92iy%2F5A6PaKHi4SjMHcl1CrTekQCNFokjoYWrCSIPdcxaz180%2FH4SDogqVwI1BVAffVydqELdviJZkZr1twFrWw7M77ZkHM3AM%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 9c7ac4476aebb521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1756\u0026min_rtt=1069\u0026rtt_var=476\u0026sent=300\u0026recv=36\u0026lost=0\u0026retrans=0\u0026sent_bytes=326731\u0026recv_bytes=5967\u0026delivery_rate=34798172\u0026cwnd=156000\u0026unsent_bytes=0\u0026cid=70e3727541a3701c\u0026ts=1088\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19992,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (19992), with no line terminators","md5":"07e9d6b2107b59eb3e5788efa853cf96","sha1":"abf31fa23202c9a1184f80f5077868f602b67200","sha256":"1de2d25e6d578f35e7bf25547ee9b8f936ea7ff5f6db7ad23c358636562598ac","sha512":"24a6fd8be43df5c2a681279cc8a5569460b3cc4efa6ee669c02cc5678da90212a19a2ef61581c179d56fd46ff3849a3347694bf02ea1bb48f765f82e61e09286","ssdeep":"384:B0UYpQCK/JL6nDQszR64jjMhaQw+SvZYJWi5aSvAwC/6DS:eQ//Zy769SaWi5a0AwyGS","tlshash":"7f92c5d935d9f468c33228b045bb34cb6deaacc1302b2c458761dcb4bdf4749a4aad6d","first_seen":"2026-02-02T15:37:16.427845Z","last_seen":"2026-02-02T16:27:15.799115Z","times_seen":4,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-02T15:36:52.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:50 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uDK7HgFtIjtV0psxJ9rGCBKe5tg7YpOdkl6yGxGxL3N%2Fi8NzY3j%2BN4kMjG7fuVcWPEkCtjySkJxnXPZC%2FBZVT3%2BRP8Eq5PO2ColJBW6TwmREGpQ%3D\"}]}\r\nage: 11170\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9c7ac4409da3568e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":168972,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (26105)","md5":"352c76de750c1682b3f0cb013fff9722","sha1":"5ce81db7446369d2ec3d9816f6bfaf2b12ac7fc8","sha256":"cf52a3772b7474e8edf10f341e194fe475a2067e88656582c2bb7ad0134512bc","sha512":"31a1acf884b29dd03f27458f19df34bd9633edffd5648f267e7160e87f0acd25c793d40bcd12ef7c9e34ea9a936639f11d752187911b7414cb501c61a3790b43","ssdeep":"1536:iYmd2naB9ojBRvb7zj9VcmyxvxE4ZThMcR239kPJdM9Nt3ZrPLaseIOdzuDO2:GqafGPo/1MT39kBMt35PL6g","tlshash":"42f3c6155c1ca72f3333486feb82a43d6a8160cee922a5cf75deb0d8cf8752a5671d90","first_seen":"2026-02-02T12:29:11.43813Z","last_seen":"2026-02-02T16:47:23.506184Z","times_seen":4,"resource_available":false,"data":null}},"time_used":223,"timings":{"blocked":101,"dns":83,"connect":1,"send":0,"wait":21,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/css2.css","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /css2.css HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:50 GMT\r\netag: W/\"697e2ab6-756\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tWMQ7hlDaMEKdaQjsRbzfVYWDu5pXII57h0GpZh1YBeB93RktRlWiY1dl8tttq4irRB2HO%2FSmu47XRwWYu6ok1BXRXJRxm37vJMy2LkK3pQ2vE0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac441cd0db521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1878,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"9062a655afcc97c2d427b10f735a8aea","sha1":"b22103ec1665985589e0be5b9f5e9686461dc12f","sha256":"66489ff17cd8cbe69f7dc79d660975d2910614eda742803f69181a0ecf3bc4bd","sha512":"ab721d03c97484fcb5cef9844c74968d7bb643c1ebee2eea3a2e8129f9366306f24d0b42e6889213aa56bd28047ad42645cbc4457fc3dc681dd8e7df4d4265eb","ssdeep":"","tlshash":"89419b414c3a5104a3d32ce263ce7d31cd4ef244b045ca34bffe1859ac4ad6563a4b5c","first_seen":"2025-08-07T19:45:13.885497Z","last_seen":"2026-05-01T15:06:22.858559Z","times_seen":359,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/particles.min.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.776Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /particles.min.js HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:49 GMT\r\netag: W/\"697e2ab5-5b44\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yFenX6fSkSMyKgf%2BLAdn2%2BrRwRD2puLuFYCOmkjSMGdjaFJVfErbqStP7vnWELfanSupdDM4qaNxn2VsSmpaFspLBitpqTUGPkpmSD722cwqP9U%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac441cd10b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23364,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (23002)","md5":"00debcf6cf0789a19cee2278011afcd4","sha1":"8017f8b1869077db728573f1ca4684a00af69462","sha256":"faee7815a5fd27e938d1e01c8392b66332024908eb118048f608eee671371df6","sha512":"29e7f9b1cee07d369c47b4d929e95cad1b35e62a5fefeb7e9fb661ea628d25b996fbf4517425bd9f07cb9f8617d2cda73ba2afe58d8286a8086a4682e8f5b4f4","ssdeep":"384:NkfJtGvWjT6uYvqhCz8wSEHESxtVAFPQcYpeib+9rOEKXWd/:NC7T6uYvn8wRxwyryVOEKXW5","tlshash":"61a2934d23f73e77378ab2e09be9d122c774a4d1399b04b0f93c667da52549201ee7a0","first_seen":"2023-03-07T01:16:44Z","last_seen":"2026-06-08T22:35:33.735126Z","times_seen":5017,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/index_1.html","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:53.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /index_1.html HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:53 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:49 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nage: 11168\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ducmx5WpcsV6A65F8%2FSztURYYVqdCxOsD9tIBpqL4f1LWm%2BnEUUoUSWuT1%2BDSsVBPxn5XbNjOjUp09ILKXGIxyunTfdFKLWnWxp8%2F6MnecEFcOQ%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9c7ac446098eb521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":408,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (408), with no line terminators","md5":"8a8b7e62710d21e30e70634977369ada","sha1":"9a74072f39167533862cfaca554ff48e4f860203","sha256":"9aaad00c216a7686ef1ce601884c0b298a1ee6d96237c62e4bb38cb34ccda5a2","sha512":"03f99764a5ff6c7e3c70def3bf4b26fdec7be2426b3166465c49f935d533c4a6501c6b331c330e0beb627f97b5a422b0150dea1ea8f897a48937fff5773e5600","ssdeep":"","tlshash":"71e0f1bf8c62c82959c1098d33ffd38c2400e4987832e54064e9dc15cd08fa7c803d86","first_seen":"2025-08-07T19:45:13.865763Z","last_seen":"2026-03-18T15:57:30.946795Z","times_seen":210,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"molts-allocations.xyz/gridsome.plus.min.js","fqdn":"molts-allocations.xyz","domain":"molts-allocations.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://molts-allocations.xyz/","date":"2026-02-02T15:36:52.770Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"molts-allocations.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 31 Jan 2026 15:50:16 GMT","end":"Fri, 01 May 2026 16:47:46 GMT"},"fingerprint":{"sha1":"F8:6B:FC:29:80:92:D4:DE:D4:3F:ED:C4:8A:3D:F2:44:02:EF:7B:F5","sha256":"35:BC:F1:C3:C6:A7:E1:A2:0E:DA:35:14:48:1E:AF:C7:64:19:AE:82:4F:C7:9B:69:E2:A1:AA:4A:2B:12:B6:F7"}}},"request":{"raw":"GET /gridsome.plus.min.js HTTP/1.1\r\nHost: molts-allocations.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://molts-allocations.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 02 Feb 2026 15:36:52 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 31 Jan 2026 16:15:50 GMT\r\netag: W/\"697e2ab6-5a7df\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 11169\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uigI1RMaO1UTeW2rrd7ZrDzDi4JeFHs9zhxnA2ijrS0MNIFawukZ%2Fe4vwUH2yn22AgyZzGlcGflHdl3e7qeAAb4SYeUQzwrhnMerR9WcUkAtANU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c7ac441cd08b521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":370655,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65159)","md5":"b1070b961675253e6530490564d6e433","sha1":"2a003903ee23c703d9c18d0ef6acbf559ff2b9f3","sha256":"a8c3236a266a9972cbb3e5f34d9a99f3afd9eac142e48aca7b4802083b6bf98c","sha512":"dd3847fce922b4d068d2a7c3ef773154f8ec3013ad9c9289a4af61928d53e67a1c6cf5f34b97cbe5f9c04b7f84237cce5638cad3cadfb82e28f34a0fb3a34dfe","ssdeep":"6144:LW80XxuzZAOL0ZS/Rt27Jvm0lKT1iNdcU2RwHFzTLYkwlRbcYk3gaGbYk3gttj3Q:LGo1AOL0ZS/Rt27Jvm0lKTY3ctwHFzTy","tlshash":"2f744f9a0caa66cccedd90504538d89cb9c01c468bfd9f75e98ef39af48047154ef29e","first_seen":"2026-01-23T23:57:15.23163Z","last_seen":"2026-04-30T11:07:04.994304Z","times_seen":180,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-02","alert":"Sinkholed","trigger":"molts-allocations.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}