{"report_id":"825fd606-f11b-4380-8cbc-3987f1e5a2af","version":6,"status":"done","tags":[],"date":"2026-01-10T06:17:31Z","url":{"schema":"http","addr":"klplayboy.com","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"139.162.181.76","port":0,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"klplayboy.com/_s","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"title":"klplayboy.com","dom":{"size":22304,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"ecd06fb5e1df00a0d77ba4d18808e8bb","sha1":"b37054a3954441f8906551c595d7ca45f5f7985e","sha256":"6733c792dd2c19dfceb342270c33d0779c173850006910b47c307b14dcecdb5d","sha512":"0ea3db2440a257371a9e4e7d5f2eea615fefc155efd1eec87caba274eaf2f7661421a4da758a655756f914486487fca68b8b4eba20e1f0abf5a2cf9f8f842251","ssdeep":"384:0pGeI2QYM9McNeUOAcG1KXykaIGqmuqCBfAU:0po2QRleUOAHDQ","tlshash":"12a2b77a65f310266413a07977e7a60a3774e803d406de19fd8c43c45fc6ea99ca37e8","dom_hash":"domhash6f23c217c0c32fe4273b0de8db19e309","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"klplayboy.com","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"139.162.181.76","port":0,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-14T06:17:31Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"klplayboy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"klplayboy.com","ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"domain_registered":"2016-11-12","domain_rank":0,"first_seen":"2014-12-12T06:18:43Z","last_seen":"2025-08-16T22:20:48.849471Z","alert_count":5,"request_count":5,"received_data":65770,"sent_data":2412,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty:1.27.1.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-01-04T22:18:41.67311Z","alert_count":0,"request_count":1,"received_data":435184,"sent_data":434,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"klplayboy.com/_static/doais8fj34.js?nonce=3575","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"1cceae149f74ec97cc95da4d6035db1e","sha1":"b309ab93f61d126efa47d2bba6a2db45d2beef8e","sha256":"9f7aa6c8bb78dbe852d42707df6c841ede8bd135ed3958215004505493f59756","sha512":"a34258b7eda1fa1419682fd98a40d8e2fc291d25d8f13411ce7fe731c66d49c1240168a413b09d6fbb81f87a94873d8e17cfbce528e8e8311af29d8301775cd0","ssdeep":"384:4qK6nuPD+BLPlouf8gVxV0cG80Bg5eyXOJAFN/h6lmAmAPVe4mOvmLYEq1Mw:3nuDWPyLMiNS5w","tlshash":"47f294191ab3113558b350ae6b5b72063222d0032909fe59bd5cc348afc9ebced73bd9","size":37208,"data":"","first_seen":"2025-09-30T22:13:10.604809Z","last_seen":"2026-02-06T20:09:56.257186Z","times_seen":6061,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"klplayboy.com/_s","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"a754da09acf2ac8759c42efb66d10e98","sha1":"0eb72c594fd07ad9cfba0d2aa7a4da8de466eb71","sha256":"3d4e9d484c5cac2f97058bcf68d4b26ea9a0134e1c6b8122efdb5d0086dcd9bf","sha512":"8848d1bf3e7a95779a98cbaf2ade04cd19d46176306441cb63f40ce012be39f3ce382e54a6da10f970f3dd23fe3f738fc2e4a0f8bc86ba493544d1eddb520c7a","ssdeep":"","tlshash":"fcc08c88220b4c7052a72f814bbfa201b00a321394d099212a0ab3084f30e03d744858","size":165,"data":"","first_seen":"2026-01-08T06:05:14.077043Z","last_seen":"2026-01-26T18:02:41.521095Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"klplayboy.com/_s","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"47b392ebe8c7045a4a58d9ea46200356","sha1":"7ccfbf27a8323ee8d2edf34e6431ac34256658ef","sha256":"47589f6ec7486f60e0aa5bd782461ac88c7004341db8aa75d5e9ef216c7de3a8","sha512":"1b249fb246a0bf7bb3efb223bfd8c265fcc4f07202c15bc67b3f2508dc1e753d9752264f0fbbfdc68620c67fb847a0e01a321e8c2f86bc81ba5aacff6478aaff","ssdeep":"96:5qsgXE9wm7r/vpQCPbo3OvArj2/FnMsFlAeyKtetsD:5q7X4wgr/vpbPs3ON5MsMeyK1D","tlshash":"48d1023e26f7102184a330ba5f5b95187631b127a049dd1cfc1c83dc6fd5da95db2ba8","size":6219,"data":"","first_seen":"2026-01-08T06:05:14.077952Z","last_seen":"2026-01-26T18:02:41.521671Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-0X0X4TCRGS","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a70bde3044d2861e2b12f85c5a649555","sha1":"eed3b5c8fbdf5900a53bf14c410f9f8c79ba8581","sha256":"e6373774e1505f05c9193a0e1677d03b841bf67df86ff9181c67b08a3480ec95","sha512":"050715d05be3dac0875bd540f85e7740c50cc5debbfc58f7d9afdc642806c760058cca273812283c317784337b07cb2210671a568fb723f0fccae719fdbf93ed","ssdeep":"6144:FKrVfsxxo6qWroAizhQkc1/po7YA+TkIzvovBQVnFRA:8BEqLAi1C7TkI0t","tlshash":"1c941ace73d670269396e078503f018ba57b29a2b45dc896f1c9cce02d74a9a4277f7c","size":434580,"data":"","first_seen":"2026-01-10T06:17:34.271336Z","last_seen":"2026-01-10T06:17:34.271336Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"klplayboy.com/","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-10T06:17:07.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"klplayboy.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Dec 2025 05:28:03 GMT","end":"Thu, 19 Mar 2026 05:28:02 GMT"},"fingerprint":{"sha1":"EF:3F:B0:29:0D:95:29:27:AE:63:61:02:79:AA:7E:65:76:4D:A1:58","sha256":"8E:A2:66:76:67:53:1B:E2:10:A7:81:47:96:1E:EA:4D:58:08:C3:3E:E6:B0:DA:7F:69:B7:0D:AF:3C:14:49:83"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: klplayboy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty/1.27.1.2\r\ndate: Sat, 10 Jan 2026 06:17:07 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty:1.27.1.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4190,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"7742a65e16382ba1ee0c46e4b47d98ac","sha1":"4487036ae17ce1c7b2203f36cc67e8cc4dadc525","sha256":"61d271a4286858e351db0d122c907cb311299b070579e2b4296d5c1d3a82bf34","sha512":"3abf2e8ff26575a0d44715f54495be3a3ad18b011f6d0fd147b99420f88cce20bec34c1cce9d844090b8e24fca493c5d17b2de0e3854d3ee5fac20ff8e3e8657","ssdeep":"96:/4Znb6EGo0QT7EAOc7uV1g/zDE14lZyxIW:/4Znb6EGo0QT7EAOcK0G43yxIW","tlshash":"48812e1559f3101a6553e03837eaa25a1a68ea1b930fdde83ecc4240cfc57a99dd3398","first_seen":"2026-01-10T06:17:34.266935Z","last_seen":"2026-01-10T06:17:34.266935Z","times_seen":1,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":87,"dns":29,"connect":25,"send":0,"wait":28,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"klplayboy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klplayboy.com/_static/doais8fj34.js?nonce=3575","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://klplayboy.com/","date":"2026-01-10T06:17:08.048Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"klplayboy.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Dec 2025 05:28:03 GMT","end":"Thu, 19 Mar 2026 05:28:02 GMT"},"fingerprint":{"sha1":"EF:3F:B0:29:0D:95:29:27:AE:63:61:02:79:AA:7E:65:76:4D:A1:58","sha256":"8E:A2:66:76:67:53:1B:E2:10:A7:81:47:96:1E:EA:4D:58:08:C3:3E:E6:B0:DA:7F:69:B7:0D:AF:3C:14:49:83"}}},"request":{"raw":"GET /_static/doais8fj34.js?nonce=3575 HTTP/1.1\r\nHost: klplayboy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klplayboy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty/1.27.1.2\r\ndate: Sat, 10 Jan 2026 06:17:08 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Sep 2025 20:00:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68dc36f9-9158\"\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty:1.27.1.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37208,"size_decoded":0,"mime_type":"application/javascript","magic":"C++ source, ASCII text","md5":"1cceae149f74ec97cc95da4d6035db1e","sha1":"b309ab93f61d126efa47d2bba6a2db45d2beef8e","sha256":"9f7aa6c8bb78dbe852d42707df6c841ede8bd135ed3958215004505493f59756","sha512":"a34258b7eda1fa1419682fd98a40d8e2fc291d25d8f13411ce7fe731c66d49c1240168a413b09d6fbb81f87a94873d8e17cfbce528e8e8311af29d8301775cd0","ssdeep":"384:4qK6nuPD+BLPlouf8gVxV0cG80Bg5eyXOJAFN/h6lmAmAPVe4mOvmLYEq1Mw:3nuDWPyLMiNS5w","tlshash":"47f294191ab3113558b350ae6b5b72063222d0032909fe59bd5cc348afc9ebced73bd9","first_seen":"2025-09-30T22:13:10.604809Z","last_seen":"2026-02-06T20:09:56.257186Z","times_seen":6061,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"klplayboy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klplayboy.com/apple-touch-icon.png","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://klplayboy.com/","date":"2026-01-10T06:17:08.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"klplayboy.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Dec 2025 05:28:03 GMT","end":"Thu, 19 Mar 2026 05:28:02 GMT"},"fingerprint":{"sha1":"EF:3F:B0:29:0D:95:29:27:AE:63:61:02:79:AA:7E:65:76:4D:A1:58","sha256":"8E:A2:66:76:67:53:1B:E2:10:A7:81:47:96:1E:EA:4D:58:08:C3:3E:E6:B0:DA:7F:69:B7:0D:AF:3C:14:49:83"}}},"request":{"raw":"GET /apple-touch-icon.png HTTP/1.1\r\nHost: klplayboy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klplayboy.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: openresty/1.27.1.2\r\ndate: Sat, 10 Jan 2026 06:17:08 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty:1.27.1.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":159,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"1620e905665c273e91a8cb2a00df1509","sha1":"e0ea169369ad349affad0f6d41987a73fea0280f","sha256":"5a41c6b1c3d5061adbd15744312c919ee4a639abc0572a2927b06838bec1a6ed","sha512":"e68b327c2831cbadcf332943242c8c800b82a888960465fbf394e2b790b71694dc99ad26dc35326e9bde0b322e1a835fff997b7656772edf4e1e261acd13cfda","ssdeep":"","tlshash":"32c02b6d2c137e0c86a330b636c37490c1878337f57e41114480805770cf1998ac33ab","first_seen":"2025-04-14T16:48:50.204909Z","last_seen":"2026-04-04T00:09:43.804636Z","times_seen":7980,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"klplayboy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klplayboy.com/_d","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://klplayboy.com/","date":"2026-01-10T06:17:08.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"klplayboy.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Dec 2025 05:28:03 GMT","end":"Thu, 19 Mar 2026 05:28:02 GMT"},"fingerprint":{"sha1":"EF:3F:B0:29:0D:95:29:27:AE:63:61:02:79:AA:7E:65:76:4D:A1:58","sha256":"8E:A2:66:76:67:53:1B:E2:10:A7:81:47:96:1E:EA:4D:58:08:C3:3E:E6:B0:DA:7F:69:B7:0D:AF:3C:14:49:83"}}},"request":{"raw":"POST /_d HTTP/1.1\r\nHost: klplayboy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://klplayboy.com/\r\nContent-Type: application/json\r\nContent-Length: 264\r\nOrigin: https://klplayboy.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":264,"data":"{\"referrer\":\"\",\"current_location\":\"https://klplayboy.com/\",\"redirect_count\":0,\"user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"window_info\":{\"href\":\"https://klplayboy.com/\",\"hostname\":\"klplayboy.com\",\"pathname\":\"/\"}}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty/1.27.1.2\r\ndate: Sat, 10 Jan 2026 06:17:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: session_id=ee24f195b20ba7b71f349e2038683eee; Max-Age=86400; Path=/; HttpOnly; SameSite=Lax\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty:1.27.1.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":579,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"29eb6e3a24314e743bc6d4ae619adcff","sha1":"efe15e04ba79df27ad859b7b48c939723b0b50ab","sha256":"e35c81af5e89f2e39cc8913c9a1e14001b619156a1dfc735b58c5e613c23eb1a","sha512":"fc2b9665faf977cee113bc7966370fd39f218f1bc1a710bf0b94a05b515617c2ff673cec370d6a6455e00650dbcd9def51e7d6609ef2f7e80ca2a007789eea46","ssdeep":"","tlshash":"e3f02010c030a8f42dd98364522e3a2b56e7c205598e9a9edaadcf129aef6ec030801c","first_seen":"2026-01-10T06:17:34.26951Z","last_seen":"2026-01-10T06:17:34.26951Z","times_seen":1,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":171,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"klplayboy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klplayboy.com/_s","fqdn":"klplayboy.com","domain":"klplayboy.com","tld":"com"},"ip":{"addr":"172.104.149.86","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-10T06:17:08.278Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"klplayboy.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Dec 2025 05:28:03 GMT","end":"Thu, 19 Mar 2026 05:28:02 GMT"},"fingerprint":{"sha1":"EF:3F:B0:29:0D:95:29:27:AE:63:61:02:79:AA:7E:65:76:4D:A1:58","sha256":"8E:A2:66:76:67:53:1B:E2:10:A7:81:47:96:1E:EA:4D:58:08:C3:3E:E6:B0:DA:7F:69:B7:0D:AF:3C:14:49:83"}}},"request":{"raw":"GET /_s HTTP/1.1\r\nHost: klplayboy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klplayboy.com/\r\nCookie: session_id=ee24f195b20ba7b71f349e2038683eee\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty/1.27.1.2\r\ndate: Sat, 10 Jan 2026 06:17:08 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.27.1.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":22187,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"69fee31efd456c3e4e4ef930e8ceda90","sha1":"7faf4e05628e7d2fd07220fa8d6c327b51109ca2","sha256":"ed66e90937813833021905949ca31f1f30b833cb0a20a3a3d8c47a1e1284c26f","sha512":"ecfe73ba43ac85791c5f9fa7ca85cbb77ce6fad7a7d7079a27b28378b8800448d3f0b918574879ff3312e2e4e00503516fe84945391d8bcb25ff340f77533857","ssdeep":"384:zpGeI2QYM9McNeUOAcG1KXyCY57WbDqCsOAU:zpo2QRleUOAHDK","tlshash":"aea2b86a65f31026545394b977e7a70a3774e803c40adf18fe9c43845fc6ea89ca37e8","first_seen":"2026-01-10T06:17:34.270462Z","last_seen":"2026-01-10T06:17:34.270462Z","times_seen":1,"resource_available":false,"data":null}},"time_used":399,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":399,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"klplayboy.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-0X0X4TCRGS","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://klplayboy.com/_s","date":"2026-01-10T06:17:08.726Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:49:40 GMT","end":"Wed, 25 Feb 2026 15:49:39 GMT"},"fingerprint":{"sha1":"A1:49:37:FE:E0:3E:26:88:A3:64:37:DC:04:D7:8D:D1:D3:F3:91:75","sha256":"BB:61:22:1A:6C:67:5D:C0:C8:A6:73:93:B9:53:82:98:95:54:B5:52:8B:33:FC:08:58:01:D2:3B:FF:E6:35:12"}}},"request":{"raw":"GET /gtag/js?id=G-0X0X4TCRGS HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klplayboy.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 10 Jan 2026 06:17:08 GMT\r\nexpires: Sat, 10 Jan 2026 06:17:08 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 143797\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":434580,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"a70bde3044d2861e2b12f85c5a649555","sha1":"eed3b5c8fbdf5900a53bf14c410f9f8c79ba8581","sha256":"e6373774e1505f05c9193a0e1677d03b841bf67df86ff9181c67b08a3480ec95","sha512":"050715d05be3dac0875bd540f85e7740c50cc5debbfc58f7d9afdc642806c760058cca273812283c317784337b07cb2210671a568fb723f0fccae719fdbf93ed","ssdeep":"6144:FKrVfsxxo6qWroAizhQkc1/po7YA+TkIzvovBQVnFRA:8BEqLAi1C7TkI0t","tlshash":"1c941ace73d670269396e078503f018ba57b29a2b45dc896f1c9cce02d74a9a4277f7c","first_seen":"2026-01-10T06:17:34.271336Z","last_seen":"2026-01-10T06:17:34.271336Z","times_seen":1,"resource_available":true,"data":null}},"time_used":534,"timings":{"blocked":198,"dns":1,"connect":29,"send":0,"wait":55,"receive":82,"ssl":165},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}