{"report_id":"83a3ddcb-d713-405e-ad2b-270bd30a335e","version":6,"status":"done","tags":[],"date":"2026-01-03T08:05:53Z","url":{"schema":"http","addr":"www.alat05.xyz/","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"172.67.219.150","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.alat05.xyz/cgi-sys/defaultwebpage.cgi","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"title":"Default Web Site Page","dom":{"size":6924,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"ff9b4a448db8cf9896b80259df130101","sha1":"1f68f5a1fb3633493aac55f795a8538016807c3f","sha256":"13f7bc15eb45b33d95c032c577616b5d7f235ddfe6eb57b5de495a54cca1e565","sha512":"a8d8175dfb184f8b91fdd06d30a3c91f7e655b6d4bf91885c51a8512a745eea6f3cadeb2e56314279926f5accb09cd9814918deabf9347917e6ae6dc4c427700","ssdeep":"192:9lYHC+H1U7ydPJq5AtyhhuT9w3y4E9SyJifl9VRsQ:t9zlhsQ","tlshash":"94e1fd5b2af200276043a4b56bbb3711af24e053c21ecd543e1c57e8df86992cda3b9c","dom_hash":"domhashf766092b73388dfad28e8ada2a02caa6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.alat05.xyz/","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"172.67.219.150","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-07T08:05:53Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.alat05.xyz","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-18","domain_rank":0,"first_seen":"2026-01-03T08:05:54.0804Z","last_seen":"2026-01-03T08:05:54.0804Z","alert_count":9,"request_count":9,"received_data":47881,"sent_data":4327,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.alat05.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-03T19:29:50.408549Z","times_seen":291399,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"www.alat05.xyz/cgi-sys/defaultwebpage.cgi","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-03T08:05:31.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET /cgi-sys/defaultwebpage.cgi HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nkbvLnsG7ucOiYDlrbEuV8I%2ByzxtbX7stgi6k2iTX0%2FQ8ym9Mc8NAd9Cu%2F9dmjuaAHJ3%2FElqpHJYQ4uv6GgatN6GndD6sta6BC41iA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9b80fdd87ed1b4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":7183,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"a532573a866c9d92642ad896a6cab639","sha1":"b9371e56a455fed58c2b606acf656c9dae40f7f2","sha256":"0553aee5523ca9fe65c7c880ffa36a86cab7b7647b45fda6ef7aa32f20b009dc","sha512":"a526465fddd993cd40f12bd09f1450527dbc1c62352ae21d66f5a115e3214cba4cd7e5750fbfb0d9c7f905276cd3d3c0c07d1bd300ff500df66d2a78d96a7dc4","ssdeep":"192:LlYHC+H1U7ydPJq5AtyhhuT9w3y4E9SyJ0nw296aS1i:/9Lw2rS1i","tlshash":"f9e13f5b6af20067604394b52bab37127b64e043c21ecd143e5c57d8df86992cde3b9c","first_seen":"2026-01-03T08:05:57.608717Z","last_seen":"2026-01-03T08:05:57.608717Z","times_seen":1,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.alat05.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi","date":"2026-01-03T08:05:31.693Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: application/javascript\r\nexpires: Sat, 03 Jan 2026 08:53:31 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3WOiRo2KzWzIullwYoX2VrgtoGWvnWBqN8S33zyja77Xm1udm2Ir2WtiwDuaEdEIvRo14PZdqRLnZ8LZZRTOrUjwYQyF5RVq9%2FOsQw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9b80fdd90f29b4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-03T19:29:50.408549Z","times_seen":291399,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.alat05.xyz/img-sys/error-bg-left.png","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi","date":"2026-01-03T08:05:31.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET /img-sys/error-bg-left.png HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: image/png\r\ncontent-length: 8072\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qBtcerk1rCzpF9GRSTM2QD91861uj94ua63raE%2BIpiUuLcw1nX8%2FYQVXs4YpX2LrCA%2Fd8Lh%2FCX%2BKvvd3yEMEpTxeE04ySKZRMBenag%3D%3D\"}]}\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 10 Jan 2026 07:49:41 GMT\r\nlast-modified: Mon, 22 Jan 2024 18:20:50 GMT\r\naccept-ranges: bytes\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncf-ray: 9b80fdd90f2eb4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":8072,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 410 x 400, 8-bit/color RGBA, non-interlaced","md5":"cdbe46a0178886162bdedff35336154e","sha1":"f5acc131f7d3fdfbebfc4a55be73cf51c7638937","sha256":"862885b79bef22ad5716b2dbfa714d52f628a439f2921bb9520a4630bbea5d4e","sha512":"cd75baa25c17945a25381d08d30887ddcb4a42dda676f6189bd2e25c91e390197d2ebf68a86b74995a32483445aeeee3df7c0ff6bec9e8b69f1d84f3ee3423b4","ssdeep":"192:4FWzRDmuPuPjEAWYgZgwuJGaY8o84ntC6K0GrD7tSHzN:4FGRDmumPgAWLslY8o8yCjzr/tk","tlshash":"6bf1af71ca2b86519ebb4f95c1fa8397b851c92ecc03b3f68c2716376dd61b6452ac0c","first_seen":"2023-04-12T19:49:10Z","last_seen":"2026-04-03T17:29:45.431678Z","times_seen":26621,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":118,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.alat05.xyz/img-sys/IP_changed.png","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi","date":"2026-01-03T08:05:31.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET /img-sys/IP_changed.png HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: image/png\r\ncontent-length: 2939\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i6EzvFRuVNgDH3dCVzRNPfU1hYXbnNW%2FufhbuEE0q8RmzddRABjZjsmrJzThK%2BU6t70pQnKwjmftszY8Qvtxk1pNi7q5ZUI3HppVRg%3D%3D\"}]}\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 10 Jan 2026 07:49:41 GMT\r\nlast-modified: Mon, 22 Jan 2024 18:20:50 GMT\r\naccept-ranges: bytes\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncf-ray: 9b80fdd90f1eb4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2939,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced","md5":"ec081653bd4c836483e6d612588d18ec","sha1":"91c7e4cfa061808881575a875741773a949a9e0a","sha256":"b19da51b5e9c9b29cd8523d85d92e99e4812c891c394929c9bf67557f560672c","sha512":"b1cc98149afc9d9041bfc4e91a0990728f3f1a2c944e8819d4b131b60f8a2a03f831e855ce6efd478a651c2dce8fe715645bfe3d59699a442a4a6dc898bb406c","ssdeep":"","tlshash":"33513aaaf91e6c50834215dfa1e6402a2ed1e84e751430b326287afe53df8036a32f80","first_seen":"2023-04-13T09:27:24Z","last_seen":"2026-04-03T17:29:45.429915Z","times_seen":26617,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.alat05.xyz/img-sys/server_misconfigured.png","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi","date":"2026-01-03T08:05:31.690Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET /img-sys/server_misconfigured.png HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: image/png\r\ncontent-length: 3164\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Cd4MACwcoBfM4L8HwiVdSOUHDqurzpWaM7But9P9aNf%2BoEBxLLWLevWEj4w05JFx45m1hU7c7%2F3AcrsT%2Fj%2Bk%2FQgvnqQ8PviRxgSjZw%3D%3D\"}]}\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 10 Jan 2026 07:49:41 GMT\r\nlast-modified: Mon, 22 Jan 2024 18:20:50 GMT\r\naccept-ranges: bytes\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncf-ray: 9b80fdd90f24b4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":3164,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced","md5":"f79adaf00f83dc9757086cdbe8645ff0","sha1":"82f37b8be7668eab8e1a06de828cb336799c8134","sha256":"944120fb6962c7484d769d645e6d830850eead9394f6a84090aed489cfc0c41f","sha512":"eb7db97a73d4fd8ff7acc027582a2564636ee9d92f19365da11ec4c80be62418450fd0b37ed1462d56489c52fa1ab69008b040fad7795151dc1d26ac59293f6a","ssdeep":"","tlshash":"54513b80a9156c08aed83aacb51d109b84003ce5a8372cc480728fffb61e8b36aa55dd","first_seen":"2023-04-05T04:59:52Z","last_seen":"2026-04-03T17:39:58.651936Z","times_seen":40531,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.alat05.xyz/img-sys/server_moved.png","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi","date":"2026-01-03T08:05:31.691Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET /img-sys/server_moved.png HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: image/png\r\ncontent-length: 3327\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5J5o2o937E9HIyB0U6soSYqHSyCUNgkYfQ4RGIGFFAqDUpwMNVf8Dwen3VZbHYc5mj94X1EZ40BHUl%2BuQkQDOgIVQvm8Pif%2Fa1wLPg%3D%3D\"}]}\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 10 Jan 2026 07:49:41 GMT\r\nlast-modified: Mon, 22 Jan 2024 18:20:50 GMT\r\naccept-ranges: bytes\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncf-ray: 9b80fdd90f25b4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":3327,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced","md5":"f6590a396da81a8e4cce7ca046874ffd","sha1":"7e68db322c32ca079b2c836812d3a25204ab93cc","sha256":"3a22057583d3e17bc94990d92a3425d5510dc5bdb60fe40fafeb405a38f8ed28","sha512":"cf4ae5e172feb6923bfd5ad4f302bf63250f4072774fb29efb0846167ea95d708299047cb18e4c72deffc5d24040a35049d778685f7cf96801ee8d4769a25fa1","ssdeep":"","tlshash":"486139d62986504a264a0c61eaf5ec963065301b28789a3e8527cbcc96c8a9e698c317","first_seen":"2023-04-07T07:55:56Z","last_seen":"2026-04-03T17:29:45.432745Z","times_seen":26611,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.alat05.xyz/img-sys/powered_by_cpanel.svg","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi","date":"2026-01-03T08:05:31.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET /img-sys/powered_by_cpanel.svg HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 2507\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=p5VCbrmfAw1NJjh8SxKVnN2owOI9%2F35crC3izraWGoikMXWVea5Cgr1Fd%2FjZr7nMm8FnJMKq%2F%2FEkvjaARnha07EQJmcaWKHR3s3P6A%3D%3D\"}]}\r\ncache-control: public, max-age=604800\r\nexpires: Sat, 10 Jan 2026 07:49:41 GMT\r\nlast-modified: Mon, 22 Jan 2024 18:20:50 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: MISS\r\ncf-ray: 9b80fdd90f26b4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":5617,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c47b4b5200566a2a496a11ba472ec5da","sha1":"3bd0da9a6ffd62217d3e781fa1356f40d9f91d4c","sha256":"179a9aa9fff4c52850d9ce34a4c435404ddfd4fefa8aab9a6eb4f47b83f922d9","sha512":"b67659bfb2f94cc1124eb88f7582ae2ee1c983210577edc9aaf6fdb65f6b0e2b9fd786169a91fc72a1ac0e8556bc09c7cf35395c7a038a6f6419660b7b64545f","ssdeep":"96:BDol4IVL19t2mY5Ib0Va4FALs/k2eerILEKQhnEIsFGFB/aStUY0NuhHkzTUgCgM:BGjR19tU5Ib0tCY8jeSEptRPFESt70NW","tlshash":"77c174f9c7a053f47ac38f5deb2966d0b0ebf8bd1ea082c451759368c4c0ad9e948874","first_seen":"2023-04-05T04:59:52Z","last_seen":"2026-04-03T17:39:58.653231Z","times_seen":40500,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":75,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.alat05.xyz/favicon.ico","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi","date":"2026-01-03T08:05:31.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.alat05.xyz/cgi-sys/defaultwebpage.cgi\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jquvuGEultmSpNdcjRqgIKy%2FV%2BoB7nQvffcGfRj66lzBLDaZqyUnqZRVDZ%2BJLZ%2F1azn3AjG4SVa%2FGFroSZbLmSK9oNeh0n%2FOW6MTEA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: br\r\ncf-ray: 9b80fdd9dfb0b4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":10359,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (4070)","md5":"4241504f6d6821de7f744ff91a842a81","sha1":"a6f2a78eaf2cffdbd7d6ee6324742ae7baaba6ca","sha256":"c27951329df6831183e8fb2f8824b902d7197ebfc4fc81588557994c130ed41b","sha512":"2118b5a56c846e9647233b75614ab2979ea8da5104e23c3d515a5be0e41ed0aba34fadb8525e7bd2b2b3ddc8daee654ca7c680e560a41af8373fe7def7a56cc7","ssdeep":"192:rlYHC0HNXGZkHQU7ydPJq5S2KqQVX/uTK3w3DK+tMy47R/Ga0kVhFuPwf8Pn93Jh:FVGaRF8I8g+anl+Ii","tlshash":"4622a5ab2ae3001b740760b967ba3211ab69b543d11fcd643f1db3e4df469818c93b4e","first_seen":"2026-01-03T08:05:57.61306Z","last_seen":"2026-01-03T08:05:57.61306Z","times_seen":1,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":77,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.alat05.xyz/","fqdn":"www.alat05.xyz","domain":"alat05.xyz","tld":"xyz"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-03T08:05:31.294Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alat05.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 18 Nov 2025 15:49:45 GMT","end":"Mon, 16 Feb 2026 16:47:31 GMT"},"fingerprint":{"sha1":"2D:CE:36:25:27:74:3D:4D:D4:CC:52:D2:F2:9D:F4:21:CA:F2:35:33","sha256":"51:7E:C9:11:1C:AB:14:30:F7:40:BE:7B:73:51:DF:19:D1:0C:78:DC:4C:25:1C:58:20:90:47:7D:9A:FB:08:B3"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.alat05.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 03 Jan 2026 08:05:31 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=e7eegrkgJ1ZcqGuvUWss9iPSWpcFmUOJ%2BjbDGeS7hmibP%2BHXW7EtSnmK8UJ777ko4sWLG6fR8NTl23I0NEOyIqX39itbhhoCz7zAMw%3D%3D\"}]}\r\nlast-modified: Mon, 04 Dec 2023 03:24:53 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9b80fdd6fdcab4f4-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":163,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"f1fb042c62910c34be16ad91cbbd71fa","sha1":"5bc7aceba9a8704ef4b1d427d7d08b140afcd866","sha256":"9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24","sha512":"d4b2f435a14e915ec8c36364ef6be6dd810883b5c9c8e337573a114d36257186fae92ead623ac5ef7812b0ff2cc4973842e994f2f7fcd510d3c5a9c5c33a369b","ssdeep":"","tlshash":"71c08cd8009c383c7124b888dfc102c284669009a4a03ec154dbb62cc27ca27c88e2e4","first_seen":"2023-03-08T15:50:46Z","last_seen":"2026-04-03T17:29:45.432232Z","times_seen":24594,"resource_available":true,"data":null}},"time_used":164,"timings":{"blocked":61,"dns":38,"connect":1,"send":0,"wait":41,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-03","alert":"Sinkholed","trigger":"www.alat05.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}