{"report_id":"8a31c643-b35f-4231-aea8-9ac24e2d5389","version":6,"status":"done","tags":[],"date":"2025-10-14T13:41:01Z","url":{"schema":"https","addr":"ifaceyou.live/","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":0,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"final":{"url":{"schema":"https","addr":"ifaceyou.live/","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"title":"IFaceYou.Com 3.0 - Live Activity Viewer"},"submit":{"url":{"schema":"https","addr":"ifaceyou.live/","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":0,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-18T13:41:01Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"ifaceyou.live","ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"domain_registered":"2025-09-24","domain_rank":0,"first_seen":"2025-10-14T13:41:01.604074Z","last_seen":"2025-10-14T13:41:01.604074Z","alert_count":8,"request_count":8,"received_data":344494,"sent_data":3508,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-10-12T22:12:24.910527Z","alert_count":0,"request_count":1,"received_data":10794,"sent_data":472,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ifaceyou.live/assets/icons-D6U1c6qq.js","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"introduction_type":"importedModule","is_inline":false,"md5":"40f72c584e1025c8b7652dac8e693f31","sha1":"4510250e9f150a03192132a199a64154f0825300","sha256":"40e5a38098b86ca419a943b94d18ea9a04e1f665e021298ff23582cb2edeab6d","sha512":"c2c333a2e54152159ee367d41d2c7a5b40bf7ef09c34adcf4d0cf499b1836eb287af398e96f4439a6eed3827255d6cd50aeff5abb42dd694c0568c619c2293d4","ssdeep":"","tlshash":"bf51417e8b9e112e1052d24c1f47b009afee437d729e4811e11f9936d712a47daa3fd1","size":3166,"data":"","first_seen":"2025-09-28T06:47:52.27016Z","last_seen":"2025-12-21T00:38:38.511932Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/assets/index-vS6afAGK.js","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f76e43f70503d815c1c58e6e6ce736b6","sha1":"3bd54852d060636b97002bb410b0f24f39542b89","sha256":"3fdffab02b0b3b6e5e3c0fd1ceba843dca1791827f0518682c40add214e383a1","sha512":"1d356bbc632df048d1ac6d14ce41e56ad3f0effaca9d4eaf928d289f7361b9fff7e00565eb4cd8b982836c84fcae2f6d05f42247859310e88d9f3962d6142f0b","ssdeep":"768:jhQ0amGbfoIteT1NCYXTpNqdNMaXGJxZFO7T2OJlcJigX72AjNY:pgZy1NCSTQNf2C2N5j5Y","tlshash":"e9e2940ce006dfdcee7724997c5ea044b00f4f94ca6f9ca9b4bc740615e8991b6a7bc9","size":32462,"data":"","first_seen":"2025-10-14T13:41:03.859604Z","last_seen":"2025-10-14T13:41:03.859604Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/assets/vendor-liIMdADX.js","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"introduction_type":"importedModule","is_inline":false,"md5":"6977861022b7821001e7d713b3a72a12","sha1":"bce4c79367f555d8019fc0720b9adbb9e9b2477e","sha256":"e4af5adf7a2c57458e025b4b57f6d2ff0b0a803d70a9e3285ae665b827558255","sha512":"19b92086f0b30eb6b22a7803399401484914f308b1d64709472115697838c6a95823c3623681b501b54487d35b467d481662faa0cfddc1129d79cc2050b9f9cd","ssdeep":"1536:HWQEVdvkPyaAK42WmDj7c9Ea4kiodN6Vg0ZygOrSgnz4X:FELt19pN6PAgOrNO","tlshash":"82d307e83996f6526ab311a700ef1817733c2a1b240c8960a611fd9e75f841eb17bfdd","size":139660,"data":"","first_seen":"2025-09-28T06:47:52.305259Z","last_seen":"2025-12-21T00:38:38.512852Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ifaceyou.live/assets/vendor-liIMdADX.js","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ifaceyou.live/","date":"2025-10-14T13:40:40.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ifaceyou.live.fnc3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 16:58:52 GMT","end":"Tue, 23 Dec 2025 16:58:51 GMT"},"fingerprint":{"sha1":"8B:0D:3B:0F:DC:E9:0C:A5:81:0C:AB:4A:40:4E:1F:96:B0:CC:07:4E","sha256":"70:F4:BE:84:C8:04:CD:D3:CA:83:44:A2:BA:B3:7D:A1:F5:C3:EB:3A:EE:31:5F:A6:84:28:FF:E5:16:74:77:46"}}},"request":{"raw":"GET /assets/vendor-liIMdADX.js HTTP/1.1\r\nHost: ifaceyou.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ifaceyou.live/assets/index-vS6afAGK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 21 Oct 2025 13:40:40 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 24 Sep 2025 16:24:24 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 43217\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":139660,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (54728)","md5":"6977861022b7821001e7d713b3a72a12","sha1":"bce4c79367f555d8019fc0720b9adbb9e9b2477e","sha256":"e4af5adf7a2c57458e025b4b57f6d2ff0b0a803d70a9e3285ae665b827558255","sha512":"19b92086f0b30eb6b22a7803399401484914f308b1d64709472115697838c6a95823c3623681b501b54487d35b467d481662faa0cfddc1129d79cc2050b9f9cd","ssdeep":"1536:HWQEVdvkPyaAK42WmDj7c9Ea4kiodN6Vg0ZygOrSgnz4X:FELt19pN6PAgOrNO","tlshash":"82d307e83996f6526ab311a700ef1817733c2a1b240c8960a611fd9e75f841eb17bfdd","first_seen":"2025-09-28T06:47:52.305259Z","last_seen":"2025-12-21T00:38:38.512852Z","times_seen":7,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/vite.html","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ifaceyou.live/","date":"2025-10-14T13:40:40.580Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ifaceyou.live.fnc3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 16:58:52 GMT","end":"Tue, 23 Dec 2025 16:58:51 GMT"},"fingerprint":{"sha1":"8B:0D:3B:0F:DC:E9:0C:A5:81:0C:AB:4A:40:4E:1F:96:B0:CC:07:4E","sha256":"70:F4:BE:84:C8:04:CD:D3:CA:83:44:A2:BA:B3:7D:A1:F5:C3:EB:3A:EE:31:5F:A6:84:28:FF:E5:16:74:77:46"}}},"request":{"raw":"GET /vite.html HTTP/1.1\r\nHost: ifaceyou.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ifaceyou.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\nlast-modified: Wed, 24 Sep 2025 16:24:24 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 405\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":954,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"8da10714df878a758b06886366b6047f","sha1":"fdc4b64d636fdc3f9d1ba0d4adeba5ad27f6bb77","sha256":"ab825a7613c66fc20cc62f30ac993555d00a244d7f4e3f11036f9cf8ee2e0f99","sha512":"0fd9a7d0f3ea0007d8cb9dc4e34731b150bd87a07668b59374c0d4296be022a355d172dd58c3db7b5c3bdee7244f1d8af77cbcc277ed4422cb62a2ff22766490","ssdeep":"","tlshash":"4d11581682c25c0f84131151fec0a664621d8251b14b0fe1378df16ff9cd3964a763dc","first_seen":"2025-10-14T13:41:03.848518Z","last_seen":"2025-11-15T06:12:01.246209Z","times_seen":3,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-14T13:40:39.945Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ifaceyou.live.fnc3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 16:58:52 GMT","end":"Tue, 23 Dec 2025 16:58:51 GMT"},"fingerprint":{"sha1":"8B:0D:3B:0F:DC:E9:0C:A5:81:0C:AB:4A:40:4E:1F:96:B0:CC:07:4E","sha256":"70:F4:BE:84:C8:04:CD:D3:CA:83:44:A2:BA:B3:7D:A1:F5:C3:EB:3A:EE:31:5F:A6:84:28:FF:E5:16:74:77:46"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ifaceyou.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\nlast-modified: Wed, 24 Sep 2025 16:25:52 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 689\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2480,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"f745f315d033e08aa6bda4c380d8acb6","sha1":"f41279245ecf6eaa9ec00c05c3a799c0297bc0ca","sha256":"ff625e2a59fae6342a565cf9acf9164a58c93114dd5550b53e684830480871c4","sha512":"851f8fea42cc926a5b1fe7f928d6112a27bfd32218c5547a606d531ad6fa62593264f9f64b43850ed97147a8fe5905af6cb705169a668623c8d0d88b4a1d32bd","ssdeep":"","tlshash":"f351611757b9002a1b2a07115ac6f8158fa7920f4648adf172dc44ec6fc6b82cfe326d","first_seen":"2025-10-14T13:41:03.852113Z","last_seen":"2025-10-27T18:07:08.794343Z","times_seen":2,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":109,"dns":56,"connect":25,"send":0,"wait":29,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ifaceyou.live/","date":"2025-10-14T13:40:40.356Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"04:E6:D3:58:E3:A1:E3:05:2B:C3:56:5D:68:BB:1B:0A:08:C6:E3:FB","sha256":"25:4C:B3:A3:9A:E1:D7:FD:25:B6:BF:E9:AA:97:95:20:5D:F2:15:EA:41:46:B6:6B:01:17:19:26:EC:EF:D3:CA"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ifaceyou.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 14 Oct 2025 13:40:40 GMT\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-04-13T13:32:36.620902Z","times_seen":20853,"resource_available":false,"data":null}},"time_used":152,"timings":{"blocked":64,"dns":1,"connect":7,"send":0,"wait":22,"receive":0,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/assets/icons-D6U1c6qq.js","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ifaceyou.live/","date":"2025-10-14T13:40:40.394Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ifaceyou.live.fnc3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 16:58:52 GMT","end":"Tue, 23 Dec 2025 16:58:51 GMT"},"fingerprint":{"sha1":"8B:0D:3B:0F:DC:E9:0C:A5:81:0C:AB:4A:40:4E:1F:96:B0:CC:07:4E","sha256":"70:F4:BE:84:C8:04:CD:D3:CA:83:44:A2:BA:B3:7D:A1:F5:C3:EB:3A:EE:31:5F:A6:84:28:FF:E5:16:74:77:46"}}},"request":{"raw":"GET /assets/icons-D6U1c6qq.js HTTP/1.1\r\nHost: ifaceyou.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ifaceyou.live/assets/index-vS6afAGK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 21 Oct 2025 13:40:40 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 24 Sep 2025 16:24:24 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1358\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":3166,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2606)","md5":"40f72c584e1025c8b7652dac8e693f31","sha1":"4510250e9f150a03192132a199a64154f0825300","sha256":"40e5a38098b86ca419a943b94d18ea9a04e1f665e021298ff23582cb2edeab6d","sha512":"c2c333a2e54152159ee367d41d2c7a5b40bf7ef09c34adcf4d0cf499b1836eb287af398e96f4439a6eed3827255d6cd50aeff5abb42dd694c0568c619c2293d4","ssdeep":"","tlshash":"bf51417e8b9e112e1052d24c1f47b009afee437d729e4811e11f9936d712a47daa3fd1","first_seen":"2025-09-28T06:47:52.27016Z","last_seen":"2025-12-21T00:38:38.511932Z","times_seen":7,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/assets/vendor-liIMdADX.js","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ifaceyou.live/","date":"2025-10-14T13:40:40.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ifaceyou.live.fnc3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 16:58:52 GMT","end":"Tue, 23 Dec 2025 16:58:51 GMT"},"fingerprint":{"sha1":"8B:0D:3B:0F:DC:E9:0C:A5:81:0C:AB:4A:40:4E:1F:96:B0:CC:07:4E","sha256":"70:F4:BE:84:C8:04:CD:D3:CA:83:44:A2:BA:B3:7D:A1:F5:C3:EB:3A:EE:31:5F:A6:84:28:FF:E5:16:74:77:46"}}},"request":{"raw":"GET /assets/vendor-liIMdADX.js HTTP/1.1\r\nHost: ifaceyou.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://ifaceyou.live/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 21 Oct 2025 13:40:40 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 24 Sep 2025 16:24:24 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 43217\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":139660,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (54728)","md5":"6977861022b7821001e7d713b3a72a12","sha1":"bce4c79367f555d8019fc0720b9adbb9e9b2477e","sha256":"e4af5adf7a2c57458e025b4b57f6d2ff0b0a803d70a9e3285ae665b827558255","sha512":"19b92086f0b30eb6b22a7803399401484914f308b1d64709472115697838c6a95823c3623681b501b54487d35b467d481662faa0cfddc1129d79cc2050b9f9cd","ssdeep":"1536:HWQEVdvkPyaAK42WmDj7c9Ea4kiodN6Vg0ZygOrSgnz4X:FELt19pN6PAgOrNO","tlshash":"82d307e83996f6526ab311a700ef1817733c2a1b240c8960a611fd9e75f841eb17bfdd","first_seen":"2025-09-28T06:47:52.305259Z","last_seen":"2025-12-21T00:38:38.512852Z","times_seen":7,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/assets/icons-D6U1c6qq.js","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ifaceyou.live/","date":"2025-10-14T13:40:40.518Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ifaceyou.live.fnc3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 16:58:52 GMT","end":"Tue, 23 Dec 2025 16:58:51 GMT"},"fingerprint":{"sha1":"8B:0D:3B:0F:DC:E9:0C:A5:81:0C:AB:4A:40:4E:1F:96:B0:CC:07:4E","sha256":"70:F4:BE:84:C8:04:CD:D3:CA:83:44:A2:BA:B3:7D:A1:F5:C3:EB:3A:EE:31:5F:A6:84:28:FF:E5:16:74:77:46"}}},"request":{"raw":"GET /assets/icons-D6U1c6qq.js HTTP/1.1\r\nHost: ifaceyou.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://ifaceyou.live/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 21 Oct 2025 13:40:40 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 24 Sep 2025 16:24:24 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1358\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":3166,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2606)","md5":"40f72c584e1025c8b7652dac8e693f31","sha1":"4510250e9f150a03192132a199a64154f0825300","sha256":"40e5a38098b86ca419a943b94d18ea9a04e1f665e021298ff23582cb2edeab6d","sha512":"c2c333a2e54152159ee367d41d2c7a5b40bf7ef09c34adcf4d0cf499b1836eb287af398e96f4439a6eed3827255d6cd50aeff5abb42dd694c0568c619c2293d4","ssdeep":"","tlshash":"bf51417e8b9e112e1052d24c1f47b009afee437d729e4811e11f9936d712a47daa3fd1","first_seen":"2025-09-28T06:47:52.27016Z","last_seen":"2025-12-21T00:38:38.511932Z","times_seen":7,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/assets/index-vS6afAGK.js","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ifaceyou.live/","date":"2025-10-14T13:40:40.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ifaceyou.live.fnc3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 16:58:52 GMT","end":"Tue, 23 Dec 2025 16:58:51 GMT"},"fingerprint":{"sha1":"8B:0D:3B:0F:DC:E9:0C:A5:81:0C:AB:4A:40:4E:1F:96:B0:CC:07:4E","sha256":"70:F4:BE:84:C8:04:CD:D3:CA:83:44:A2:BA:B3:7D:A1:F5:C3:EB:3A:EE:31:5F:A6:84:28:FF:E5:16:74:77:46"}}},"request":{"raw":"GET /assets/index-vS6afAGK.js HTTP/1.1\r\nHost: ifaceyou.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ifaceyou.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 21 Oct 2025 13:40:40 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 11 Oct 2025 10:16:47 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 8111\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":32462,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32077)","md5":"f76e43f70503d815c1c58e6e6ce736b6","sha1":"3bd54852d060636b97002bb410b0f24f39542b89","sha256":"3fdffab02b0b3b6e5e3c0fd1ceba843dca1791827f0518682c40add214e383a1","sha512":"1d356bbc632df048d1ac6d14ce41e56ad3f0effaca9d4eaf928d289f7361b9fff7e00565eb4cd8b982836c84fcae2f6d05f42247859310e88d9f3962d6142f0b","ssdeep":"768:jhQ0amGbfoIteT1NCYXTpNqdNMaXGJxZFO7T2OJlcJigX72AjNY:pgZy1NCSTQNf2C2N5j5Y","tlshash":"e9e2940ce006dfdcee7724997c5ea044b00f4f94ca6f9ca9b4bc740615e8991b6a7bc9","first_seen":"2025-10-14T13:41:03.859604Z","last_seen":"2025-10-14T13:41:03.859604Z","times_seen":1,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ifaceyou.live/assets/index-BRV-VUhJ.css","fqdn":"ifaceyou.live","domain":"ifaceyou.live","tld":"live"},"ip":{"addr":"185.66.140.187","port":443,"asn":200514,"as":"KnownSRV Ltd.","country":"Belize","country_code":"BZ"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ifaceyou.live/","date":"2025-10-14T13:40:40.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ifaceyou.live.fnc3.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 16:58:52 GMT","end":"Tue, 23 Dec 2025 16:58:51 GMT"},"fingerprint":{"sha1":"8B:0D:3B:0F:DC:E9:0C:A5:81:0C:AB:4A:40:4E:1F:96:B0:CC:07:4E","sha256":"70:F4:BE:84:C8:04:CD:D3:CA:83:44:A2:BA:B3:7D:A1:F5:C3:EB:3A:EE:31:5F:A6:84:28:FF:E5:16:74:77:46"}}},"request":{"raw":"GET /assets/index-BRV-VUhJ.css HTTP/1.1\r\nHost: ifaceyou.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ifaceyou.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 21 Oct 2025 13:40:40 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 24 Sep 2025 16:24:24 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 4185\r\ndate: Tue, 14 Oct 2025 13:40:40 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":20206,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (20205)","md5":"fb86e15c8d9ae98bf4671a91dea961a9","sha1":"cf4edfd3d508deeefbc92607209f67358204d57b","sha256":"6fc5602d665b71be17523d403ed8b06aa21e4601c15921c025f2048898a7e359","sha512":"a565bb5fcaa823e0f78378c19c2a5f869df109c207dcd65210bfbff254b498bf0a4cdf1495d9946a775a40ed7b49457674bd45bd1d0276629438b8b385e3ca50","ssdeep":"192:O9JyW9JyyxNBwL26SQVKhosfzsfVWsvJKZd/YLKNZT1TD/K/y/m/hrebvGwAfCn:kG26hVKhuWsvIJPRTD/K/y/m/hreFAan","tlshash":"9a92312daa44043bbd6740f2d6e8aa5df51eb0c6df2a6bfd6986111097c67f70c93600","first_seen":"2025-09-28T06:47:52.259564Z","last_seen":"2025-12-21T00:38:38.514548Z","times_seen":6,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-14","alert":"Sinkholed","trigger":"ifaceyou.live","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}