{"report_id":"8f24b906-91eb-470e-a93c-45b84d5ec3e9","version":0,"status":"done","tags":[],"date":"2026-06-22T17:04:48Z","url":{"schema":"http","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":0,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"final":{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"title":"FurMark - Скачать FurMark бесплатно на русском","dom":{"size":40741,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (5358)","md5":"832e103b1a13ce7b931095451a72ffa7","sha1":"550944fcd13e1b2d370f512da33a33c1b124ef87","sha256":"e97846ab90abcdf9dbc7cf2aa8ef1d06039d0f06dd12334b0fdfa798b504a2c0","sha512":"4a70ae31412cad5a282491482095f388421670568a17ca2e442c75c80787ce7695d5afbeb2c995dfb7c6c396ab2889031cf0dc3a3be6860751c721aa55f6ceec","ssdeep":"768:55/2hFcp2HGzaj0wH4cZ7Rl9AtV0M+h6f:P/2h2p2HYaVHvZNl9EVC6f","tlshash":"9603957046ea186f5617b1d6f928bb4b70e7437dee1206c541fc3a6922fae42812770e","dom_hash":"domhash4e20b83ac04146f4a5d2a2e0a010a44b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":0,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-27T17:04:48Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"furmark.su","ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"domain_registered":"2021-12-14","domain_rank":0,"first_seen":"2022-04-11T13:01:39Z","last_seen":"2026-02-18T02:28:56.518683Z","alert_count":17,"request_count":17,"received_data":731553,"sent_data":8918,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Liveinternet","description":"","website":"https://liveinternet.ru/rating/","common_platform_enumeration":"","icon":"Liveinternet.png","categories":["Analytics"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"880cf04b89196d4fae53175194f5aecc","sha1":"26b2f68f0920ab41e5bffa2b1af674af12d52ec5","sha256":"65fc570913716d5a678d434b65b5cb74b7fc577d6a5e7215fdbaae28fe5f2a21","sha512":"db7dd5715b28362a555cf3601d1eaaed3d84cd532d805739f34259572c1058e0f85b198fc1d46fc5adb40fb6ec61c83d7837d0b176236b36469f1b67e328564d","ssdeep":"","tlshash":"92e07d6292155849459714b2785c10590a4de8221e947e2a5095193cbce67e9976f33c","size":306,"data":"","first_seen":"2026-06-22T17:04:50.658601Z","last_seen":"2026-06-22T17:04:50.658601Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"d8b1b2ccfdfdf9d8504307b53485fd07","sha1":"491fd8d26582ffcfd1ce58a00bbbdef65743b939","sha256":"0d68b7f4194840c7afa980c8c1e49ec6594433b5f727561ce7e1f6073dcbe0f4","sha512":"951532b32649664293fb308490a31aa099452b7523f4277c75b43f33e32abf8f56e3644088205cf27214fcb22ec74a967768573b523f5e45c57976ffe304702e","ssdeep":"","tlshash":"bef020f73c8d523ccb7603a13333a24c7466293e784aac63e60e28632580f6658eb51c","size":574,"data":"","first_seen":"2026-06-22T17:04:50.659508Z","last_seen":"2026-06-22T17:04:50.659508Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"dda91ca092570347dc64f82f5c325ca1","sha1":"90ce58fd2e8fc20020e446256c04e5f177963712","sha256":"19bfd81d47f3f248b5d6b156edf560551ef3789e37a9068b176dec1a8dff4d66","sha512":"d96dd619a4526ea4bf5a753d61360fc72910f304535356641809b19c28c10d166c7334e39f33cb5a5c041979be94455203d2a0de6eaa229d8cb2136be0a3d200","ssdeep":"","tlshash":"28119cab7d9c2d3ad7ba7af768ab1b4c3c38a2003643d04c482c95701515d530d7a9ab","size":928,"data":"","first_seen":"2026-06-13T03:30:02.426119Z","last_seen":"2026-06-22T17:04:50.660262Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"30028a7d570c243e13cf4517469f5d63","sha1":"6b51f23eec470843df12bc118551e2a3aacce670","sha256":"fe67447039c89181045e3e7f8b75f6605499e3abee9f7d0ccf615e3146c5b9c3","sha512":"dbbba3d154510c9d0de6f7e10b017298e3ec7a64c8c8ea87c6eedfbe4d9219053c5d67d5f9ab232a0de3a8806e1b6063c978844ad62f4bf338df67f0736682c7","ssdeep":"","tlshash":"834100797de2683858b6786f669ff349adf892397509d002a42c8c0822a1d978532f7d","size":2116,"data":"","first_seen":"2026-06-13T03:30:02.433054Z","last_seen":"2026-06-22T17:04:50.661234Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/wp-includes/js/jquery/jquery.js","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":false,"md5":"b354cc9d56a1da6b0c77604d1b153850","sha1":"a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732","sha256":"fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46","sha512":"b6dcbe11a0f90ef61a071fdf7d8c637f95fc77969cffda9f291772b4fa2c2f9020eea2916da6f1113d746afeafbf592d0db79fb2f2f5400bc0a0fc10a066ba98","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a98Q:v4J+OlfOhWppCW6G9a98HrU","tlshash":"1783c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","size":85577,"data":"","first_seen":"2023-03-07T01:06:18Z","last_seen":"2026-06-22T17:51:15.543217Z","times_seen":8631,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"880cf04b89196d4fae53175194f5aecc","sha1":"26b2f68f0920ab41e5bffa2b1af674af12d52ec5","sha256":"65fc570913716d5a678d434b65b5cb74b7fc577d6a5e7215fdbaae28fe5f2a21","sha512":"db7dd5715b28362a555cf3601d1eaaed3d84cd532d805739f34259572c1058e0f85b198fc1d46fc5adb40fb6ec61c83d7837d0b176236b36469f1b67e328564d","ssdeep":"","tlshash":"92e07d6292155849459714b2785c10590a4de8221e947e2a5095193cbce67e9976f33c","size":306,"data":"","first_seen":"2026-06-22T17:04:50.658601Z","last_seen":"2026-06-22T17:04:50.658601Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"d8b1b2ccfdfdf9d8504307b53485fd07","sha1":"491fd8d26582ffcfd1ce58a00bbbdef65743b939","sha256":"0d68b7f4194840c7afa980c8c1e49ec6594433b5f727561ce7e1f6073dcbe0f4","sha512":"951532b32649664293fb308490a31aa099452b7523f4277c75b43f33e32abf8f56e3644088205cf27214fcb22ec74a967768573b523f5e45c57976ffe304702e","ssdeep":"","tlshash":"bef020f73c8d523ccb7603a13333a24c7466293e784aac63e60e28632580f6658eb51c","size":574,"data":"","first_seen":"2026-06-22T17:04:50.659508Z","last_seen":"2026-06-22T17:04:50.659508Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"dda91ca092570347dc64f82f5c325ca1","sha1":"90ce58fd2e8fc20020e446256c04e5f177963712","sha256":"19bfd81d47f3f248b5d6b156edf560551ef3789e37a9068b176dec1a8dff4d66","sha512":"d96dd619a4526ea4bf5a753d61360fc72910f304535356641809b19c28c10d166c7334e39f33cb5a5c041979be94455203d2a0de6eaa229d8cb2136be0a3d200","ssdeep":"","tlshash":"28119cab7d9c2d3ad7ba7af768ab1b4c3c38a2003643d04c482c95701515d530d7a9ab","size":928,"data":"","first_seen":"2026-06-13T03:30:02.426119Z","last_seen":"2026-06-22T17:04:50.660262Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"30028a7d570c243e13cf4517469f5d63","sha1":"6b51f23eec470843df12bc118551e2a3aacce670","sha256":"fe67447039c89181045e3e7f8b75f6605499e3abee9f7d0ccf615e3146c5b9c3","sha512":"dbbba3d154510c9d0de6f7e10b017298e3ec7a64c8c8ea87c6eedfbe4d9219053c5d67d5f9ab232a0de3a8806e1b6063c978844ad62f4bf338df67f0736682c7","ssdeep":"","tlshash":"834100797de2683858b6786f669ff349adf892397509d002a42c8c0822a1d978532f7d","size":2116,"data":"","first_seen":"2026-06-13T03:30:02.433054Z","last_seen":"2026-06-22T17:04:50.661234Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"880cf04b89196d4fae53175194f5aecc","sha1":"26b2f68f0920ab41e5bffa2b1af674af12d52ec5","sha256":"65fc570913716d5a678d434b65b5cb74b7fc577d6a5e7215fdbaae28fe5f2a21","sha512":"db7dd5715b28362a555cf3601d1eaaed3d84cd532d805739f34259572c1058e0f85b198fc1d46fc5adb40fb6ec61c83d7837d0b176236b36469f1b67e328564d","ssdeep":"","tlshash":"92e07d6292155849459714b2785c10590a4de8221e947e2a5095193cbce67e9976f33c","size":306,"data":"","first_seen":"2026-06-22T17:04:50.658601Z","last_seen":"2026-06-22T17:04:50.658601Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"d8b1b2ccfdfdf9d8504307b53485fd07","sha1":"491fd8d26582ffcfd1ce58a00bbbdef65743b939","sha256":"0d68b7f4194840c7afa980c8c1e49ec6594433b5f727561ce7e1f6073dcbe0f4","sha512":"951532b32649664293fb308490a31aa099452b7523f4277c75b43f33e32abf8f56e3644088205cf27214fcb22ec74a967768573b523f5e45c57976ffe304702e","ssdeep":"","tlshash":"bef020f73c8d523ccb7603a13333a24c7466293e784aac63e60e28632580f6658eb51c","size":574,"data":"","first_seen":"2026-06-22T17:04:50.659508Z","last_seen":"2026-06-22T17:04:50.659508Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"dda91ca092570347dc64f82f5c325ca1","sha1":"90ce58fd2e8fc20020e446256c04e5f177963712","sha256":"19bfd81d47f3f248b5d6b156edf560551ef3789e37a9068b176dec1a8dff4d66","sha512":"d96dd619a4526ea4bf5a753d61360fc72910f304535356641809b19c28c10d166c7334e39f33cb5a5c041979be94455203d2a0de6eaa229d8cb2136be0a3d200","ssdeep":"","tlshash":"28119cab7d9c2d3ad7ba7af768ab1b4c3c38a2003643d04c482c95701515d530d7a9ab","size":928,"data":"","first_seen":"2026-06-13T03:30:02.426119Z","last_seen":"2026-06-22T17:04:50.660262Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"30028a7d570c243e13cf4517469f5d63","sha1":"6b51f23eec470843df12bc118551e2a3aacce670","sha256":"fe67447039c89181045e3e7f8b75f6605499e3abee9f7d0ccf615e3146c5b9c3","sha512":"dbbba3d154510c9d0de6f7e10b017298e3ec7a64c8c8ea87c6eedfbe4d9219053c5d67d5f9ab232a0de3a8806e1b6063c978844ad62f4bf338df67f0736682c7","ssdeep":"","tlshash":"834100797de2683858b6786f669ff349adf892397509d002a42c8c0822a1d978532f7d","size":2116,"data":"","first_seen":"2026-06-13T03:30:02.433054Z","last_seen":"2026-06-22T17:04:50.661234Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"880cf04b89196d4fae53175194f5aecc","sha1":"26b2f68f0920ab41e5bffa2b1af674af12d52ec5","sha256":"65fc570913716d5a678d434b65b5cb74b7fc577d6a5e7215fdbaae28fe5f2a21","sha512":"db7dd5715b28362a555cf3601d1eaaed3d84cd532d805739f34259572c1058e0f85b198fc1d46fc5adb40fb6ec61c83d7837d0b176236b36469f1b67e328564d","ssdeep":"","tlshash":"92e07d6292155849459714b2785c10590a4de8221e947e2a5095193cbce67e9976f33c","size":306,"data":"","first_seen":"2026-06-22T17:04:50.658601Z","last_seen":"2026-06-22T17:04:50.658601Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"d8b1b2ccfdfdf9d8504307b53485fd07","sha1":"491fd8d26582ffcfd1ce58a00bbbdef65743b939","sha256":"0d68b7f4194840c7afa980c8c1e49ec6594433b5f727561ce7e1f6073dcbe0f4","sha512":"951532b32649664293fb308490a31aa099452b7523f4277c75b43f33e32abf8f56e3644088205cf27214fcb22ec74a967768573b523f5e45c57976ffe304702e","ssdeep":"","tlshash":"bef020f73c8d523ccb7603a13333a24c7466293e784aac63e60e28632580f6658eb51c","size":574,"data":"","first_seen":"2026-06-22T17:04:50.659508Z","last_seen":"2026-06-22T17:04:50.659508Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"dda91ca092570347dc64f82f5c325ca1","sha1":"90ce58fd2e8fc20020e446256c04e5f177963712","sha256":"19bfd81d47f3f248b5d6b156edf560551ef3789e37a9068b176dec1a8dff4d66","sha512":"d96dd619a4526ea4bf5a753d61360fc72910f304535356641809b19c28c10d166c7334e39f33cb5a5c041979be94455203d2a0de6eaa229d8cb2136be0a3d200","ssdeep":"","tlshash":"28119cab7d9c2d3ad7ba7af768ab1b4c3c38a2003643d04c482c95701515d530d7a9ab","size":928,"data":"","first_seen":"2026-06-13T03:30:02.426119Z","last_seen":"2026-06-22T17:04:50.660262Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":true,"md5":"30028a7d570c243e13cf4517469f5d63","sha1":"6b51f23eec470843df12bc118551e2a3aacce670","sha256":"fe67447039c89181045e3e7f8b75f6605499e3abee9f7d0ccf615e3146c5b9c3","sha512":"dbbba3d154510c9d0de6f7e10b017298e3ec7a64c8c8ea87c6eedfbe4d9219053c5d67d5f9ab232a0de3a8806e1b6063c978844ad62f4bf338df67f0736682c7","ssdeep":"","tlshash":"834100797de2683858b6786f669ff349adf892397509d002a42c8c0822a1d978532f7d","size":2116,"data":"","first_seen":"2026-06-13T03:30:02.433054Z","last_seen":"2026-06-22T17:04:50.661234Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/wp-content/themes/point/js/main.js","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"introduction_type":"scriptElement","is_inline":false,"md5":"b5ba4f61b232f50cea7dca25c77e41db","sha1":"f6bbcc95311d9a4092ed00211ecb241ee9c3a676","sha256":"87e9d4153e2706d71d59e47e9732750823fdeecaf59edda63465e83c91e38c2a","sha512":"b77593774e27f28bfed4faf3166b09cf6f3971d77b1ca6ba48e93cde46af82ef3d4f28cac295fb194dc3877a43eb11eb7b9d3368a470fa34b4aeb60ace9929b9","ssdeep":"1536:ql6uWsiSBVlFGVzfGevmRzMMdZfupgfjJ3kSEO261NyYMk5Sl5BSENUfmqxGcTJ9:q0slVEfGevmRzMMdZfupgbJ3k+NyYMZm","tlshash":"47832a9abb10706485bb56a4e31f510ee5376416f10241f2b86dd4942be4fc822effed","size":86489,"data":"","first_seen":"2025-03-27T21:42:07.378013Z","last_seen":"2026-06-22T17:04:50.640789Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"furmark.su/wp-content/themes/point/js/main.js","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.218Z","timestamp":1782147865218,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /wp-content/themes/point/js/main.js HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nlast-modified: Fri, 27 Sep 2024 09:22:27 GMT\r\netag: W/\"66f67953-15333\"\r\nexpires: Tue, 21 Jul 2026 14:55:29 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":86835,"size_decoded":28891,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (31972), with CRLF line terminators","md5":"b5ba4f61b232f50cea7dca25c77e41db","sha1":"f6bbcc95311d9a4092ed00211ecb241ee9c3a676","sha256":"87e9d4153e2706d71d59e47e9732750823fdeecaf59edda63465e83c91e38c2a","sha512":"b77593774e27f28bfed4faf3166b09cf6f3971d77b1ca6ba48e93cde46af82ef3d4f28cac295fb194dc3877a43eb11eb7b9d3368a470fa34b4aeb60ace9929b9","ssdeep":"1536:ql6uWsiSBVlFGVzfGevmRzMMdZfupgfjJ3kSEO261NyYMk5Sl5BSENUfmqxGcTJ9:q0slVEfGevmRzMMdZfupgbJ3k+NyYMZm","tlshash":"47832a9abb10706485bb56a4e31f510ee5376416f10241f2b86dd4942be4fc822effed","first_seen":"2025-03-27T21:42:07.378013Z","last_seen":"2026-06-22T17:04:50.640789Z","times_seen":4,"resource_available":true,"data":null}},"time_used":142,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":142,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/svg/image-002.svg","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.238Z","timestamp":1782147865238,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /svg/image-002.svg HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Mon, 16 May 2022 13:01:53 GMT\r\netag: W/\"62824b41-1507\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5383,"size_decoded":2388,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2b914be4d988c492325152bd3cf17824","sha1":"c76017c6e00ad602403910561d7524c1c888bad3","sha256":"a46de76b96393fd008a11e1b43994b8a2d425786442b3b602652fd3ee5d57d5f","sha512":"4f1c74f718f1ea162530d60a1409c5ec081b200ee266f9f4f580f2881c1f3f94bd6648ac0244e4227896362e09964bb836931acba16c98d6adc95a096c14beaf","ssdeep":"96:SX7IYzE7xW9toSGM2rX7EnglWS28o82gG9zJ9b9zg9b9z0vti8j8jWfhYuoO4f4T:SXDzE7xctPGTEjStoZgI7R2RIvtffhxT","tlshash":"93b17b68d348c2f0ed9f4bbc9f3da5f8b15d80e940d083796268867023548d9fb6ec99","first_seen":"2025-11-25T13:12:02.92363Z","last_seen":"2026-06-22T17:04:50.641883Z","times_seen":3,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":171,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/svg/image-003.svg","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.240Z","timestamp":1782147865240,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /svg/image-003.svg HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Mon, 16 May 2022 13:01:53 GMT\r\netag: W/\"62824b41-14ea\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5354,"size_decoded":2521,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1cfa6ee920afb3ee8080da01ff7a803e","sha1":"04c48e5bb96b6ddee441987079191eec6d1153b4","sha256":"01ccc1805e940af874928ef1682437556d702f093f4e9e37e3e32d176c9eda70","sha512":"f344ef8b239b79fcdd0226dcb90a2542b844edc7169409ae9c486a2396edcb28418f71e6b0611fd51824b58d792dc4618102830e2fa991656003aee06ae83518","ssdeep":"96:SXkzE7xWYotoSG39rX7EngJWS28oZHW3Q4iV1gq1jFw0dZZW4c:SXkzE7xStPGZErStoU3Q4a1g8ldZZWb","tlshash":"3ab1d079c34482f0fc8a4ba8ef39a0f5b25dd0fb81d0d364662895a072518d9f65fed8","first_seen":"2025-11-25T13:12:02.925868Z","last_seen":"2026-06-22T17:04:50.642982Z","times_seen":3,"resource_available":false,"data":null}},"time_used":169,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/screen/install-image-004.png","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.246Z","timestamp":1782147865246,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /screen/install-image-004.png HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/png\r\ncontent-length: 15073\r\nlast-modified: Sun, 03 Nov 2024 10:41:39 GMT\r\netag: \"67275363-3ae1\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15073,"size_decoded":15432,"mime_type":"image/png","magic":"PNG image data, 746 x 570, 8-bit colormap, non-interlaced","md5":"b1d458cd7f9467095ee1ea9b456d4566","sha1":"103eebbded1e8db3ee45e570a6e967fa0399e016","sha256":"3ab18a56fae8b97a3610047680402eefca12dbb596d8c25fc7e76e6529363942","sha512":"0b0949e61980ed51cd75426dc506566c9555785f939442e52a833321cdb855a37adc3a5f6830ab00ed88d1f8133fc38cabb22695c7e699342375dc8f48f4a390","ssdeep":"384:5O6kd/09YE2sJjrpdhfxYDBlpxEl8ROzNdnY:5Zkd/0aE2KfKI8srnY","tlshash":"9f62bf0292835e3ab6d044a98736862503630d2857568a47971ef1883f6c2fd72bcfda","first_seen":"2025-03-27T21:42:07.368725Z","last_seen":"2026-06-22T17:04:50.643947Z","times_seen":4,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":164,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/screen/install-image-003.png","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.244Z","timestamp":1782147865244,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /screen/install-image-003.png HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/png\r\ncontent-length: 15829\r\nlast-modified: Sun, 03 Nov 2024 10:41:37 GMT\r\netag: \"67275361-3dd5\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15829,"size_decoded":16188,"mime_type":"image/png","magic":"PNG image data, 746 x 570, 8-bit colormap, non-interlaced","md5":"273f37574acb5affc0905a67d3b74dee","sha1":"67b5983c4afa553f73f98a0af21e61c578e6895a","sha256":"92dfd429dd80c94a3111985c2b6fc8ed9464c0b73e919e3b4894c6f07b52ca9d","sha512":"c71017cb0c2b875e97c836b9e01b67df9980afb607c6c80e06bf9a8bb4dcff57cec75522885e57796ed36d59ace2a0d4cd43035cb0cc43c3ea392f94a706b249","ssdeep":"192:aRMl5WB2sdGXncwfYhwqDRWi6efUrkcz9npFsm62tYBPP5bkKuQJImN6c9S4bMC7:aRMyBZT5NYgmFpFXmPP5fJI2kwieec1","tlshash":"d462d117c758436ef2fc0ff46b6d7ca3eda78379d0065c0d4192d17808b91805e4aad5","first_seen":"2025-03-27T21:42:07.362416Z","last_seen":"2026-06-22T17:04:50.644803Z","times_seen":4,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":165,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/svg/image-004.svg","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.241Z","timestamp":1782147865241,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /svg/image-004.svg HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Mon, 16 May 2022 13:01:53 GMT\r\netag: W/\"62824b41-10c1\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4289,"size_decoded":2085,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fe0a1435a13005262e4ede99b64be58f","sha1":"e99ce28aaf822b750cd64989b2d6a7a29943b786","sha256":"1fcc945f2b29ce509f654d6dbc182b0e6b2d2edd7a09c428bc3d52dd52488142","sha512":"4ffe6e0f59156003ddb780d26e7f25b22635ce6624e08c852c9053fbe7f0e6697ce03f60964d73b7779430465a0da19f82fc8ae1a52063f3cd2d1df59f721585","ssdeep":"96:SfzE7AWIetoSGB2rX7Eng4uS28oaoqe+mR0Y9n0B5UTf/Sl:SfzE7AZetPGsE4Stoa5fGn4i/u","tlshash":"1491fc78d348c1b4ed56475c9b39a0f4f19fe0fa42c09364a628d570b3918d9f2aedc8","first_seen":"2025-11-25T13:12:02.938107Z","last_seen":"2026-06-22T17:04:50.64576Z","times_seen":3,"resource_available":false,"data":null}},"time_used":168,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":168,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/?ysclid=mqpgr7495k13496289","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-22T17:04:24.503Z","timestamp":1782147864503,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /?ysclid=mqpgr7495k13496289 HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:24 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-f-cache: BYPASS\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Liveinternet","description":"","website":"https://liveinternet.ru/rating/","common_platform_enumeration":"","icon":"Liveinternet.png","categories":["Analytics"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]}],"data":{"size":30972,"size_decoded":8809,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (642)","md5":"8c84cee357522c7297658038c42837e3","sha1":"851715d110bbf8dd1e8f070071921587bd5194c7","sha256":"64defd1b9bbf0a74da31ad4bae8e5683da684461b410619f2f7b3229fd15b55e","sha512":"4abdda535a783d3a7783d25269eb1686517f818711082f6b18fd1a4c2f431ca65c2f3039d0ff67092391f11c9e5714a3d27859253740724695f1f81daa35bea1","ssdeep":"384:Ltxvtu6thFFEPQtBYjG5bNnkAZjRl9eN28xXyS0rgB:pzuehFFEPQBj593ZjRl9OtV0MB","tlshash":"e4d2527159db146b5623b0dafc28ab0e35e743bdff13050942fc0a6d22d6e52813ab5e","first_seen":"2026-06-22T17:04:50.646779Z","last_seen":"2026-06-22T17:04:50.646779Z","times_seen":1,"resource_available":true,"data":null}},"time_used":442,"timings":{"blocked":-1,"dns":106,"connect":49,"send":0,"wait":186,"receive":0,"ssl":101},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/wp-content/themes/point/style.css","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.211Z","timestamp":1782147865211,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /wp-content/themes/point/style.css HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 10 May 2026 11:10:14 GMT\r\netag: W/\"6a006796-1ac03\"\r\nexpires: Tue, 21 Jul 2026 14:55:29 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":109571,"size_decoded":23135,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text, with very long lines (1356), with CRLF line terminators","md5":"fdb9e91201f9f0ad63f8327f35eee4e0","sha1":"089c9eb69ce50bf8edbd18143f780c09d1922159","sha256":"e017f937ce0c57421033def3926ce1569a89212506ba302cbc9164955478857a","sha512":"2a815584a5758b5ececc748939f3fcb4a74b8d81c9b9250d2d13f31046191dd2ae9f402b59fcf786827327a43ef3e54e75ec135eada87e084b3b05f8e115d477","ssdeep":"1536:yaBlRrOpSnzJxn7ycrD9vqmiOKaIhchRavm:nzJ59imiO/RX","tlshash":"cdb37459af012104a137d6b9dbf34755ef2a4053a70601f9badcb241cfba699027afcc","first_seen":"2026-06-22T17:04:50.647676Z","last_seen":"2026-06-22T17:04:50.647676Z","times_seen":1,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/wp-includes/js/jquery/jquery.js","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.214Z","timestamp":1782147865214,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery.js HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 04 Sep 2019 16:02:12 GMT\r\netag: W/\"5d6fe004-14e49\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85577,"size_decoded":30454,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (32065)","md5":"b354cc9d56a1da6b0c77604d1b153850","sha1":"a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732","sha256":"fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46","sha512":"b6dcbe11a0f90ef61a071fdf7d8c637f95fc77969cffda9f291772b4fa2c2f9020eea2916da6f1113d746afeafbf592d0db79fb2f2f5400bc0a0fc10a066ba98","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a98Q:v4J+OlfOhWppCW6G9a98HrU","tlshash":"1783c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","first_seen":"2023-03-07T01:06:18Z","last_seen":"2026-06-22T17:51:15.543217Z","times_seen":8631,"resource_available":true,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":98,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/svg/image-001.svg","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.235Z","timestamp":1782147865235,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /svg/image-001.svg HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Mon, 16 May 2022 13:01:53 GMT\r\netag: W/\"62824b41-1ea8\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7848,"size_decoded":3373,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d2d1f72e5857437dd9f1eccc33faec7e","sha1":"d9223d7b5d125ef90ee931d54981b96ddd5372f4","sha256":"5c6a1513c75263d257bfea4e4d2bf6c820435e8463aeab28d70b9781f82f1683","sha512":"78aef8d5a41ec8b19e7afea7b8da0fd3479d1ac6940c1e5ce7cfb638cf48bab0100ae738ded4b8484b98855b77b3f7d7a6cbedd277217192922c1ed66f41caa1","ssdeep":"192:SyzE7xcVGuE4MStochqDKg6os/NInOnm34sS3BVI:hwWR8St5sKgzOIIU4f3A","tlshash":"9ef1dc79c34881f0fd9e469cee3d60b5b18ed0fb81d0c360a318d960b6914d9fa5ead8","first_seen":"2025-11-25T13:12:02.933798Z","last_seen":"2026-06-22T17:04:50.649658Z","times_seen":3,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/svg/ico.svg","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.665Z","timestamp":1782147865665,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /svg/ico.svg HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nCookie: email=m984404@test.ru\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 19 Apr 2022 11:51:35 GMT\r\netag: W/\"625ea247-ff5\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4085,"size_decoded":1628,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d2013399318c33bafc880c63ba4f9d08","sha1":"bca7ee335d21c7ce58277b80f6e0291a2086b0b1","sha256":"3320acfa88deeaa88f176827ffd10f69825c35e39c7d00227c570fb22d6ab598","sha512":"c3b4c53bd51e6d2b1d49dace7c1de2e8e548766060ee5eeb5cf2460b136913bd0e891a5cb88162f43b0fbd1951b28ed983bb6cfe3ac6c11c419d3a2fca385199","ssdeep":"","tlshash":"368135eb9b74a0f0eec71be9ef324c9d260b94b78fc593cc81b9ae586183d954544d10","first_seen":"2026-06-22T17:04:50.650513Z","last_seen":"2026-06-22T17:04:50.650513Z","times_seen":1,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/svg/logo.svg","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.228Z","timestamp":1782147865228,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /svg/logo.svg HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 15 Feb 2024 13:53:13 GMT\r\netag: W/\"65ce1749-2462\"\r\nexpires: Tue, 21 Jul 2026 14:55:29 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9314,"size_decoded":4413,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e4e29f341de0e11550300c94b5dc1cb6","sha1":"acdcf8ffa395cf74e3b0bab4d0d12f4d8615caa3","sha256":"f3b7490d80819a831f8597db086f8a53b3c733235433aa76773bde12974e80df","sha512":"e811d3631c5ef27f87b634bb6a9cb780242f51a0728c4660627bc1e66e7c31f65970a618c3bb9cdb4b34b6be1f3f47352ba79ea894ca22781713c46b87688728","ssdeep":"192:4jnEXKtnCfF8tYcsVK4eDf5YvPzyBIsLsZNPinilwgSTnsA:fXKdCWtYhKZLQPMBmkiqTsA","tlshash":"c51289fbc35480e0790ea5b4cd3619e57515b4ff9e81e08862bdfc05e293eda9b28e44","first_seen":"2025-11-25T13:12:02.916086Z","last_seen":"2026-06-22T17:04:50.651558Z","times_seen":3,"resource_available":false,"data":null}},"time_used":132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/svg/parter-img.svg","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.230Z","timestamp":1782147865230,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /svg/parter-img.svg HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 21 Apr 2022 17:51:53 GMT\r\netag: W/\"626199b9-3147\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12615,"size_decoded":4782,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8963e5eb5972342af6a7cd292761f6a4","sha1":"00b7e5cb7de2d5a4817a7fdddac53eb9c9fc2079","sha256":"e60cfb416dea7171ef889e5e1bd2fee3fc8e77cf48ae501ebd5cc71653ab5add","sha512":"83ff632fe8f4435a871e95fdaee1078b0104d195dba0d8e83a91cbab115b1a489657dd209cfc9cd5f1c40ffe61e80ebbb9acce0174b48cd40d04f478fe718b54","ssdeep":"192:iTbWsGqJ9rjZRl9rrZRxdQYXrplzQhg4yTad0nTkcBidFuxQiXraACrOEpqM:Of9r9Rl9rl+Gr+gLadGBiDuxQErs/qM","tlshash":"4b4272eba724c0e43887586cee3159ee3e1ef4fa2f92e18151adec00e5d3dc59206e54","first_seen":"2025-03-27T21:42:07.37404Z","last_seen":"2026-06-22T17:04:50.652296Z","times_seen":4,"resource_available":false,"data":null}},"time_used":131,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":131,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/svg/big-image-home.svg","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.232Z","timestamp":1782147865232,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /svg/big-image-home.svg HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 27 Apr 2022 12:48:52 GMT\r\netag: W/\"62693bb4-b663\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":46691,"size_decoded":18351,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"20d5433282cec709ad24947f63c121d4","sha1":"bf47b559e2ba20ca76be0684ae64ed23463edcf9","sha256":"42693ba0cfe3f6df2407d8f878d4bfc7c2c39877c5282d11caa80d033380aa96","sha512":"97556532e4bd54d9c8f63a91c033095c855ce6139c07488c8052d2e0a7bb05e183d2614ab2deb99a04dd052dc9c7424a543e34c5436304200af93c4a4b80b4d0","ssdeep":"768:qKiMBmkirFArKxjrGtE17y7bfQo03ANc5nWUO99VkHMqh:lSxGtEk77Qka5E9+V","tlshash":"592351f6975880fc380b47a8ce3a15e53b1fa4fe7b519294222ced70a543dd9c627e84","first_seen":"2026-06-22T17:04:50.653998Z","last_seen":"2026-06-22T17:04:50.653998Z","times_seen":1,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/znachek.png","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.233Z","timestamp":1782147865233,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /znachek.png HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/png\r\ncontent-length: 139896\r\nlast-modified: Sun, 08 May 2022 14:26:26 GMT\r\netag: \"6277d312-22278\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":139896,"size_decoded":140257,"mime_type":"image/png","magic":"PNG image data, 720 x 405, 8-bit colormap, non-interlaced","md5":"848a087ff5f5a16e1d087b08cf701bd7","sha1":"fb33840f4e62e3bcea1d05b95abec1deb9e26435","sha256":"89b6f999aada92d2b7c3db96925264f7e3b0b5be6b729065b1c354332e349333","sha512":"8082d22fdea8dbc324f7af80fb2208902183471af494672a184c1763ab91b8699b37b52819cfc2927a3e57790197256b263cf7f88fd280fcaacd91528904d41a","ssdeep":"3072:p8Dk47rt+5WaOzdqnTY+RR1CMMNTQPGzmRohyLs1H5WlQ6TvxV80:WDk47h8WaOz8nTZRbCMMJq+04HM9vxVb","tlshash":"51d3126551fc1aa7e386ba0c286d5cc6c611387c7607bd0426fb9aa4ef5f5c1500eb8f","first_seen":"2025-03-27T21:42:07.366239Z","last_seen":"2026-06-22T17:04:50.655138Z","times_seen":4,"resource_available":false,"data":null}},"time_used":226,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/screen/install-image-002.png","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.243Z","timestamp":1782147865243,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /screen/install-image-002.png HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/png\r\ncontent-length: 26046\r\nlast-modified: Sun, 03 Nov 2024 10:41:39 GMT\r\netag: \"67275363-65be\"\r\nexpires: Tue, 21 Jul 2026 14:55:34 GMT\r\ncache-control: max-age=5529600\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26046,"size_decoded":26405,"mime_type":"image/png","magic":"PNG image data, 746 x 570, 8-bit colormap, non-interlaced","md5":"6f20991f102206bfc29ab929713f57f0","sha1":"3f3c9681f0e900ff5615765888e19225b6f2f14c","sha256":"7a4f6283331e8b1c4dd911f0f7b68b72137f8177ec1457b448acc89959173dc3","sha512":"e85c4be8d58d4a1486585b98d3511204e7fecb139c78b51cf91bfa3888567d8962af283fc8ae62b42d99b4900caa61ae7f4a2bb776fc5a7a7399a358d337d111","ssdeep":"384:86bpKcdrqRNupc+dgqWNz2S3WvBGj8MMANwNjYIc30FyIW4cfBQC0UG9uq0p37PQ:VVKcmNu++d5S3aj4wjc3y3Cfj7q0RK3","tlshash":"ddc2f172bddc2ad9419f309ce866ba2499627ccc7e5c7287625407f08e293949f43f64","first_seen":"2025-03-27T21:42:07.372185Z","last_seen":"2026-06-22T17:04:50.656162Z","times_seen":4,"resource_available":false,"data":null}},"time_used":215,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":167,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"furmark.su/favicon.ico","fqdn":"furmark.su","domain":"furmark.su","tld":"su"},"ip":{"addr":"178.171.122.165","port":443,"asn":30058,"as":"FDCSERVERS","country":"Taiwan","country_code":"TW"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://furmark.su/?ysclid=mqpgr7495k13496289","date":"2026-06-22T17:04:25.721Z","timestamp":1782147865721,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"furmark.su","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Jun 2026 09:37:28 GMT","end":"Mon, 07 Sep 2026 09:37:27 GMT"},"fingerprint":{"sha1":"05:39:86:9C:6B:5C:8B:62:D3:F8:68:B4:A3:CA:2F:73:06:C5:87:E0","sha256":"00:46:18:9B:73:F7:39:25:56:D1:03:6C:49:DE:B1:32:4C:32:94:19:95:9F:13:DB:B0:91:25:EB:E7:BC:6E:41"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: furmark.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://furmark.su/?ysclid=mqpgr7495k13496289\r\nCookie: email=m984404@test.ru\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Mon, 22 Jun 2026 17:04:25 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\ncontent-length: 120108\r\nlast-modified: Tue, 19 Apr 2022 11:51:23 GMT\r\netag: \"1d52c-5dd007ef0c4c0\"\r\nx-f-cache: HIT\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":120108,"size_decoded":120417,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 7 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel","md5":"b50aa7beac0c221b81da5a75fc1135c7","sha1":"b4f2b4d8010949f03e34f77bbc0f173819bd0e7d","sha256":"c96ad5d0ad1f9cc3b49ed48e5ec268bafa6a92bc7ed9eec6f5a6d44523f32600","sha512":"2d957eb4d27d5d3aa1bfbc4e07cda4e299a5ca66853444df3fa1f34c5d94675a1ab3efd2d76e98e887ecfa9bb29e045c37e1373450673d37d7ff2ff2b957f38e","ssdeep":"1536:UeL24iYh/ireWbBmh7DpsPPLPcb/onov3vVxjjRn/eFR7:UelhKhb0BVsPPLPY/onovtr/6","tlshash":"cac3c30bba1dd599c9ccb4bddba1c07749436c5a2b50b2023ea1bf6e3b31c47d54a22c","first_seen":"2025-03-27T21:42:07.367861Z","last_seen":"2026-06-22T17:04:50.657643Z","times_seen":4,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-22","alert":"Sinkholed","trigger":"furmark.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}