{"report_id":"8ff54402-5f7e-47b3-9949-22304f1ca6c4","version":6,"status":"done","tags":[],"date":"2026-04-26T14:10:29Z","url":{"schema":"http","addr":"fixedfl-oat.com","fqdn":"fixedfl-oat.com","domain":"fixedfl-oat.com","tld":"com"},"ip":{"addr":"176.125.242.151","port":0,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"fixedfl-oat.com/","fqdn":"fixedfl-oat.com","domain":"fixedfl-oat.com","tld":"com"},"title":"FixedFloat | Swap Crypto","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"fixedfl-oat.com","fqdn":"fixedfl-oat.com","domain":"fixedfl-oat.com","tld":"com"},"ip":{"addr":"176.125.242.151","port":0,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-31T14:10:29Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"fixedfl-oat.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fixedfl-oat.com","ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"domain_registered":"2026-03-23","domain_rank":0,"first_seen":"2026-04-26T14:10:29.714536Z","last_seen":"2026-04-26T14:10:29.714536Z","alert_count":3,"request_count":3,"received_data":80216,"sent_data":1377,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"172.217.19.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-19T22:20:23.925162Z","alert_count":0,"request_count":1,"received_data":13263,"sent_data":564,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"192.178.25.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-04-19T22:16:46.237507Z","alert_count":0,"request_count":4,"received_data":93059,"sent_data":2186,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"fixedfl-oat.com/","fqdn":"fixedfl-oat.com","domain":"fixedfl-oat.com","tld":"com"},"ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"23542a54bb29427126d26dd4224bc02a","sha1":"f247f352fa72a51edf937efd9abaf59e8bc7947b","sha256":"df1c8766e622c7e04b30f4405924e16a7402e3c87b70477dc91e28842a2256d1","sha512":"4fa453b4b4804a9643b17832ab721c004089bf85912cc4bddb9f978ae0024a93c365fd2735d5eab0ac2b62a58c1b30a0ed1ab8b0d3dca88d532e3c5edd30ac6c","ssdeep":"","tlshash":"2831cc19353a207f843308f7f6970686af3a1049356089a77dbcd19d0f85cb86df2d9a","size":1747,"data":"","first_seen":"2026-04-26T14:10:33.257174Z","last_seen":"2026-04-26T14:41:53.640572Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fixedfl-oat.com/favicon-16x16.png","fqdn":"fixedfl-oat.com","domain":"fixedfl-oat.com","tld":"com"},"ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fixedfl-oat.com/","date":"2026-04-26T14:10:09.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fixedfl-oat.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:44:08 GMT","end":"Mon, 22 Jun 2026 11:44:07 GMT"},"fingerprint":{"sha1":"C6:8D:D6:8C:AB:CB:6A:C1:4E:C8:E1:EF:A0:00:4C:91:17:DD:50:E8","sha256":"F0:A3:FF:76:2D:50:C6:7C:C9:E7:B9:2D:E0:8B:81:D0:D2:44:43:C2:94:D2:1E:92:94:2A:DC:D0:E8:8B:F4:EF"}}},"request":{"raw":"GET /favicon-16x16.png HTTP/1.1\r\nHost: fixedfl-oat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fixedfl-oat.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Sun, 26 Apr 2026 14:10:09 GMT\r\nContent-Type: image/png\r\nContent-Length: 802\r\nLast-Modified: Tue, 01 Jul 2025 08:39:34 GMT\r\nConnection: keep-alive\r\nETag: \"68639ec6-322\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":802,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGB, non-interlaced","md5":"79b9e5a6a0be665a78265cb5546e2a3b","sha1":"8ef1a75870d0fad544e53ff4af9f15b55577e6d5","sha256":"3fd65ba39ddbe670c31d3de88170b4343e39db1575b1483b28150baa223633a0","sha512":"0499fdf5da9fd7385058aed6dfd96a0a2ae518c1a8756a128e9dffbaef5b901750bb79af9c795837694e44910665dae086aed3b4a51ebb3518986828dc17a96c","ssdeep":"","tlshash":"1b0175ebc0b8cc29ea0b23158a2f2167d87bc3166757011c684be6955ec8bccd894ed6","first_seen":"2025-08-31T00:05:50.306962Z","last_seen":"2026-06-05T02:33:51.298103Z","times_seen":41,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":1,"connect":59,"send":0,"wait":59,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"fixedfl-oat.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Playfair+Display:ital,wght@0,700;0,900;1,700\u0026family=Barlow:wght@300;400;500;600\u0026family=Barlow+Condensed:wght@600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.19.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fixedfl-oat.com/","date":"2026-04-26T14:10:08.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"1A:63:7B:F3:04:6F:4C:E4:F3:15:87:E8:E7:FA:DD:B1:F7:7E:89:49","sha256":"5E:36:5D:D1:35:3B:0A:E9:8A:55:91:DC:12:B0:50:4A:AE:D9:A7:97:06:7C:0D:D7:F0:23:3E:8A:B2:08:19:00"}}},"request":{"raw":"GET /css2?family=Playfair+Display:ital,wght@0,700;0,900;1,700\u0026family=Barlow:wght@300;400;500;600\u0026family=Barlow+Condensed:wght@600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fixedfl-oat.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 26 Apr 2026 14:10:08 GMT\r\ndate: Sun, 26 Apr 2026 14:10:08 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12577,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"3a51937c75d933ee80ffd8ca29c8f3cd","sha1":"73b08a3fdbbb08d78a5c088a234f1a27ec21d5f6","sha256":"1ae1fc0df35e3261f6d1f11c8a0b5e2279deeef3055988b46b53f252a03db510","sha512":"0da3638b1535422923c6d0cf50b21aac8d0c71509029de977b36cc40daef6644a73ae933a02750c6f330f1eed2ec068d29d54e3afe3076b0ceee89930f38387a","ssdeep":"384:ciFzmi2E8hJu29gMu291u29du29kE2R/J2vI2b426u2R/j2v62bq2W:UE8iaoakasavahwI04Carw60q9","tlshash":"4442eca2046ba100db875cc227cf7f329d5e61607484c67d6ffe1c989c9bd266368b0d","first_seen":"2026-04-26T14:10:33.24328Z","last_seen":"2026-04-26T14:43:33.231165Z","times_seen":4,"resource_available":false,"data":null}},"time_used":470,"timings":{"blocked":218,"dns":1,"connect":21,"send":0,"wait":31,"receive":0,"ssl":196},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/barlowcondensed/v13/HTxwL3I-JCGChYJ8VI-L6OO_au7B4873z3bWuQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"192.178.25.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fixedfl-oat.com/","date":"2026-04-26T14:10:08.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"8B:DF:9C:24:AB:AD:AB:73:3F:51:0F:25:2B:18:76:79:1A:C5:63:A0","sha256":"BF:5C:B4:F2:20:4F:D0:E5:76:81:59:52:5F:3E:D2:4F:8D:33:B3:30:36:84:C8:7E:0E:AB:58:1E:7D:D6:E2:6D"}}},"request":{"raw":"GET /s/barlowcondensed/v13/HTxwL3I-JCGChYJ8VI-L6OO_au7B4873z3bWuQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://fixedfl-oat.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22308\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 25 Apr 2026 02:02:50 GMT\r\nexpires: Sun, 25 Apr 2027 02:02:50 GMT\r\ncache-control: public, max-age=31536000\r\nage: 130039\r\nlast-modified: Mon, 08 Sep 2025 17:56:49 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22308,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22308, version 1.0","md5":"ba4513495282e696439a15e0c0f7784c","sha1":"0a7db4011ad8495d15f98572df81b76120c267ee","sha256":"215a93c696f442034a46fbb382958f753fda60e30490683aeea6b235fcbb2b66","sha512":"ede8bf87d44263a3daa19f86c1c0e98d5a688e987a6e9f579adc48a685dc0fc96328e88f2dbf72e52d25ea23fad9a403fb3397cd23c8d894cc7e3ab8fd4731fe","ssdeep":"384:13egjXHdAcb5H+5gOaEv72NEx7HK49DcHfnNLV/4udDaqZqex1pS0KPBa:1b75vBKmt494HfnNLtNbxfr","tlshash":"42a2e144f0e46392fda080786e8d13e8095645bf9df08a7b23736c6f306721f25dba89","first_seen":"2025-09-10T04:06:30.779038Z","last_seen":"2026-06-07T06:46:47.277601Z","times_seen":2955,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":89,"dns":1,"connect":7,"send":0,"wait":11,"receive":3,"ssl":78},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fixedfl-oat.com/apple_images_180x180.png","fqdn":"fixedfl-oat.com","domain":"fixedfl-oat.com","tld":"com"},"ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fixedfl-oat.com/","date":"2026-04-26T14:10:09.169Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fixedfl-oat.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:44:08 GMT","end":"Mon, 22 Jun 2026 11:44:07 GMT"},"fingerprint":{"sha1":"C6:8D:D6:8C:AB:CB:6A:C1:4E:C8:E1:EF:A0:00:4C:91:17:DD:50:E8","sha256":"F0:A3:FF:76:2D:50:C6:7C:C9:E7:B9:2D:E0:8B:81:D0:D2:44:43:C2:94:D2:1E:92:94:2A:DC:D0:E8:8B:F4:EF"}}},"request":{"raw":"GET /apple_images_180x180.png HTTP/1.1\r\nHost: fixedfl-oat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fixedfl-oat.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Sun, 26 Apr 2026 14:10:09 GMT\r\nContent-Type: image/png\r\nLast-Modified: Tue, 01 Jul 2025 08:39:34 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"68639ec6-3e64\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15972,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced","md5":"55a56916ae9ad44cdb0f8c591c1a8a97","sha1":"2c9448961b1d839208c569d6a9fa919cd4785b80","sha256":"658c757766ce851f8cf591119d018a5269f1b4af7441bb9ca9aaa50c7b0ad604","sha512":"e6a3a58cdcaae9a0bd89a8adf26b06ad9c18957dec43464b54aed221f4dd5abdc89492726d78c8e2846b75f8888933029efee0f433f0ad6b57c4efa50f8c2000","ssdeep":"384:g1+U1qDmMnJ/LNDPoCmoxyxfE6H6PjGB68ka7bAkEnCdX:g4U5Mn/7rL+fE6sGB3w+dX","tlshash":"ee72d1b7e548ca79fd8433299d8b49108ed0c1e38f39655caf50c0b04cddf257a76a88","first_seen":"2025-08-31T00:05:50.329682Z","last_seen":"2026-06-05T02:33:51.297034Z","times_seen":56,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":118,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"fixedfl-oat.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fixedfl-oat.com/","fqdn":"fixedfl-oat.com","domain":"fixedfl-oat.com","tld":"com"},"ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-26T14:10:08.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fixedfl-oat.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 11:44:08 GMT","end":"Mon, 22 Jun 2026 11:44:07 GMT"},"fingerprint":{"sha1":"C6:8D:D6:8C:AB:CB:6A:C1:4E:C8:E1:EF:A0:00:4C:91:17:DD:50:E8","sha256":"F0:A3:FF:76:2D:50:C6:7C:C9:E7:B9:2D:E0:8B:81:D0:D2:44:43:C2:94:D2:1E:92:94:2A:DC:D0:E8:8B:F4:EF"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: fixedfl-oat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Sun, 26 Apr 2026 14:10:08 GMT\r\nContent-Type: text/html; charset=utf-8\r\nLast-Modified: Mon, 23 Mar 2026 15:29:55 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69c15c73-f4e1\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":62689,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (638)","md5":"a3d832d74e039bdc81e9f45301fede69","sha1":"c1a4de06273366b1618b4324b061613206cbe0af","sha256":"e8d224429b22b7569906ece353a059ba919b443bb4c1bf71cc5d4afc6d433a17","sha512":"2976c67a7cd203eb8d57c5589759b5af5c7a63f5d74135f7b9e9dd75b84effaf525a38658c695cd4b4cd4d2a68e64011a564eac452671b3b50a097ae1a58d1a8","ssdeep":"768:9IPS9lttd8y4J3yT4N4k/JSRjUSOfZt0B3xo:+PS9ltf8zJ3yTu4A4RoSEyO","tlshash":"6353a57c22f17132743390ee76974b9b7b87b047c90581ab36fd45588fc8daca563a88","first_seen":"2026-04-26T14:10:33.248623Z","last_seen":"2026-04-26T14:41:53.633019Z","times_seen":2,"resource_available":true,"data":null}},"time_used":622,"timings":{"blocked":252,"dns":127,"connect":59,"send":0,"wait":117,"receive":1,"ssl":64},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"fixedfl-oat.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/barlow/v13/7cHpv4kjgoGqM7E_DMs5.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"192.178.25.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fixedfl-oat.com/","date":"2026-04-26T14:10:08.941Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"8B:DF:9C:24:AB:AD:AB:73:3F:51:0F:25:2B:18:76:79:1A:C5:63:A0","sha256":"BF:5C:B4:F2:20:4F:D0:E5:76:81:59:52:5F:3E:D2:4F:8D:33:B3:30:36:84:C8:7E:0E:AB:58:1E:7D:D6:E2:6D"}}},"request":{"raw":"GET /s/barlow/v13/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://fixedfl-oat.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22196\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 26 Apr 2026 00:37:58 GMT\r\nexpires: Mon, 26 Apr 2027 00:37:58 GMT\r\ncache-control: public, max-age=31536000\r\nage: 48731\r\nlast-modified: Wed, 10 Sep 2025 16:22:46 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22196,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22196, version 1.0","md5":"81419bf5abb50ae075ddf1aee89da819","sha1":"4f0f26f139db2a7eee91dca038012399b3abdc47","sha256":"b0a8ad37ac45f5fb22ced461576db72e44e295107aad7a9c8a7a4bad728fd03b","sha512":"2445e12945aafa3ceb309e854253949361a3ce080197295d48b7b54fcc8d8cf2da24dc69dfaeb6c98c6a402742e4cc4bae2d12f57cc2ec3e79a676440fba35f3","ssdeep":"384:7wDo/T9qjZ6Qlb3pgWw/1n2vZvYUwVlykCtnexzuDDxlNN8fsbB:7wUQV626X1n2vRYUwlykMou/vN","tlshash":"04a2d084dae9716a4cc18aa602830aaddf76a048917c9f0cb5fb129d19425747f0fbf9","first_seen":"2025-09-11T18:14:34.493772Z","last_seen":"2026-06-07T06:46:47.354653Z","times_seen":9407,"resource_available":false,"data":null}},"time_used":307,"timings":{"blocked":142,"dns":1,"connect":23,"send":0,"wait":12,"receive":3,"ssl":122},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/barlow/v13/7cHqv4kjgoGqM7E30-8s51os.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"192.178.25.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fixedfl-oat.com/","date":"2026-04-26T14:10:08.932Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"8B:DF:9C:24:AB:AD:AB:73:3F:51:0F:25:2B:18:76:79:1A:C5:63:A0","sha256":"BF:5C:B4:F2:20:4F:D0:E5:76:81:59:52:5F:3E:D2:4F:8D:33:B3:30:36:84:C8:7E:0E:AB:58:1E:7D:D6:E2:6D"}}},"request":{"raw":"GET /s/barlow/v13/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://fixedfl-oat.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22772\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 25 Apr 2026 02:01:12 GMT\r\nexpires: Sun, 25 Apr 2027 02:01:12 GMT\r\ncache-control: public, max-age=31536000\r\nage: 130137\r\nlast-modified: Wed, 10 Sep 2025 16:22:41 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22772,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22772, version 1.0","md5":"a1e2a2d7d4c0a5ba535913f0a2150cae","sha1":"800311e32df4fd8460628e4927d5231cdd21757f","sha256":"4b52ddd4836b592df0e4832b8286956883cdc651b015126bdd18f184b7f90cc3","sha512":"fe985f90d8f10f15a027f1aa977a4cb36c199107b8a57474b4bf78c121691f566e5add4f688fd2fc29ec7938a674a859181afc556c188af57a15f82e3c3c5c0a","ssdeep":"384:VuBhowtOok1JHF5aUPEgF9CsAvHRH+lG43W2YYsQRCTiZCODvlov3:VuMsktbF9CsAfRCG43WtYfC6CODm3","tlshash":"eca2e15cd3447c83a374a6bf1fe4ee6e09cc82622b39d497e8179c441ea5407799c8af","first_seen":"2025-09-11T18:14:34.478127Z","last_seen":"2026-06-07T06:46:47.267498Z","times_seen":5976,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":141,"dns":3,"connect":7,"send":0,"wait":10,"receive":3,"ssl":125},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/barlowcondensed/v13/HTxwL3I-JCGChYJ8VI-L6OO_au7B46r2z3bWuQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"192.178.25.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fixedfl-oat.com/","date":"2026-04-26T14:10:08.939Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"8B:DF:9C:24:AB:AD:AB:73:3F:51:0F:25:2B:18:76:79:1A:C5:63:A0","sha256":"BF:5C:B4:F2:20:4F:D0:E5:76:81:59:52:5F:3E:D2:4F:8D:33:B3:30:36:84:C8:7E:0E:AB:58:1E:7D:D6:E2:6D"}}},"request":{"raw":"GET /s/barlowcondensed/v13/HTxwL3I-JCGChYJ8VI-L6OO_au7B46r2z3bWuQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://fixedfl-oat.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22444\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 23 Apr 2026 08:16:45 GMT\r\nexpires: Fri, 23 Apr 2027 08:16:45 GMT\r\ncache-control: public, max-age=31536000\r\nage: 280404\r\nlast-modified: Mon, 08 Sep 2025 17:56:44 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22444,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22444, version 1.0","md5":"e1180918b87380fc8304efcbb08d6de6","sha1":"05ba48a1a6621b8a5f0c9735aaffd0e9577797e5","sha256":"3787a5a419171630e6890cfa47c4da067474d005cd0ff8dc11ec090fdc3ee2b8","sha512":"6cdc97dd3236d558a5472e5de9ed16f0612f3dd12e8a5cc0e7142204bcecfc8cc90d2e7a0ac12d79a1e8c522c0f4fde5c2dbdb854e9de66ac40d7b036196d71c","ssdeep":"384:l/dVl8DgZSqyKOC+V6lKCCVg0qYbrm2OhS6wuKCVTlvdKs3hd+z/y3hmmlZ7L5:pdQ2RyKObVldOnTF4uHBHd+z/y3hnlZx","tlshash":"09a2e1f3fecaa04bf63fc8f545f42506d6cdb91848a829d53634673a0c694249cbe748","first_seen":"2025-09-10T04:06:30.789652Z","last_seen":"2026-06-07T05:46:58.000941Z","times_seen":2747,"resource_available":false,"data":null}},"time_used":435,"timings":{"blocked":211,"dns":1,"connect":22,"send":0,"wait":9,"receive":3,"ssl":186},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}