{"report_id":"91ba6669-fbe6-40c4-8ebf-b71751b9abc6","version":6,"status":"done","tags":[],"date":"2026-01-08T18:01:18Z","url":{"schema":"http","addr":"dthzs.com/","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":0,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"dthzs.com/","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"title":"tp官方下载安卓最新版本2025-tp官方网站下载app-tp官方正版下载·(tpwallet)官网-tp官网首页/tp官方网站下载app|你的通用数字钱包","dom":{"size":137,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"5069ae5ba7662051a8d27184c55dba54","sha1":"df42dfb9decb3b58c3cfaaa329ae52454abb9370","sha256":"b397fa9962efd76e5ee42ce027eab7e86742e163f1aa64dec3cf255fde584e2b","sha512":"82f93a9c14934897bc5dbab690b84d4c8962ebfd652a58cbf362e5aa980f0d1fe8b29182739aaaa5d5cb451298395d068bc6df34cf84a57701a23a3f800fd909","ssdeep":"","tlshash":"99c02b0d3463614cdd03116017c33240c088c33f685ac01008018483b0cf2aac4c23a5","dom_hash":"domhash18da208b3b39949e9ba09528a720f5c0","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"dthzs.com/","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":0,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-12T18:01:18Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"dthzs.com","ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"domain_registered":"2024-06-22","domain_rank":0,"first_seen":"2026-01-08T18:01:19.710912Z","last_seen":"2026-01-08T18:01:19.710912Z","alert_count":46,"request_count":46,"received_data":2011464,"sent_data":24644,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery:2.2.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Magnific Popup","description":"Magnific Popup is a responsive lightbox \u0026 dialog script with focus on performance and providing best experience for user with any device.","website":"https://dimsemenov.com/plugins/magnific-popup/","common_platform_enumeration":"","icon":"Magnific Popup.png","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Popper:1.12.9","description":"Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.","website":"https://popper.js.org","common_platform_enumeration":"","icon":"Popper.svg","categories":["Miscellaneous"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-01-04T22:14:09.841371Z","alert_count":0,"request_count":4,"received_data":99476,"sent_data":2150,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-01-04T22:21:06.427471Z","alert_count":0,"request_count":1,"received_data":20209,"sent_data":471,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"oudngmslhifnsf.gdmgcyy.com","ip":{"addr":"206.119.188.34","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"domain_registered":"2020-05-10","domain_rank":0,"first_seen":"2024-02-01T09:47:13Z","last_seen":"2026-01-06T12:16:29.974258Z","alert_count":0,"request_count":1,"received_data":1837,"sent_data":414,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty:1.21.4.3","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-04T22:17:15.216142Z","alert_count":0,"request_count":1,"received_data":19285,"sent_data":463,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"dthzs.com/static/js/vendor/bootstrap.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3a4912f4311c63d3af01bcd3441959ce","sha1":"f1c0f5a8fc1868582dcfbb4e955893f129bf7e4b","sha256":"f203aa11401db444669a0a833bc0da0324f6c6b59bb8291a0e50af290ae7ff42","sha512":"a74c120353ede32eb22388a9588243c0453c072ec8e2fc1df420a3fa92f799e8224f7f1dfb2c69841ae987a9946f8b28d5c2abba8f928130694621195b07b5f1","ssdeep":"768:ElYw7GuJM+HV0cen/7Kh5rM7V4RxCKg8FW/xsXQUd+FiID65r48Hgp5HRlI:ElX7PMIM7V4R5LFAxTWyuHHgp5HRlI","tlshash":"0b33b649725078b201df9176913f460bb736788ea907816cb95d98ed2e7cd89322bf3c","size":51041,"data":"","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T12:36:00.667927Z","times_seen":436,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"40f33486c7e82a3599949a8d82c3b3cd","sha1":"db1d5cd111c40cef169f44f9c9cd500549fe362c","sha256":"9c6798c006df11e477245aee0c73b729977f1e5048a07749b8551915cd563dd3","sha512":"dd252826130921e83ebc1257a15395cf2181c5f81e52424af0b22314430a5969e1048a3fc842889144daca85374ca9976c331ff03cee1a0dc938d61726232c0e","ssdeep":"","tlshash":"613112f17096902e8163566138556f9c793c6150ef168c7244ecb9b4e885ec67413f8c","size":1507,"data":"","first_seen":"2025-11-25T12:21:30.433689Z","last_seen":"2026-04-05T12:32:55.617775Z","times_seen":221,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/tilt.jquery.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"034d38aaa44f4ac1723c041d215eb146","sha1":"6dccde4d78b77b035d9da0396385ade6141864cb","sha256":"6951eec0a8c0c9b2eab72c4f579765e0f190165822919ddc791bb391096fd7c0","sha512":"bb52fb0e9dc12943f78228e0491a0c4cdc660e5ff9a3e5ce1eea70c1aee3b08d6b3331eb96548b2ac18e7ea8d897cbeb106fbc8219d13cd03f48296d989099a5","ssdeep":"96:H9HqJXyrg9U0S2VcjOB/MjvENOtnUz3FbyTXTyVyURCD3jgupRc:dH8yrbTIMjLtnUziXkRCYr","tlshash":"a7c140847111711e59cbe324d18b0e06a23ae0155c22a87d75fdc9edadbaccd127bfb8","size":5640,"data":"","first_seen":"2023-03-07T01:07:40Z","last_seen":"2026-04-05T12:57:27.403241Z","times_seen":1858,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/easing.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d64116a742887080b3a0abd09e0bdad7","sha1":"8cd4375fc3c60237ea3994209d17a57ccbe6b0c6","sha256":"901eb80cc3f8c274fe6711bd023884258839610c9274082a4881f71e2206b4fb","sha512":"d2a0568b71a2ae4a01db28c02903d35c72e9a1090814e7a8dbe9325d45450ef7f75c29e9a1f0c6f9bfa6843f143817d9e4ae3c25e0e7f814b22ff476f8767783","ssdeep":"","tlshash":"4b4107d9f9c3b75a934275e0162f200bb22e6eb000ed2530c66174aa7d3831d9d3bacd","size":2303,"data":"","first_seen":"2023-03-07T12:05:14Z","last_seen":"2026-04-05T13:50:27.537751Z","times_seen":1761,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/jquery.magnific-popup.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ba6cf724c8bb1cf5b084e79ff230626e","sha1":"f455c5f153f872e52265f87a644ff89fe14a6fb6","sha256":"3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4","sha512":"22c361e44dde632dedaff2625f6631e2fb02ba3b6487097b48baa09f02cd81fd381ebb7d053f525e52e56655b1f8e2b89ddcc0a002e1b0c35c0a6920823641d7","ssdeep":"384:lPhVPXQ2G2XAQyqVxRQ5giCCMLtA15h5/F6l8aZwHwztLCpmst:lPBIt8I5h5t1qkOLCMst","tlshash":"bd921894f2b2b21383a735b8686f70093a729952ed06c855a55d94d87efcec89037f3c","size":20216,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-05T14:52:17.25287Z","times_seen":54705,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/owl.carousel.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"db4c9c39a3af9343842156df81f25d08","sha1":"36af2c0bc454462355584a535897ca5ec6371f3a","sha256":"e04e2b4e27ae9881b1e161954cc00ba16c8c3a0ce73a179824756353efd6c481","sha512":"c402feb4cc9c11a4d2d30c8abf9f4f316e4115c1ce8cdde6df4645a904b5a864eeed249d372cfd52ee0d9def6fe50734d87f4ff4501b477882ef4708d65f2a68","ssdeep":"768:MCcZ1I6+gyfJ78tKOGOrnepjMzZG+uluJe+KSzVc79ThcGP:1cZelJ78m2cw8","tlshash":"70038446b3302d2a8a9b91b0663f020bb13b241de415947d797d9ade6d79c4c213fbb8","size":40402,"data":"","first_seen":"2023-03-07T01:36:39Z","last_seen":"2026-04-05T14:18:19.084097Z","times_seen":1283,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/tj.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5d3d830acdaadeaff7de7ce0822c3d11","sha1":"1a09f51cb91558fde445ed7ed306693b30e0856e","sha256":"0c8716986951d50457d9d3c517f90b78ee0c0cbc43cb5ca3ed011d46ee79ed80","sha512":"60463dcf797c663d452aebe90d84eee917719b1265949a79945e0f3a35c18bdefa73e9a11ccb13f38f64a9f42521b76ce4b2189bb065b14a1780479d153b1d77","ssdeep":"","tlshash":"39e0c0e0359274ca430ab8d0043bd00ae2fb56497caf51f4f908710e795578c529f659","size":362,"data":"","first_seen":"2024-09-04T08:43:24Z","last_seen":"2026-04-05T12:32:55.590541Z","times_seen":391,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/waypoints.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"dfe0eedf8da578f4a4c43b05448c51d9","sha1":"812d7071b4e44b1aa5d5ea6c7ce0b79eb9d46520","sha256":"a0fded691aed767f851011cd3185b928619298a21a0fbdad4808a9e88b490833","sha512":"9084433d6201a0aa45efd1c9bf7c413d08192a3871cea3061b637af2cbef21de39c3dbe9fe14d7a11edc0c44588551212c94ee4866ff737f991e07907cb9b41e","ssdeep":"96:uLBvpnG3nnRh+1pRVKmHyjyYfAPiQc954LT4KN/WzdBUVKdBJEdfdpu531v8L7:uPG3nC19KWssPVpX4KN/eU8Ju4e/","tlshash":"3bf1f9c9b4c7b4221befa0b5d43f060bb33a9e4561098064f194e4da3db4a2da567f38","size":8044,"data":"","first_seen":"2023-03-07T01:07:26Z","last_seen":"2026-04-05T12:32:55.592553Z","times_seen":9255,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/owl-carousel-thumb.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a4ce825d7443f94b264979f96626b467","sha1":"8d7981e2f0b97152f90bd6465114523267676dc3","sha256":"3c440dc3cae731812a91363cd1ff95d7145119a8c7870c88f2c0b0e6b80b7a5c","sha512":"1c3e5dd330a8cfc7aac85512f158b93dc44e85c6d245f607a5db097fa61029fe68fbf21b41eaa10d1e192f1ba68f1a88aac4b01a9da6a15c67d703c75b27d0be","ssdeep":"","tlshash":"ef71feda23a41277949b91dc9ca9948ff63e863ac9801c1e345ca2ddc4de51c11edfb8","size":3645,"data":"","first_seen":"2023-03-08T01:33:10Z","last_seen":"2026-04-03T09:54:22.940839Z","times_seen":70,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/jquery.nice-select.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d13462ec489f9f0c309a811f85feb3d6","sha1":"d9545f8b139eae5b387de1a60a84abe949c7e88f","sha256":"66bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a","sha512":"36a61db3cb2eea38afcb5fd62e85bcc75b593110fbff565f8561bf8dc4502cecd5d64d6b20e0c2a4c8280676abe505ec84a24657bbe2d0b5cb3573e816c33966","ssdeep":"","tlshash":"a4511114b10512f648ff25d37911b147a075493dc42ac14be97e86b21efec02aab6d5f","size":2942,"data":"","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T14:43:46.203714Z","times_seen":7295,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/mail-script.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"df98b7098690619c0c9e6b42b5a77b48","sha1":"d3fe896ed8d259df077220f71fba197ff033d27e","sha256":"01f639fd4c4119503e72e2bf2eb9c8a5984f7c83c7683c82dd0350ee9f63b3fd","sha512":"388e5b13ad785e88d931debc52a84988240a83d798b6bb9f9a1ef4aca1c40d0299962f24e180108f94edd017cdcf6a6194a94720f850ec2e69f522a387af4e41","ssdeep":"","tlshash":"23219b4938b85fb11a87697916bf67067269304f1102fe0231ce5d7c0f4e8a9295d7d6","size":1230,"data":"","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T11:53:21.459403Z","times_seen":840,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"deab99731237b52d1b60dd7d144a15c0","sha1":"1cd0ca53fbd8c8943a02250ab2e4e47a66e420da","sha256":"e1bfbe54fd1f16ed88120eae9549e8cf7d708eb595d8c787930215b22b4497c2","sha512":"74c463682de765e7ed115ad8a626e05ea8789078398e3a568decf38561451b33980fac4ba37c18b4189969ff51680cbe536cbcc99b7a1b3daa3b67ed11d28548","ssdeep":"","tlshash":"48b012422e0891406a0418840431f5cc30748829bd84d9124049411004616d80842d00","size":87,"data":"","first_seen":"2024-04-04T05:50:24Z","last_seen":"2026-04-05T12:32:55.616938Z","times_seen":732,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oudngmslhifnsf.gdmgcyy.com/tj.js","fqdn":"oudngmslhifnsf.gdmgcyy.com","domain":"gdmgcyy.com","tld":"com"},"ip":{"addr":"206.119.188.34","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"75744fb2ef623aad85ddbffa4cf8d621","sha1":"f4b47226e8c7acbb1aed3b53e1e41ab5edd01973","sha256":"3aa8a8bf8c2853aa2eb294e9303ae7aff22aa1d076dd91e1ddbc13b888fa91a8","sha512":"c51b00c3235de1998281f2bc4e9df5883254da82233265b6ed7dd497e1ac776feb5c0172656e4447a8fe67ec675e226ade7b159422af333fdfc12e8cc1825b54","ssdeep":"","tlshash":"77316578374b14a23337f612144b541c62b5d3854b6f08e0e3a576997de6948d04bf7e","size":1546,"data":"","first_seen":"2025-11-25T12:21:30.366924Z","last_seen":"2026-04-05T12:32:55.573609Z","times_seen":221,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/superfish.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ae5f61bdbb22e9677a14a751a1a7d29","sha1":"b2365b4a513ea54d366bfffa7d99c825b178a637","sha256":"f31f14f173559d1bc035ffcec66bdcd19b6685f42a2853bf7eaabd1e4bd9aba0","sha512":"00ef11426efabf6b326190fc4a146e84a6d37754441080fe23c18426ff88c252cb72f065882eaacabf1335c7057a368e7e7b576b3df2cce735228aca45ca900f","ssdeep":"96:p2aSCPKW7HJ8paUup6HdORFpgDX8g4I643VK3Ydp:26WXxHyFpg2I6iT","tlshash":"cb915f89b387a1e39343a1aa217f820aa1b78899f5044458b437daad1f7d8585233f3d","size":4474,"data":"","first_seen":"2023-03-07T12:04:43Z","last_seen":"2026-04-05T11:53:21.438881Z","times_seen":1346,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/hexagons.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7886c815fb394f3580bd97739e264d7f","sha1":"556165fe3bce3ede9de84812c04e0676dff77d0d","sha256":"83b6c8e756da5edbc093bab7f5ebd1ef82c8612839a3daf5d886c8d14be039a9","sha512":"adadf03de71718158bfd8468d54ca7fbbbb8d73d5d3cf8790ee90f83ab839c50e170ba8e39fb5cf299f8e4acb59204f6b4500e601dd6cf2a1fce03360c582bcb","ssdeep":"","tlshash":"116164443d1444fc30bf4a95b9b4bb2e3d3f6f26f18121a1516b83920297c96243af9b","size":3421,"data":"","first_seen":"2025-01-09T12:30:29.79163Z","last_seen":"2026-04-05T01:50:05.631527Z","times_seen":123,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/vendor/jquery-2.2.4.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b354cc9d56a1da6b0c77604d1b153850","sha1":"a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732","sha256":"fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46","sha512":"b6dcbe11a0f90ef61a071fdf7d8c637f95fc77969cffda9f291772b4fa2c2f9020eea2916da6f1113d746afeafbf592d0db79fb2f2f5400bc0a0fc10a066ba98","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a98Q:v4J+OlfOhWppCW6G9a98HrU","tlshash":"1783c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","size":85577,"data":"","first_seen":"2023-03-07T01:06:18Z","last_seen":"2026-04-05T13:55:18.071595Z","times_seen":7438,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/hoverIntent.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6fdf4814817af1a513273be884166dfd","sha1":"c48a39ec831f050690061910c363d2bcf76759eb","sha256":"61168602288a63df2b3f98292b8dbea4e021ec0fd683444e49e4d95766a8a0e5","sha512":"d0b0d42898f0c8b9bb7780df4b34f4349876e8eda18e8ed6252358c3b1785e02158581cf3a05086a136a11523c9b49418af2f4614a9cb3280b4b1ff42b850bc3","ssdeep":"96:jd7d4GD9qPUUzVKEo5OcuUtUXcsCP0QkjtYbvsqyJmW:ZXTeVKEyOcuUY560QkjebvsqysW","tlshash":"c8e1410c220a15165db7a725e76eb07af72742ab5200818079ee674c3fb1428433bfdf","size":7078,"data":"","first_seen":"2023-03-07T14:45:29Z","last_seen":"2026-04-05T11:53:21.433798Z","times_seen":293,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/jquery.ajaxchimp.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8eace32bdc314e746f5b01015115b3a8","sha1":"90395aa2ff153cfb6d5c256a3f70bc4d545a3190","sha256":"3c7c17459ec57867f6812625f1b95e2f878363ca728b92a5968d2fc8e60d9712","sha512":"02b2627218ec753585ccbd6ff88bd53affc877cf1e04dda7ef7a7feea5685a7d63edf562dd2cc046138bc2bb3ce6212a473c8462bcf294795013e71f35c1fc42","ssdeep":"96:VRB4Acgk8cKYEh0ig0QcghICycacGDCDnDAoDATbk9ZtSqMDSDHDHDU65:VRBHcgk8cKYEhP5CycacGDCDnDAoDATy","tlshash":"01a10d642db726c1112720bf97ef969270a580634418fe08bc0c62814fe0dacbfa93ed","size":4820,"data":"","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T11:53:21.483032Z","times_seen":967,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"70d3fda195602fe8b75e0097eed74dde","sha1":"c3b977aa4b8dfb69d651e07015031d385ded964b","sha256":"a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66","sha512":"51affb5a8cfd2f93b473007f6987b19a0a1a0fb970ddd59ef45bd77a355d82abbbd60468837a09823496411e797f05b1f962ae93c725ed4c00d514ba40269d14","ssdeep":"384:+CbuG4xGNoDic2UjKPafxwC5b/4xQviOJU7QzxzivDdE3pcGdjkd/9jt3B+Kb964:zb4xGmiJfaf7gxQvVU7eziv+cSjknZ3f","tlshash":"1c82a3cc3291b06643a79167a06f960fb2339979614e9410f199f2d87c70ef9913fc7a","size":19188,"data":"","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-04-05T14:43:46.226211Z","times_seen":104029,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/main.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1bf17910a94d3c25989a1d236bc0a419","sha1":"cc3be3dd8447175a7958f359f93eb774f8e090c5","sha256":"2d20a7c7a6abc5d3a2defd69caaa64bbebab437df7ccff596794ccf49509b855","sha512":"7bea598df265f8e4de36cc04b0415de8fe80f415a1a06d989c6a7c85064f386155be8ee3fc4c35fdc1711020ef939caabc2ec51ff9445b5a104360fb66b16e09","ssdeep":"192:1FJxhvCwDIOy2ypwuygDQyIStCjckgDQygoEgDQyTgvyRgtymkgsuxaLZV:1nDWwuygDFockgDOoEgDhgggtkgvxwV","tlshash":"6f42204af4b110234163b07a0bfe52842e78810b8908fd617d9d47a85f9d75fb3b6be9","size":12304,"data":"","first_seen":"2025-01-09T12:30:29.793795Z","last_seen":"2026-04-03T09:54:22.928187Z","times_seen":64,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"0c62e4b2ef2dd122138f49484f5df37e","sha1":"ff69377d20545562b648b7607e40251bcb0a004f","sha256":"97e41672c8ac279bcf8d69500df45bf1b8650ecc272a99d9bcb34872c99edc56","sha512":"86c681a67693b3e00ff96b85ed22213d83750667670e248ae8e60a8e582e6c05bb650446a2feef2103d7c214ae2dcdaf5f6968fa0a100efa2996337571d24417","ssdeep":"","tlshash":"8ea00257ad09d5949a00acc84436f5cc6021994e7dd8dd6789b852155d626ed0852940","size":64,"data":"","first_seen":"2024-04-04T05:50:24Z","last_seen":"2026-04-05T12:32:55.618286Z","times_seen":731,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"dthzs.com/static/img/testimonial/t3.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.262Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/testimonial/t3.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-1641\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5697,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 80x80, components 3","md5":"8cd159fcf1330451a93a09a35fbc0837","sha1":"ccb25c7a18a1592a75ac2a692503b03d339fa333","sha256":"71a939dbc8bdde237b2d9fbca4377456cc7a2cfc13054fd79d9141c4f17acb45","sha512":"082580dece68c023bc421c6701c7c6e3fed06bd78db0ec0321e113792cba3e784294db73f023bb37ebc17f1bac9ed860645a8fa3ae72148969b90744157d628b","ssdeep":"96:nucNGP/jbaICynshcO/EhM9iQ9CJkmcWnbcsAhOlZ1UF5Pd+oAv94B:nwPblCyshxeg9CJtDeDNEoAls","tlshash":"e0c19f6a83bb67c7e282fe60851ba58e4c039fc922a70819d149f721e47e5f3819810f","first_seen":"2025-01-09T12:30:29.720507Z","last_seen":"2026-03-22T12:15:34.54914Z","times_seen":27,"resource_available":false,"data":null}},"time_used":606,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":606,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/css/magnific-popup.css","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.244Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/css/magnific-popup.css HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-1b27\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6951,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"30b593b71d7672658f89bfea0ab360c9","sha1":"d6963db6faa9294387bb3175813a61bc3f859437","sha256":"45d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e","sha512":"58440dbfd777facab21e3aea519a1b0e11404590e4a36c2959d7dca6fe3896cca9b12b8c3b490719ddcc43caebb019ff41adfd5688e985d53a08c92925498357","ssdeep":"192:hRQ4fS5bzRyIy++mcS3n2s96/LEpeXHFykgxe:Alx3pSFh","tlshash":"a5e11bd39fb22305e525e9a8a657a76973120013e70fcc6bbfd12448df8d7c942a3b85","first_seen":"2023-04-05T05:38:02Z","last_seen":"2026-04-05T15:07:36.856779Z","times_seen":21383,"resource_available":true,"data":null}},"time_used":307,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":307,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/css/main.css","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/css/main.css HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-1469e\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":83614,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text, with very long lines (551)","md5":"726c3480ba0ec8cc5a7cfdc9ada85b77","sha1":"e296e4139567ce4406d9924ce67944659d36e230","sha256":"4ef65134ff029a21779ae04f733be96e21c1b9f62f5bdb81c8e0b40a2f0d0210","sha512":"0d332b3e20ee925a82dd4e6eb97bc0f1952702e87209da6ec021bb675f0edc22ff9297e89516dfdae63c57e2b24e114b4ed1c4af4edfbed03aa3ce25ec93d56d","ssdeep":"768:ZS93m0+Fxxefe+eZeEezeYhN6g+GrDjDZDODvleBX/AB8lYHF9QZiOFK:ZSlm0+sGZMDCYhKwuB6q0iOo","tlshash":"26833e677ab312413827da6827eb964573389003e50fddfc7e9d7255cf0a6d800f2aa9","first_seen":"2025-01-09T12:30:29.765686Z","last_seen":"2026-03-22T12:15:34.553777Z","times_seen":40,"resource_available":false,"data":null}},"time_used":310,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":310,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/superfish.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/superfish.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-117a\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4474,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4246)","md5":"0ae5f61bdbb22e9677a14a751a1a7d29","sha1":"b2365b4a513ea54d366bfffa7d99c825b178a637","sha256":"f31f14f173559d1bc035ffcec66bdcd19b6685f42a2853bf7eaabd1e4bd9aba0","sha512":"00ef11426efabf6b326190fc4a146e84a6d37754441080fe23c18426ff88c252cb72f065882eaacabf1335c7057a368e7e7b576b3df2cce735228aca45ca900f","ssdeep":"96:p2aSCPKW7HJ8paUup6HdORFpgDX8g4I643VK3Ydp:26WXxHyFpg2I6iT","tlshash":"cb915f89b387a1e39343a1aa217f820aa1b78899f5044458b437daad1f7d8585233f3d","first_seen":"2023-03-07T12:04:43Z","last_seen":"2026-04-05T11:53:21.438881Z","times_seen":1346,"resource_available":true,"data":null}},"time_used":598,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":598,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/tj.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.250Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /tj.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 362\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\netag: \"69535c12-16a\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":362,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (361)","md5":"5d3d830acdaadeaff7de7ce0822c3d11","sha1":"1a09f51cb91558fde445ed7ed306693b30e0856e","sha256":"0c8716986951d50457d9d3c517f90b78ee0c0cbc43cb5ca3ed011d46ee79ed80","sha512":"60463dcf797c663d452aebe90d84eee917719b1265949a79945e0f3a35c18bdefa73e9a11ccb13f38f64a9f42521b76ce4b2189bb065b14a1780479d153b1d77","ssdeep":"","tlshash":"39e0c0e0359274ca430ab8d0043bd00ae2fb56497caf51f4f908710e795578c529f659","first_seen":"2024-09-04T08:43:24Z","last_seen":"2026-04-05T12:32:55.590541Z","times_seen":391,"resource_available":true,"data":null}},"time_used":310,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":310,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/iphone.png","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.255Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/iphone.png HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-37e7d\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":228989,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 507 x 827, 8-bit/color RGBA, non-interlaced","md5":"1e4bd6c4e8c4e7b2cba80a8375c52c92","sha1":"e9939350a5a6392a6790466c6e19b452a236c4f1","sha256":"f6be83be6e10d8cf9f3c7bdec72afc5ae2082f99d8eb05ce5f0843ea27ad7d3d","sha512":"fec81716b9d4de26dc16368d15d2dda2bc8eb92c1be35f315e35d1bb7101821e2838c7b973d0d2ad4ab47004fe47c7be149fa5164403d5029df169e087a688d6","ssdeep":"6144:3Yr5+2C+zsXr+PFcJMZEGis+e/fMmTXTaCANeCbqf9:ItfzsXrYZEXhEfMmbTaZbql","tlshash":"40242302816f6563a23d0c5804c8aef0d818de7953dffff6635cb399be523c16089a49","first_seen":"2023-11-30T19:01:47Z","last_seen":"2026-03-22T12:15:34.547878Z","times_seen":28,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":608,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/jquery.ajaxchimp.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.278Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/jquery.ajaxchimp.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-12d4\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4820,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"8eace32bdc314e746f5b01015115b3a8","sha1":"90395aa2ff153cfb6d5c256a3f70bc4d545a3190","sha256":"3c7c17459ec57867f6812625f1b95e2f878363ca728b92a5968d2fc8e60d9712","sha512":"02b2627218ec753585ccbd6ff88bd53affc877cf1e04dda7ef7a7feea5685a7d63edf562dd2cc046138bc2bb3ce6212a473c8462bcf294795013e71f35c1fc42","ssdeep":"96:VRB4Acgk8cKYEh0ig0QcghICycacGDCDnDAoDATbk9ZtSqMDSDHDHDU65:VRBHcgk8cKYEhP5CycacGDCDnDAoDATy","tlshash":"01a10d642db726c1112720bf97ef969270a580634418fe08bc0c62814fe0dacbfa93ed","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T11:53:21.483032Z","times_seen":967,"resource_available":true,"data":null}},"time_used":598,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":598,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/owl-carousel-thumb.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/owl-carousel-thumb.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-e3d\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3645,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3644)","md5":"a4ce825d7443f94b264979f96626b467","sha1":"8d7981e2f0b97152f90bd6465114523267676dc3","sha256":"3c440dc3cae731812a91363cd1ff95d7145119a8c7870c88f2c0b0e6b80b7a5c","sha512":"1c3e5dd330a8cfc7aac85512f158b93dc44e85c6d245f607a5db097fa61029fe68fbf21b41eaa10d1e192f1ba68f1a88aac4b01a9da6a15c67d703c75b27d0be","ssdeep":"","tlshash":"ef71feda23a41277949b91dc9ca9948ff63e863ac9801c1e345ca2ddc4de51c11edfb8","first_seen":"2023-03-08T01:33:10Z","last_seen":"2026-04-03T09:54:22.940839Z","times_seen":70,"resource_available":true,"data":null}},"time_used":593,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":593,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.685Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://dthzs.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 06 Jan 2026 19:22:36 GMT\r\nexpires: Wed, 06 Jan 2027 19:22:36 GMT\r\ncache-control: public, max-age=31536000\r\nage: 167902\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-05T14:47:51.903491Z","times_seen":716802,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":138,"dns":0,"connect":20,"send":0,"wait":8,"receive":3,"ssl":114},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/favicon.ico","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:59.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:59 GMT\r\ncontent-type: text/html\r\ncontent-length: 138\r\netag: \"6952cb75-8a\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-04-05T14:49:33.252639Z","times_seen":245599,"resource_available":true,"data":null}},"time_used":161,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/images/defaultpic.gif","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /images/defaultpic.gif HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/gif\r\nlast-modified: Tue, 30 Dec 2025 04:58:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535bf8-1908\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6408,"size_decoded":0,"mime_type":"image/gif","magic":"PNG image data, 512 x 330, 8-bit/color RGBA, non-interlaced","md5":"a22087b8272e7e8c1ef5702ba943ad93","sha1":"02865bfb0c215e061f515a77882657a9aceee9e1","sha256":"f4e3729058237486921233ba5eb99c641a4bff858279fb7d36b48ab42ab9989a","sha512":"52957b77ab19638310ae7c17ca7a183e00c6128dc14cc908faea542bf4da0067d751a16f386fbb7cf24c5a6515b5f387ae8e1a7cf2201e0051a3a22559b25315","ssdeep":"192:kvDGuYUHXKP1EfVyS2U/XOyAaC9EOahAHjlZB:QDrno+VyS2UvO/lEDhyF","tlshash":"b4d13acab68d8e800f4d8e3d435749b4f1b32f5812a91ffb399c2aae404cb085b4db51","first_seen":"2024-04-04T05:50:24Z","last_seen":"2026-04-05T12:32:55.603216Z","times_seen":506,"resource_available":false,"data":null}},"time_used":602,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":602,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/hoverIntent.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/hoverIntent.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-1ba6\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7078,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"6fdf4814817af1a513273be884166dfd","sha1":"c48a39ec831f050690061910c363d2bcf76759eb","sha256":"61168602288a63df2b3f98292b8dbea4e021ec0fd683444e49e4d95766a8a0e5","sha512":"d0b0d42898f0c8b9bb7780df4b34f4349876e8eda18e8ed6252358c3b1785e02158581cf3a05086a136a11523c9b49418af2f4614a9cb3280b4b1ff42b850bc3","ssdeep":"96:jd7d4GD9qPUUzVKEo5OcuUtUXcsCP0QkjtYbvsqyJmW:ZXTeVKEyOcuUY560QkjebvsqysW","tlshash":"c8e1410c220a15165db7a725e76eb07af72742ab5200818079ee674c3fb1428433bfdf","first_seen":"2023-03-07T14:45:29Z","last_seen":"2026-04-05T11:53:21.433798Z","times_seen":293,"resource_available":true,"data":null}},"time_used":598,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":598,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/jquery.magnific-popup.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/jquery.magnific-popup.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-4ef8\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20216,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20087)","md5":"ba6cf724c8bb1cf5b084e79ff230626e","sha1":"f455c5f153f872e52265f87a644ff89fe14a6fb6","sha256":"3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4","sha512":"22c361e44dde632dedaff2625f6631e2fb02ba3b6487097b48baa09f02cd81fd381ebb7d053f525e52e56655b1f8e2b89ddcc0a002e1b0c35c0a6920823641d7","ssdeep":"384:lPhVPXQ2G2XAQyqVxRQ5giCCMLtA15h5/F6l8aZwHwztLCpmst:lPBIt8I5h5t1qkOLCMst","tlshash":"bd921894f2b2b21383a735b8686f70093a729952ed06c855a55d94d87efcec89037f3c","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-05T14:52:17.25287Z","times_seen":54705,"resource_available":true,"data":null}},"time_used":597,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/owl.carousel.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/owl.carousel.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-9dd2\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":40402,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32068), with CRLF line terminators","md5":"db4c9c39a3af9343842156df81f25d08","sha1":"36af2c0bc454462355584a535897ca5ec6371f3a","sha256":"e04e2b4e27ae9881b1e161954cc00ba16c8c3a0ce73a179824756353efd6c481","sha512":"c402feb4cc9c11a4d2d30c8abf9f4f316e4115c1ce8cdde6df4645a904b5a864eeed249d372cfd52ee0d9def6fe50734d87f4ff4501b477882ef4708d65f2a68","ssdeep":"768:MCcZ1I6+gyfJ78tKOGOrnepjMzZG+uluJe+KSzVc79ThcGP:1cZelJ78m2cw8","tlshash":"70038446b3302d2a8a9b91b0663f020bb13b241de415947d797d9ade6d79c4c213fbb8","first_seen":"2023-03-07T01:36:39Z","last_seen":"2026-04-05T14:18:19.084097Z","times_seen":1283,"resource_available":true,"data":null}},"time_used":593,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":593,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/404.html","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /404.html HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:58 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 29 Dec 2025 18:41:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6952cb75-8a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-04-05T14:49:33.252639Z","times_seen":245599,"resource_available":true,"data":null}},"time_used":153,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":153,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/home-banner-bg.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.676Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/home-banner-bg.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/static/css/main.css\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:58 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-c241\"\r\nexpires: Sat, 07 Feb 2026 18:00:58 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":49729,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Macintosh), datetime=2018:09:23 16:02:36], baseline, precision 8, 1920x888, components 3","md5":"801dc89c0df4eae66bca18d40a476475","sha1":"9de51018ec18585a7d0087d35a0c826b6cbc7f4f","sha256":"0f0923b0f15913028e681ad067f9d5df5f21b03b74e056cf65d0eb179b8daac4","sha512":"5cb793d86b67fa48fc2d69b3e5586e156388ee2d39eacd45a61c69103dfe4f44c45bd5eaa772c1eb61d1c5b69dd4ba2dc3a105c6b254b566add019ac2d5dd81a","ssdeep":"768:Q/kS77/kjVb1YyRh/YEb4bRWVCaMumukY:Q72Vb1LLb0wVaumuP","tlshash":"6f237c27b318dc62e4c4a1315a51dac791679c6187bb0a8278dd6a303bb3f8d7d3a353","first_seen":"2025-01-09T12:30:29.757113Z","last_seen":"2026-04-03T09:47:15.791545Z","times_seen":68,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/css/owl.carousel.css","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/css/owl.carousel.css HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-10bd\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4285,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"bf23e63d0afebc11d844cd32b090fb6b","sha1":"779f876e61d14ce915401b4af00e5f67393decb2","sha256":"d5d23027b15224f7ccf9ef91f47154a4d82546ce6315b3071cf4377832beb78d","sha512":"4ee08b1659ec7c5b9d035069fa3369e4e0fa7c2b6d66c42c837fa773ffffdb54e5b9a98b267a3a9ab5471e017dd9c4cd45790cba709e58f8a55af6580ffc89ce","ssdeep":"96:39Sm4+nXvjBAe2uQm2JJUw8SB1UerzTjFJFngsJo4Vt6m:NSm4+nX7Bim2zUSB1UerzTKsTum","tlshash":"0691fde72215110e283b53f0dbae9a16fd3d8463d9020498b6ff96094ba9e4c511ff6f","first_seen":"2023-04-07T10:30:36Z","last_seen":"2026-04-05T11:53:21.485014Z","times_seen":430,"resource_available":false,"data":null}},"time_used":306,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":306,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/testimonial/t1.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/testimonial/t1.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-1979\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6521,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 80x80, components 3","md5":"0ce6c699e6b39ca8eb49c4c8206e0b5d","sha1":"f043c599e738282ef33027af9977f07e63d0be34","sha256":"ee9939051fb783f7e30aeb7b08c9f4a7404201a7edee8563de6de3d99d19a223","sha512":"2d6e17078294c538a28c0eb9ba67a4ba514d7ea6260a6e9473f47831a621aa4d612d869aed1f7094df15540a7a6e6e80de4df220db0875338843c9753bd9c786","ssdeep":"192:nYIUmjJTpXfHYLhgAiHkV5NV0/0a/6RID50hdtprS8q:nLU0JTpXMhJ7NqjynPrBq","tlshash":"3cd19e84764f05ccff4b54354908ea32e640f784471786e936eeda09da264bf37890c7","first_seen":"2025-01-09T12:30:29.723657Z","last_seen":"2026-03-22T12:15:34.531474Z","times_seen":27,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":608,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/tilt.jquery.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/tilt.jquery.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-1608\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5640,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5640), with no line terminators","md5":"034d38aaa44f4ac1723c041d215eb146","sha1":"6dccde4d78b77b035d9da0396385ade6141864cb","sha256":"6951eec0a8c0c9b2eab72c4f579765e0f190165822919ddc791bb391096fd7c0","sha512":"bb52fb0e9dc12943f78228e0491a0c4cdc660e5ff9a3e5ce1eea70c1aee3b08d6b3331eb96548b2ac18e7ea8d897cbeb106fbc8219d13cd03f48296d989099a5","ssdeep":"96:H9HqJXyrg9U0S2VcjOB/MjvENOtnUz3FbyTXTyVyURCD3jgupRc:dH8yrbTIMjLtnUziXkRCYr","tlshash":"a7c140847111711e59cbe324d18b0e06a23ae0155c22a87d75fdc9edadbaccd127bfb8","first_seen":"2023-03-07T01:07:40Z","last_seen":"2026-04-05T12:57:27.403241Z","times_seen":1858,"resource_available":true,"data":null}},"time_used":600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.699Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://dthzs.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 06 Jan 2026 19:22:36 GMT\r\nexpires: Wed, 06 Jan 2027 19:22:36 GMT\r\ncache-control: public, max-age=31536000\r\nage: 167902\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-05T14:47:51.903491Z","times_seen":716802,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":59,"dns":1,"connect":20,"send":0,"wait":11,"receive":10,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-08T18:00:56.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:56 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; path=/\nserver_name_session=c76854b3a8fc0d85f1e6f5534d7af379; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery:2.2.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Magnific Popup","description":"Magnific Popup is a responsive lightbox \u0026 dialog script with focus on performance and providing best experience for user with any device.","website":"https://dimsemenov.com/plugins/magnific-popup/","common_platform_enumeration":"","icon":"Magnific Popup.png","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Popper:1.12.9","description":"Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.","website":"https://popper.js.org","common_platform_enumeration":"","icon":"Popper.svg","categories":["Miscellaneous"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]}],"data":{"size":46728,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2380), with CRLF, LF, NEL line terminators","md5":"ddf52362cef2fbc7f8dd5b719e27fb54","sha1":"de60f8e78da885d9f19cb04bee7dae8d198f77b9","sha256":"36456b0ab7a443bcbb6b354a1b0bec558a2ea8f3d1d263d8a8267229d6e228dc","sha512":"1b50e7a413f6242d0c2f19175628bcf66e9abaebe19c92f30d82c0799c6db76cc15846c1903a33ae587b4352e46629d00eacc674f49c06a63eec1001676ad0e3","ssdeep":"768:5YQ2lSzqyYR/QhOhYvOYzazcnMqOYOLqp87Sh9iuaCd9+207/c7DB:elcPO3Sv9zqcnMhg87SevDc7N","tlshash":"e223b6d170682d7f092b8799f4722b9ee4afdc3fd62950b4b9bf548612a6e310804f91","first_seen":"2026-01-08T18:01:27.480462Z","last_seen":"2026-01-08T18:01:27.480462Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1264,"timings":{"blocked":480,"dns":165,"connect":153,"send":0,"wait":305,"receive":0,"ssl":159},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/quote.png","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/quote.png HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-44e\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1102,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 42, 8-bit/color RGBA, non-interlaced","md5":"20ffb373684f35bbe410bf33aea9af50","sha1":"4674566f737c5bd89a895ef4098f812d5beb2f06","sha256":"6416f1cf53f2de6fd6e892eb082920cc83e026e6481f73f003a7c746fcc4f235","sha512":"048157e1a7543f6241a351090c54601d2ddc86a48845a53e002722c573051133c72a020b89c31ca38ad8233d10d73b3992de24e496877f59226fb2512af4cfb4","ssdeep":"","tlshash":"5711c3d33e9dcc3e4bf4ff209be2cb082032a5e10832b29518d8952148a20ca584829f","first_seen":"2023-11-30T19:01:46Z","last_seen":"2026-04-03T09:54:22.910024Z","times_seen":29,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":608,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/main.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/main.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-3010\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12304,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1695)","md5":"1bf17910a94d3c25989a1d236bc0a419","sha1":"cc3be3dd8447175a7958f359f93eb774f8e090c5","sha256":"2d20a7c7a6abc5d3a2defd69caaa64bbebab437df7ccff596794ccf49509b855","sha512":"7bea598df265f8e4de36cc04b0415de8fe80f415a1a06d989c6a7c85064f386155be8ee3fc4c35fdc1711020ef939caabc2ec51ff9445b5a104360fb66b16e09","ssdeep":"192:1FJxhvCwDIOy2ypwuygDQyIStCjckgDQygoEgDQyTgvyRgtymkgsuxaLZV:1nDWwuygDFockgDOoEgDhgggtkgvxwV","tlshash":"6f42204af4b110234163b07a0bfe52842e78810b8908fd617d9d47a85f9d75fb3b6be9","first_seen":"2025-01-09T12:30:29.793795Z","last_seen":"2026-04-03T09:54:22.928187Z","times_seen":64,"resource_available":true,"data":null}},"time_used":590,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":590,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/screenshots/s2.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/screenshots/s2.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-c399\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50073,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 262x468, components 3","md5":"6ed2b5091ff98a0f94ea4cbb271a7cb3","sha1":"8aa733cd885bd5a76e0c0c8b5cde085856a61211","sha256":"84867a296e01fd9b0926d352875759b49a48617823f82012a3623dcbbe1f9081","sha512":"ee84029f1b3ada9ecf08d942a2b4c21258135dca415bd9e26cc436d1ce62ea3060d713ee0ba6083db6d9c6d722caba907607a6c7baff1fe55acdba83ba9c6e97","ssdeep":"768:1qUUbCczYNSiO7tvPPP8CZbXrcTgGoF3/HmxorkkkktYBdS:n8zYqdPPNrcU3/HWN7S","tlshash":"2723d0bbd7d73e50b224e35056a6d8877104639cbc4a58608369382b9ff2e0c7a7b0d7","first_seen":"2025-01-09T12:30:29.741294Z","last_seen":"2026-03-22T12:15:34.557605Z","times_seen":27,"resource_available":false,"data":null}},"time_used":604,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":604,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://dthzs.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 6157\r\ncf-ray: 9bad98edc8968be6-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03fa9-4af4\"\r\nlast-modified: Mon, 04 May 2020 16:15:37 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 2969389\r\nexpires: Tue, 29 Dec 2026 18:00:57 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=vj0OpN7T7wAta5y84hwvM0dQvttx%2F3q%2Bv93PNkyQpW8sL1rsbO7rKAemc80V1q7lRs%2Bmh8OfcjqSS2GSRCLzYt1tkXO726DjmF%2FNTDeHZu4miisquxT%2Fg9cP0P0TRhAENuCXFM0x\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19188,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (19015)","md5":"70d3fda195602fe8b75e0097eed74dde","sha1":"c3b977aa4b8dfb69d651e07015031d385ded964b","sha256":"a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66","sha512":"51affb5a8cfd2f93b473007f6987b19a0a1a0fb970ddd59ef45bd77a355d82abbbd60468837a09823496411e797f05b1f962ae93c725ed4c00d514ba40269d14","ssdeep":"384:+CbuG4xGNoDic2UjKPafxwC5b/4xQviOJU7QzxzivDdE3pcGdjkd/9jt3B+Kb964:zb4xGmiJfaf7gxQvVU7eziv+cSjknZ3f","tlshash":"1c82a3cc3291b06643a79167a06f960fb2339979614e9410f199f2d87c70ef9913fc7a","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-04-05T14:43:46.226211Z","times_seen":104029,"resource_available":true,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":18,"receive":1,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/images/thumbnail.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.254Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /images/thumbnail.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535bf8-335a\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13146,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x360, components 3","md5":"242054f72d395d0977a478cbf4f4c670","sha1":"068af113d954d5c9ed654614f3bdf4a880e8f72c","sha256":"b5d2cde64008ccff1240ca3c991fcf06a5510db9d59772cb63c86d9c39d26a97","sha512":"ca85ce09c59fb03c8961a3d4d5b3ac8ff2491e3646a23fff8e914c935dc119123297afbb4f00ead6eeb466a6108a6e05c0582a93770b3564c184209434ac7755","ssdeep":"384:Vs3Wd9gkhTGlFfRMaB/88A6GTR2CZNhPFkJuh:G3Wf1GltD88A66jZFH","tlshash":"f942bfa857cd1b41eeda573a9d9c3a202f269d01f7025d8bdcc15ab0718e23056dd3e8","first_seen":"2025-04-04T10:01:11.451144Z","last_seen":"2026-04-05T12:32:55.607557Z","times_seen":223,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":608,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/css/nice-select.css","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/css/nice-select.css HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-fa7\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4007,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a7ace323b9fc8a831a6e64feb23fa0b9","sha1":"9317ad29306bc72eb3fa92981be8141fcd394e7c","sha256":"c13280e79f74109c5e3854822c0f0c972d0a57245c95b0b3762f9788bd918f8d","sha512":"b87b828a0726bf70724ea050404c278175a4ec4fcd68f60ff821609699173e74506d2b9b26610436087e8ad44361b595d1f519994cfb7c3ffe24375e4050f9f8","ssdeep":"","tlshash":"2781e2779b530141642a876fafd62b582339c003b826cdacbbdd960b8f0d5dc94e6747","first_seen":"2023-04-05T04:47:26Z","last_seen":"2026-04-05T12:36:00.666273Z","times_seen":2920,"resource_available":false,"data":null}},"time_used":307,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":307,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/testimonial/t4.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.263Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/testimonial/t4.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-1ceb\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7403,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 80x80, components 3","md5":"42e521a5342f0f95c8fe7287a96d07ed","sha1":"573955560a6b99279a29a737c4657b9990c0b6ac","sha256":"987807b8bee2d18f75f876c56b6e156dfc3cfa43ce0fd43373cf8895e281d30b","sha512":"b6456d884dd28f8d331b550a584f7199201764158aff5c636c3393c14bc52e8a9ca54039b7572500179d588596b96153e4c7d3934b05a7ea0a36075b04b341ff","ssdeep":"192:nZuan7zx1t9oCbvIKYDUQeMyjju/dsBvg9JNC7vEAmB:nZR7zft9oCbvIzFeLy/KeJNUvEAmB","tlshash":"0be1cfb3571bca38cfa18d520807b689dde8cf4d0b07710b50188e89ced9cb78bd6286","first_seen":"2025-01-09T12:30:29.727009Z","last_seen":"2026-03-22T12:15:34.525133Z","times_seen":27,"resource_available":false,"data":null}},"time_used":605,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":605,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/jquery.nice-select.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.283Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/jquery.nice-select.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-b7e\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2942,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2822)","md5":"d13462ec489f9f0c309a811f85feb3d6","sha1":"d9545f8b139eae5b387de1a60a84abe949c7e88f","sha256":"66bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a","sha512":"36a61db3cb2eea38afcb5fd62e85bcc75b593110fbff565f8561bf8dc4502cecd5d64d6b20e0c2a4c8280676abe505ec84a24657bbe2d0b5cb3573e816c33966","ssdeep":"","tlshash":"a4511114b10512f648ff25d37911b147a075493dc42ac14be97e86b21efec02aab6d5f","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T14:43:46.203714Z","times_seen":7295,"resource_available":true,"data":null}},"time_used":591,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":591,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.681Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/poppins/v24/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://dthzs.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 8000\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 07 Jan 2026 19:56:18 GMT\r\nexpires: Thu, 07 Jan 2027 19:56:18 GMT\r\ncache-control: public, max-age=31536000\r\nage: 79480\r\nlast-modified: Mon, 15 Sep 2025 16:33:57 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8000,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 8000, version 1.0","md5":"72993dddf88a63e8f226656f7de88e57","sha1":"179f97ec0275f09603a8db94d4380eb584d81cd5","sha256":"f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149","sha512":"7c20165f9d22a86341e841fd58526209017dcde2afe2d0d2a89fe853d95dc69f658d25cf798c71f452dab09843fc808c1ae87a60b1284134163abf5a1d93e50a","ssdeep":"192:GDonmfrEdXT8WrxzRXwyQo3zGEOM7Y2hOMgWnsfYSjv4ENFGwrlKJ:8onPxTzjgyQSzLPXOTIYHJAJ","tlshash":"08f1b0ffa92456c4df692475a5044f27623652b4dd35cb2f496f3e12d2d74224bcc4c1","first_seen":"2023-04-05T18:53:14Z","last_seen":"2026-04-05T14:48:15.130443Z","times_seen":204211,"resource_available":false,"data":null}},"time_used":161,"timings":{"blocked":75,"dns":0,"connect":7,"send":0,"wait":10,"receive":1,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/css/bootstrap.css","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.242Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/css/bootstrap.css HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-2ccb9\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":183481,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"eabfbeeb69bcd7096f1096c8853022ea","sha1":"4397b30a538c8e287034b0a67be353c92716df7c","sha256":"5beb0011ec164ce463074fe96489be6b6927568ebf8ae48b6337a50fc3149c19","sha512":"754c81f5b066b5f5986aaf84e5f31a644f1aed3948645c6a353a2efb211abc256c424cafbb3d2eb7f66ab805b5eb6cc8eff356e32b16c08731ace1a78cc7cae5","ssdeep":"1536:heOVkBgIEbUJJwmxh6SAcsSV33UtusKRMQmUix9Q0UfyYjkj0Y7j+Ye:hLTUJJdP0xYjkj0Y7j+Ye","tlshash":"b304661ae8f22959180b816c16ec67a5737d8087c62eeeb97d5f33448f4d1c58db2e8c","first_seen":"2023-04-20T11:04:09Z","last_seen":"2026-04-03T09:54:22.915915Z","times_seen":127,"resource_available":false,"data":null}},"time_used":161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/screenshots/s3.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/screenshots/s3.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-dbd9\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":56281,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 263x468, components 3","md5":"c301abd6263644da76e9bd4da0e9299a","sha1":"a161102f8ac367e7b0a549c716fbb40aca1ecc05","sha256":"6c1dafb8dd5daddb50537940095753bcdda0380ff1cc11a4527d122dbcef6741","sha512":"92d69eaf79729d81f40a4d2c1ccbfc7faca7efa49427cba0d041f693ddb8035b12f3ed532b127f473eebdeceb5fc77ceaac1d4b2195f01a4392b2296dd4f3683","ssdeep":"1536:mKHC/OCDa4AJVcBgyEBnrRTFhwhEnkpE6l8Lckm0My:mkC/OMrS75dWEnoE6lc1","tlshash":"4d43d15cbb121c8f93ef1d45a2be5f5abb5b15c50247ba70b1b0dcd236a52162306ccd","first_seen":"2025-01-09T12:30:29.732487Z","last_seen":"2026-03-22T12:15:34.549652Z","times_seen":27,"resource_available":false,"data":null}},"time_used":603,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":603,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/mail-script.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.286Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/mail-script.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-4ce\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1230,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"df98b7098690619c0c9e6b42b5a77b48","sha1":"d3fe896ed8d259df077220f71fba197ff033d27e","sha256":"01f639fd4c4119503e72e2bf2eb9c8a5984f7c83c7683c82dd0350ee9f63b3fd","sha512":"388e5b13ad785e88d931debc52a84988240a83d798b6bb9f9a1ef4aca1c40d0299962f24e180108f94edd017cdcf6a6194a94720f850ec2e69f522a387af4e41","ssdeep":"","tlshash":"23219b4938b85fb11a87697916bf67067269304f1102fe0231ce5d7c0f4e8a9295d7d6","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T11:53:21.459403Z","times_seen":840,"resource_available":true,"data":null}},"time_used":590,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":590,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/css/font-awesome.min.css","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/css/font-awesome.min.css HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-791c\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31004,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (30837), with CRLF line terminators","md5":"a0e784c4ca94c271b0338dfb02055be6","sha1":"88af80502c44cd52ca81ffe7dc7276b7eccb06cf","sha256":"820e169ce24824066d9973fd4b6561aae9dcd6dbef6435da905d5a1d6482997c","sha512":"97149632c15eb33690273abfa78636ad0471999363e11bf59ca61a4de32444e6f299db3b80d52b2e9437c645ec235fa8d3b8c20dcc350dbb9e175f12b3849a64","ssdeep":"384:/Hu5yWeTUKW+KlkJ5de2UYDyVfwYUas2l8yQ/8dwmaU8Z:/wlr+Klk3Yi+fwYUf2l8yQ/e9vC","tlshash":"3dd241e8e54c01d66731c48bff81b36862b6fb3dd5854da9f01f290c29d226522c5fba","first_seen":"2023-04-05T11:31:05Z","last_seen":"2026-04-05T14:43:30.070115Z","times_seen":15124,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/banner-img.png","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/banner-img.png HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-44995\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":280981,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 293 x 590, 8-bit/color RGBA, non-interlaced","md5":"360e089265eccb086ab6949bef93b65a","sha1":"06e2d5e35b7b172dc996d0be4195520f876130d0","sha256":"367d02d420bcd52f978e26ea32315e02cc25fe22e6e22e240477e809384b6723","sha512":"235e1e0405285448f7bb4752a7e825bee118a6054e116d258683af3502b45ccad8d5f034c4d06c1c958ed36fb3a52833f9321e839d267b0c04fef1c3870eedc3","ssdeep":"6144:MPqPZmJ6nUZoeexoE9YfRo8/Cew28j7xUFdYnEZP1yb6szVtM:sqPZBRee1ir/zw2UxKdr9146QO","tlshash":"38542316ef93444ccafd780ffe01bad2d861039a54b61417e919b8b6a7783708d749f2","first_seen":"2023-11-30T19:01:47Z","last_seen":"2026-03-22T12:15:34.52106Z","times_seen":28,"resource_available":false,"data":null}},"time_used":307,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":307,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/screenshots/s1.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.264Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/screenshots/s1.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-122ca\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":74442,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 263x468, components 3","md5":"6f7937486a3ca4e42ee3d3958affb01d","sha1":"6ace7f46cf2a1a7dc64172c563feb4cec0e96f18","sha256":"14b1f3e0a2fc8c3dc2f3ec29f94a26c74f40803e5341aa9ab6cfa26765ce2d37","sha512":"36252dc04c639f52046a5434fc53c56ca222be00ed4f266cecf91fde7056c47322bb058068f03656e566c16cf47f68017e44ec4dd20f24a5f5f1d4b6deddafe2","ssdeep":"1536:BgD0MtTMtOWxVQ3ibFCcarCwtScu+KkPKIOLa1stYt/UuC91:ontWH3arCiScZPKIOIUuC91","tlshash":"117302c9702f0b7456f942a658bed93c15eda8168fb79937ac802f1dd394a7e6fc4001","first_seen":"2025-01-09T12:30:29.72987Z","last_seen":"2026-03-22T12:15:34.555658Z","times_seen":27,"resource_available":false,"data":null}},"time_used":605,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":605,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://dthzs.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 07 Jan 2026 21:59:25 GMT\r\nexpires: Thu, 07 Jan 2027 21:59:25 GMT\r\ncache-control: public, max-age=31536000\r\nage: 72093\r\nlast-modified: Mon, 15 Sep 2025 16:34:42 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-04-05T14:38:59.221005Z","times_seen":296285,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":31,"dns":1,"connect":7,"send":0,"wait":9,"receive":1,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/screenshots/s4.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/screenshots/s4.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-c0c3\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":49347,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 262x468, components 3","md5":"00e14d6246309d9ebe082f4c81b8e6e5","sha1":"6798b1788744c4dc424b256a0c8f93fbc6bf7609","sha256":"1988635377875b8b483c5d8442b734fdb398a0d19c5f277c10b88c1a0083f6fa","sha512":"cc3ac43c598764b8c97772d8175424a8b6696f8c1885d125e486cbc44cb1dcddaf1ef40167385a67ba21ed552a227a89f1ef4be1eaedab55134349ca466ab2ea","ssdeep":"1536:6r61+++++++wr+Zxxxxjpsen8+ZnNcVzhm2qIxVSiY:3+++++++wyxxxxjpRnHcmGfSiY","tlshash":"6c23d1d6d2679c5267e762af9203f91ae4c32d649f2eb360b439d6438f0c0c8894973d","first_seen":"2025-01-09T12:30:29.73122Z","last_seen":"2026-03-22T12:15:34.520463Z","times_seen":27,"resource_available":false,"data":null}},"time_used":603,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":603,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/waypoints.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.285Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/waypoints.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-1f6c\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8044,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (7808)","md5":"dfe0eedf8da578f4a4c43b05448c51d9","sha1":"812d7071b4e44b1aa5d5ea6c7ce0b79eb9d46520","sha256":"a0fded691aed767f851011cd3185b928619298a21a0fbdad4808a9e88b490833","sha512":"9084433d6201a0aa45efd1c9bf7c413d08192a3871cea3061b637af2cbef21de39c3dbe9fe14d7a11edc0c44588551212c94ee4866ff737f991e07907cb9b41e","ssdeep":"96:uLBvpnG3nnRh+1pRVKmHyjyYfAPiQc954LT4KN/WzdBUVKdBJEdfdpu531v8L7:uPG3nC19KWssPVpX4KN/eU8Ju4e/","tlshash":"3bf1f9c9b4c7b4221befa0b5d43f060bb33a9e4561098064f194e4da3db4a2da567f38","first_seen":"2023-03-07T01:07:26Z","last_seen":"2026-04-05T12:32:55.592553Z","times_seen":9255,"resource_available":true,"data":null}},"time_used":591,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":591,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/logo.png","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.252Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/logo.png HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-600\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1536,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 36, 8-bit/color RGBA, non-interlaced","md5":"bb0f185735c1e4587da82b7ef4403ace","sha1":"fc2f1ecd0019f1515e0012d29349b1811a00df5c","sha256":"7ed24510b42ed7ac5bf0090d5b7c84e10a16633c6113e31d3a41349ea2bed9d9","sha512":"b8201786a6443d2ca74a0c400ac932349c6ad8fba93490a24441f79fb07385c5274f1ce237a1aadbb22ec8b53d55106c697db7364926fbe18396d98955a1af3d","ssdeep":"","tlshash":"38310a2928ba83a4d3589b36079401a7fc3825887ffb1c0c72a4afd042008e360d92ca","first_seen":"2023-11-30T19:01:46Z","last_seen":"2026-03-22T12:15:34.526708Z","times_seen":231,"resource_available":false,"data":null}},"time_used":310,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":310,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/play-btn.png","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/play-btn.png HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-7fc\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2044,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"a3b6e081672d9c164fba6e75ac577a01","sha1":"3d1136625d16649555084d51a60681df9eb02dd5","sha256":"59f022b26578eef1a339f062d0f133e98203b6112e8e595f7a58e46d505941c9","sha512":"0f96584a97f0f71867363900981331f61c2746500dd91ca9372d316d72733be592e2407cc47fb5a2903ce368ab295566df6774eca96e280a4db1170635c61a6f","ssdeep":"","tlshash":"87410a4dfc69a401d2edc74938fa4166e97344c0eee0da92bccf840b19244f045990ea","first_seen":"2025-01-09T12:30:29.728435Z","last_seen":"2026-03-22T12:15:34.541601Z","times_seen":28,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":608,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/testimonial/t2.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/testimonial/t2.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-1cca\"\r\nexpires: Sat, 07 Feb 2026 18:00:57 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7370,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 80x80, components 3","md5":"87bcca2308d85ce5d01fe181387d10ca","sha1":"835bb273c46ef0af355c8b6713d275490a63c79d","sha256":"b78c379b5aeadfc80ef20c6520e7fd470ca88015e7f99fc44214b949a6f92f93","sha512":"5f7240c287962ab302c683f7cd1b2061860ac6f1944cb35f0529fed000fc256cc4a88c2d67dbbfe8be385c7d2ce904cd3b636c4a499262fa838dca825ecb2432","ssdeep":"192:nRIkcASw33PDxrA7FgaESAtq/56esqtrL:nRIxpyNA73uC5gU","tlshash":"66e1ae0237abc491c4f959b76e4394f65843d7c65763af87e120caa4e0911b2cf6874d","first_seen":"2025-01-09T12:30:29.725182Z","last_seen":"2026-03-22T12:15:34.544423Z","times_seen":27,"resource_available":false,"data":null}},"time_used":606,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":606,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/fonts/Linearicons-Free.woff2?w118d","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/fonts/Linearicons-Free.woff2?w118d HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/static/css/linearicons.css\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:58 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 21780\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\netag: \"69535c11-5514\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21780,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 21780, version 1.0","md5":"03e91f122aa5fd425abbe23c85546eb0","sha1":"c87a3db06c5db4e75e639382f174eafa439aeb27","sha256":"296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33","sha512":"d551461a9767cda29ecd44e381596dc6948f0123c5decbeb1dc9b1a20a7adf7911d67ff8457891442779e0cc3b1fe66456ffc7034e624cd8b2d7a020583c66c3","ssdeep":"384:rDy+B9/t2wjYl2hTxw7o6TEs9MpsAMFddYKDYpe/bjgq:rD9jsI4qs9MpsAUN","tlshash":"8ca2e1a285cd0cd388dbbe467493c42da3ba1500c306cfa9f54a5e6914b9ea7df0cc5a","first_seen":"2023-04-07T12:41:33Z","last_seen":"2026-04-05T13:56:37.659428Z","times_seen":8748,"resource_available":false,"data":null}},"time_used":301,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":300,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/vendor/bootstrap.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.274Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/vendor/bootstrap.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-c761\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":51041,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (50759)","md5":"3a4912f4311c63d3af01bcd3441959ce","sha1":"f1c0f5a8fc1868582dcfbb4e955893f129bf7e4b","sha256":"f203aa11401db444669a0a833bc0da0324f6c6b59bb8291a0e50af290ae7ff42","sha512":"a74c120353ede32eb22388a9588243c0453c072ec8e2fc1df420a3fa92f799e8224f7f1dfb2c69841ae987a9946f8b28d5c2abba8f928130694621195b07b5f1","ssdeep":"768:ElYw7GuJM+HV0cen/7Kh5rM7V4RxCKg8FW/xsXQUd+FiID65r48Hgp5HRlI:ElX7PMIM7V4R5LFAxTWyuHHgp5HRlI","tlshash":"0b33b649725078b201df9176913f460bb736788ea907816cb95d98ed2e7cd89322bf3c","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T12:36:00.667927Z","times_seen":436,"resource_available":true,"data":null}},"time_used":597,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/hexagons.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/hexagons.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-d5d\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3421,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3421), with no line terminators","md5":"7886c815fb394f3580bd97739e264d7f","sha1":"556165fe3bce3ede9de84812c04e0676dff77d0d","sha256":"83b6c8e756da5edbc093bab7f5ebd1ef82c8612839a3daf5d886c8d14be039a9","sha512":"adadf03de71718158bfd8468d54ca7fbbbb8d73d5d3cf8790ee90f83ab839c50e170ba8e39fb5cf299f8e4acb59204f6b4500e601dd6cf2a1fce03360c582bcb","ssdeep":"","tlshash":"116164443d1444fc30bf4a95b9b4bb2e3d3f6f26f18121a1516b83920297c96243af9b","first_seen":"2025-01-09T12:30:29.79163Z","last_seen":"2026-04-05T01:50:05.631527Z","times_seen":123,"resource_available":true,"data":null}},"time_used":593,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":593,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/img/video-bg.jpg","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.678Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/img/video-bg.jpg HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/static/css/main.css\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:58 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-6583e\"\r\nexpires: Sat, 07 Feb 2026 18:00:58 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":415806,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1140x641, components 3","md5":"474b20e3395e6f3597e0e9e977f1a1d4","sha1":"162ebb61d613e039c2e36d5f81883635617ad7dd","sha256":"331a0ba8b14fa3c4415ceede833f5c33f67def44df44993510c45ed3f0d5fe03","sha512":"deaab47cc93b2399af6aa1a29af02f072a23abfb4fe33469bf7fe7a53dff11b8aed558a6497b2a71ba42e3bbab801d3e4c1b715e63f0ecf1da1856ba9de45fe9","ssdeep":"6144:+JRzC7Nuhi/A3m0M5ccqWLcYcUwbNeQSPcb1onlL8m52p6dhWw9qCxhmo2cfgBfS:oBC7Qhi/cEBqKuYQl1onlL8BVC7rZhL","tlshash":"49942388dc8eeb3f1575e7b4d975a6aa67014d13e83983f8b76d38c13b91986e0d200d","first_seen":"2025-01-09T12:30:29.760698Z","last_seen":"2026-04-03T09:54:22.913115Z","times_seen":27,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/css/linearicons.css","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/css/linearicons.css HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-20aa\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8362,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3d521f166004a36cd1fb211f51c7e02d","sha1":"7f112ce30590dce0cbb3b17e9f0a5f705ead4682","sha256":"f0767561c44fc65c14649e3a39539525178803e8b75dd7ca036f5fd717623402","sha512":"d3274d58841317dc820811ef3946b68efa4dfcc54c573e3a7cfc56be672def07d4d885f73f9ee761dd5b0f77e4333851388af7303db2cedcd2c3c5db8056cf90","ssdeep":"96:0Oo+6u+LfH/7Z8iFRSyUxOyUiBjiBk2652bSBQzE2p/ylzUfhTZJ3kLbPzzUhF57:Ib972YYXO6Te7AxJ9M","tlshash":"070200a0ed4d3c825782e4d23b443e802b1ef7389d012d59d417bd2eb7e32569da07da","first_seen":"2023-04-07T11:55:34Z","last_seen":"2026-04-05T13:46:01.688483Z","times_seen":1528,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/vendor/jquery-2.2.4.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/vendor/jquery-2.2.4.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-14e49\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":85577,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32065)","md5":"b354cc9d56a1da6b0c77604d1b153850","sha1":"a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732","sha256":"fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46","sha512":"b6dcbe11a0f90ef61a071fdf7d8c637f95fc77969cffda9f291772b4fa2c2f9020eea2916da6f1113d746afeafbf592d0db79fb2f2f5400bc0a0fc10a066ba98","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a98Q:v4J+OlfOhWppCW6G9a98HrU","tlshash":"1783c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","first_seen":"2023-03-07T01:06:18Z","last_seen":"2026-04-05T13:55:18.071595Z","times_seen":7438,"resource_available":true,"data":null}},"time_used":601,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":601,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oudngmslhifnsf.gdmgcyy.com/tj.js","fqdn":"oudngmslhifnsf.gdmgcyy.com","domain":"gdmgcyy.com","tld":"com"},"ip":{"addr":"206.119.188.34","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.558Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oudngmslhifnsf.gdmgcyy.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Dec 2025 06:39:18 GMT","end":"Wed, 11 Mar 2026 06:39:17 GMT"},"fingerprint":{"sha1":"84:4B:0B:7A:0A:D0:42:4C:42:71:F9:E1:85:CC:DD:07:F9:BA:C0:D7","sha256":"11:41:A5:14:00:68:D7:F8:23:DF:F1:C7:18:0C:48:6B:48:89:72:3F:4A:54:4B:2E:B2:5B:F9:3A:4E:E5:22:D4"}}},"request":{"raw":"GET /tj.js HTTP/1.1\r\nHost: oudngmslhifnsf.gdmgcyy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.21.4.3\r\nDate: Thu, 08 Jan 2026 18:00:58 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Tue, 25 Nov 2025 02:47:15 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"692518b3-60a\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.3","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1546,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1546), with no line terminators","md5":"75744fb2ef623aad85ddbffa4cf8d621","sha1":"f4b47226e8c7acbb1aed3b53e1e41ab5edd01973","sha256":"3aa8a8bf8c2853aa2eb294e9303ae7aff22aa1d076dd91e1ddbc13b888fa91a8","sha512":"c51b00c3235de1998281f2bc4e9df5883254da82233265b6ed7dd497e1ac776feb5c0172656e4447a8fe67ec675e226ade7b159422af333fdfc12e8cc1825b54","ssdeep":"","tlshash":"77316578374b14a23337f612144b541c62b5d3854b6f08e0e3a576997de6948d04bf7e","first_seen":"2025-11-25T12:21:30.366924Z","last_seen":"2026-04-05T12:32:55.573609Z","times_seen":221,"resource_available":true,"data":null}},"time_used":1825,"timings":{"blocked":784,"dns":6,"connect":257,"send":0,"wait":257,"receive":0,"ssl":518},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/fonts/fontawesome-webfont.woff2?v=4.7.0","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:58.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/static/css/font-awesome.min.css\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:58 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 77160\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\netag: \"69535c11-12d68\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":77160,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 77160, version 4.459","md5":"af7ae505a9eed503f8b8e6982036873e","sha1":"d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c","sha256":"2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe","sha512":"838fefdbc14901f41edf995a78fdac55764cd4912ccb734b8bea4909194582904d8f2afdf2b6c428667912ce4d65681a1044d045d1bc6de2b14113f0315fc892","ssdeep":"1536:/MkbAPfd1vyBKwHz4kco36ZvIaBfRPlajyXUA2jVTc:L0nXnHdfRVEAS2","tlshash":"7d7302e63b6c4943e03d6460708abe9f104b3ab42fe057e5c876db7f2722992b71552c","first_seen":"2023-04-05T03:30:47Z","last_seen":"2026-04-05T14:48:00.041961Z","times_seen":413303,"resource_available":true,"data":null}},"time_used":306,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":303,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Poppins:400,600|Roboto:400,400i,500","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.237Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css?family=Poppins:400,600|Roboto:400,400i,500 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 08 Jan 2026 18:00:57 GMT\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18599,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"ce1a8a4e1571100ce3b8868b73ef8368","sha1":"411708d9d0974c4fe9008413e0d2df598ac6c65b","sha256":"c56f518f918d8b32c8669a75247324f66932bdf2b788f4eb5bdc0473ffb6aa50","sha512":"b637353c3fae4d18d1e4eac0730b0ab01b2b3de7aa739ee760b68feb2a2159e5660b8284d5ba258f51affad3b15a27819c40d9c1679ca3f6ef5804ad8d478be1","ssdeep":"384:AmYCmwmNm3mA1mTqY4nm8mAmgKfaKDKwKkKyfK/qY45KLKrKcKfFKYK7K/KyEK/1:TEjMWAE39HTg1KRzBfiiMgFK1GIBEiNb","tlshash":"6c822da1041ba04097834cd223ce7e34fe0f92547141d075abfdab6beddbca6526936d","first_seen":"2025-11-21T14:03:46.405797Z","last_seen":"2026-01-26T06:56:39.620356Z","times_seen":17,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":95,"dns":1,"connect":7,"send":0,"wait":20,"receive":0,"ssl":116},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/css/hexagons.min.css","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/css/hexagons.min.css HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:58:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c12-26e5\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9957,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (9408)","md5":"8a43e6596b6bfc57c3e68a4a1c1aec99","sha1":"4ebc72b77f02ca66c9f9de94ecfd491369cf5dc2","sha256":"e49f40633ec0312df00576bab62c2230882c1369418fbd678c14b3130b0ce52e","sha512":"3d0016c042a68155845f616264d017f898171a49746a4a5c21438de05b849f2f49037ae5872d337f9e43bf6a0e249cdcee3d7efcf5b23f79ee375fea088b49de","ssdeep":"192:w1CJK71dINKvL6DwANR5nEyTL792fXqnBK/B4RfSWPFi5hbnHgnDV4rhc33an/ip:1PQm9","tlshash":"8d2265a0fe884c8ee337ca586282f63cc35da2a1d5400bbaf176325581535d93a6ff47","first_seen":"2025-04-07T08:44:41.614713Z","last_seen":"2026-04-05T01:50:05.663591Z","times_seen":71,"resource_available":false,"data":null}},"time_used":306,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":306,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dthzs.com/static/js/easing.min.js","fqdn":"dthzs.com","domain":"dthzs.com","tld":"com"},"ip":{"addr":"156.239.182.7","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://dthzs.com/","date":"2026-01-08T18:00:57.274Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.dthzs.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 05:24:20 GMT","end":"Tue, 31 Mar 2026 05:24:19 GMT"},"fingerprint":{"sha1":"B5:CD:DD:99:6D:51:56:60:D3:9A:CD:C4:27:2E:BA:DE:0A:E7:68:FA","sha256":"D6:3E:34:28:A9:10:28:2B:AF:C2:EF:38:55:6C:B4:86:94:C5:C4:0C:54:51:38:75:68:48:0A:D3:C7:33:66:1C"}}},"request":{"raw":"GET /static/js/easing.min.js HTTP/1.1\r\nHost: dthzs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dthzs.com/\r\nCookie: PHPSESSID=8pp2a9u654qbnaf0fqolb9t4pq; server_name_session=c76854b3a8fc0d85f1e6f5534d7af379\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 08 Jan 2026 18:00:57 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:58:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69535c11-8ff\"\r\nexpires: Fri, 09 Jan 2026 06:00:57 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2303,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2301), with CRLF line terminators","md5":"d64116a742887080b3a0abd09e0bdad7","sha1":"8cd4375fc3c60237ea3994209d17a57ccbe6b0c6","sha256":"901eb80cc3f8c274fe6711bd023884258839610c9274082a4881f71e2206b4fb","sha512":"d2a0568b71a2ae4a01db28c02903d35c72e9a1090814e7a8dbe9325d45450ef7f75c29e9a1f0c6f9bfa6843f143817d9e4ae3c25e0e7f814b22ff476f8767783","ssdeep":"","tlshash":"4b4107d9f9c3b75a934275e0162f200bb22e6eb000ed2530c66174aa7d3831d9d3bacd","first_seen":"2023-03-07T12:05:14Z","last_seen":"2026-04-05T13:50:27.537751Z","times_seen":1761,"resource_available":true,"data":null}},"time_used":597,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-08","alert":"Sinkholed","trigger":"dthzs.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}