{"report_id":"9c9e3113-717d-4e6f-a733-004d6d5e1574","version":6,"status":"done","tags":[],"date":"2025-12-02T19:06:34Z","url":{"schema":"http","addr":"poyraz67.com:8080/c/","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":0,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"final":{"url":{"schema":"http","addr":"poyraz67.com:8080/c/","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"title":"stalker_portal","dom":{"size":14249,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (2065)","md5":"aec1bff0611740d770355798a6050ea8","sha1":"229fe6d1c7312c6dbe8bec53c6ce4c63a180dd95","sha256":"44ece5400c36e19e51332127415877980312bf6253742902d0e8999227e0cda9","sha512":"87e2f66d7e2f4712ae8e5442ec84c2492aafd660577d5dad8078353643df92685c86d31523822e09c55362587327a15bf5adea31e018ec153fb4178dcb27cc19","ssdeep":"384:16f1WmLww5f+qSZuWMe8rTnBH5HjgFXhdqeYKTyB:1cWmLww5f+qSZuWMe8HnBHljgFXhdqeM","tlshash":"5e5222284cf7d112811774ede7fb960932b5821b4606cd027eec83d8afd4e998d95ae8","dom_hash":"domhash2cf52b35b2b6310eddd0bd24be96468a","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"poyraz67.com:8080/c/","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":0,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98","country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-06T19:06:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"poyraz67.com","ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"domain_registered":"2021-12-11","domain_rank":4325019,"first_seen":"2022-09-18T12:03:46Z","last_seen":"2023-03-12T03:09:39Z","alert_count":0,"request_count":21,"received_data":425263,"sent_data":7661,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.4.5","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"poyraz67.com:8080/c/watchdog.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"a02c9cbb0bdbfa2f5940d43f3a3b6213","sha1":"63ee94fe2c23a76ead6ac91e3a22570a8db936a3","sha256":"2de8870f7a1156dbbd9e2ed2a0f6e060eb175c4b4ba2a568fae213a8520c5a19","sha512":"1843e0b6bc36a15d5d7514b0bd9a93b151128c801efca2cebc5c1b0b08912f1d60227bb6e9e75c69fec81d6928193551f14821825d273fa232177de7cbd66d02","ssdeep":"192:McCQOPPYrfTGbOtsid7m5772zW2yIZ95YHmkFzmE42D61wYZ6zbieG76eG2WXYW+:McCQOPPYTTGbOtsid7m5772zW2yi5YHs","tlshash":"5332219d5163950684f277b9cf6f0248fbbb6073010a4745bdde95c8af30426a1a2efc","size":11544,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.668728Z","times_seen":171,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/xpcom.common.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"f960fbbb3a63090639197241bb835651","sha1":"78af68dbabd80179d8bd035b5f3dbebe45c9d68e","sha256":"8495787f373e33fe833c9a19ee5412b0c760362f716b3ebe96b08c1e68cb1433","sha512":"4982a6061ea34b5e4989cb588c288f4d8f91543b133d42bd3007163989ee8d1689d60554e97fba63ad86ef26c800549189c0117a25de2cf0f5f605b42f4089b9","ssdeep":"768:5/ApuOu8EebseijiLrjdgow6c7DG3Shpg2JwCKpeSieKcFGW6MKgWkWQKsfkUXHe:5/iB4y4PG4G8NEfbeYO6XcNjnkvQt","tlshash":"82a3418c96bb691289b23378ef5b010cf7f5412b05064b0ebead51dc4f3582589a6fbc","size":98356,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.667518Z","times_seen":102,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":true,"md5":"343aec0be318950d1684986cafa5a062","sha1":"f4fe2ee51e951ba29d65f9c16420c76a58e9d39f","sha256":"dfaf3c2e79055b972fc614033f11b6d0d6d55db9b03f11bc27326e20df57ce34","sha512":"c6a41dfb684c3d542c5b173477194c3ac5211bc0e9ede7c9f821ddc3e15d1e23695bae562b240b5c6ceac2e72c67975b6415197c0beb9334f98393fd80f1516a","ssdeep":"","tlshash":"87213608cee7e624a523309f5bbfa0043055695b470de4063d8dd3499f60a9c4ea9eb8","size":1436,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.679945Z","times_seen":120,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/keydown.keycodes.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"7d1ca827bb9fc5d77e7507ec0ecb7fd7","sha1":"c9d7df3eb4e372e0b91c3f978ee28d9a1dbfadd8","sha256":"8b352bcce59f25ad46831e8064b23b98cebc95633137b9accb15c0c7d4f3b687","sha512":"467a1b15d13891ad32c609f4c9bad47fc9680ad834bdaa5de4705e9948b65969275f754844472d6e82f0485bf4a84b3d702307ff8f153d27d35ca9814422c1e7","ssdeep":"","tlshash":"1e3157ca724ae388b17b42b1362c0ed6e5dec61b2e750a6932fb0c409f3b2176d450d7","size":1476,"data":"","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.674392Z","times_seen":171,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/usbdisk.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"48352b45b2bd493f05da261d74e9375e","sha1":"d8b2589837902eda5e5faab08a0b84bd347de0ad","sha256":"809fa0c2e0167bc0b6b67a3d5cce3a51afb5da29e5fbdebc4c96d1156dece55c","sha512":"a364eae9ef05e10e87d40bc37097694cccfa75ed1bb70b09c0b0b361c717d356a536bc3c9cd1a7da8e6d66ec0887ae75acd4b3bf8ce1e571ce10bb032cfb3865","ssdeep":"96:3la0vBu/jncSYbNW6JMN7V/xYvFMOyuuH0Dfop2YPBVignSo505p1O:E0v8/jncSmPJQ7V/aG3utDfop2eBVig7","tlshash":"4db1598d297791198eba73e97e5f6818eff5441b114ec2083c9e91de1f788390390dad","size":5416,"data":"","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.666337Z","times_seen":171,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/xpcom.webkit.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"3a029dca6596d31c24b222fda5248b3a","sha1":"f168b156e52810b01113d947fd15397f5f34ff97","sha256":"1810a7452ca36fad0656551fbd3eb472a3262d94c846e44b711a1d3702ac3280","sha512":"fb8a95909e918ac1489ccc39a4e99285065e5add77a6f741f372db2911dc39e0472d4dbde098a53be2c5c59325363389ca6112e93a1c276884c53bb69dab54cf","ssdeep":"","tlshash":"2751758d6227122101363ba95f473b8af3b70477804a21587f8d91646f72563cba2fec","size":2548,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.676585Z","times_seen":169,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/reset.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"1ca000492515509a003bdf949b99092f","sha1":"e1f282188eb51136cb9894611552aa1d3d8d163e","sha256":"f3e6b70e6a2df3ad46e37d131105a94aaa82580d0f1d0cc971d6878dc2753afa","sha512":"76e038bd688b2d42e5762265c488f6b1f305754d48e21eaaec3a5da15835faf77de002291c7765424224e10602e65bc7930b27c3495bfafb1dbbc0419a47f485","ssdeep":"","tlshash":"b660000c00cc0c30000cc00cc00cccc0c0000003c003030333000c0c00c000ff0c00c0","size":14,"data":"","first_seen":"2023-03-08T07:42:30Z","last_seen":"2026-04-04T17:00:32.850614Z","times_seen":1154,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":true,"md5":"0d85d3262ffb229281426b1d786efb93","sha1":"25c2b47bd86dbf469e6a567dbf5d6ed6d06f8604","sha256":"95ee7f6522a5c1ba78b159c4ebdd2074ce4c68ab2f406a578b0544dbf9fc0ef2","sha512":"51396ff10b6548824dabeb9ffd480a44b47fa95db6225f5d26679992a848f9c18fa5441c5c8e881f94689e3fc8da80cf0d590ddc178c96a5397a113440ef3dbc","ssdeep":"192:OaT1Wp/2BLw/450K+qSZY13mMe8r3CMP842riH5RtmWptjgKrgXhdqeYKp+:91WmLww5f+qSZuWMe8rTnBH5HjgFXhda","tlshash":"ed12ed0809f76502426b747efbef45153bf541230519ce02be5d92dc9fa0a3a86e9bf8","size":9100,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.680427Z","times_seen":120,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/JsHttpRequest.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"a56bac1dbc5c3f5fb6fad0331e4eb82a","sha1":"3a9b8858afdeddf949285876356ffaa3fb482f36","sha256":"afccd33c3a0391e79a963334e17fc4e9417f5905284adb6dfc7a7a635a0df64a","sha512":"096f8efe75874090e29f42697579d562054bd62077f39516eb57622d7b11f0c0f0aae5d9edf34cd0255b086d1451c23ed925f7673e1b5339d76e2779417ae906","ssdeep":"384:vatAoFXXKq1D8CuRfI/a7nHFfiwkSzRUHYkzutpixPuzd1WQZpi1yQrpcEOgla:roFv1D8CMI/yHFa9SFUHYautwxPuz6QX","tlshash":"dab2210e5e499065d632b37ccf6b8519f766856b2202c1267d5c80e56fb087885f8ffc","size":23826,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.673928Z","times_seen":171,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/blocking.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"50fc4f44479b7b52c2c8e7ba982404ad","sha1":"9c731e3126905f50634f7cbc8d503095bf4ed755","sha256":"a13994197e8ef9a0b97fdf61ba4861701d2a4fa90684eb7f23a111c4008fd96b","sha512":"3637d8cf7f5416697523b28e061368005a131dfe882d125edad050729b88cbad49b2069cb92cad60af5d4861adeaf6e6ad47c2c7dce22ec708c1c2802fb7b889","ssdeep":"","tlshash":"7d41ac8a357b045a897672766f6ba31cf7f2012b04020249fe8cc0e85f7c967c165daf","size":2205,"data":"","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.677085Z","times_seen":118,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/player.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"c1371c9f1ee85065358aa11983f529b1","sha1":"50bb4bba2d4b30d2181a070490fea8a927975861","sha256":"8721329c56c118dec0daab964597aeeb5ab30b617d7be0b2b4b63f6a242d5970","sha512":"d9de4e92c6cd5eef6b66cee19d715b44a69c7fcb8649a5957e26ba8642a044e14dba1d9212ac615a41a68afa16d4e81b181879b921676771c748baa7de5c5fcf","ssdeep":"768:ydpONxC9CiVD0cJuAcCSHPvqWQHnEnXp+A3NdED4NP8zCutVTViHT9qA4PF08obk:ydkIBcCCgSua46MCsa16xdhJQHcV","tlshash":"dc144049866b2a0386b337799fab120df776552b45068f0d7e6c82c86f7182141b9ffc","size":200508,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.670281Z","times_seen":115,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/version.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"fdd0a86e9c957a9e5139b006e8e42166","sha1":"649ec51e1dfd154aee8fa4ceef1d3951f9fdd4f4","sha256":"bdbd37ec840519010f914206aa1a1ca31100a009c8edd655f47955b6806d79cc","sha512":"186196f95bf4fa71049c17669697f4c1d02b31696c0d997344398e9c0a373731a04c0fae3cc88fe8769162daaa5c76f4a92e31689634f1d7aa8b94090fe95166","ssdeep":"","tlshash":"9370008002280c0c00080000e80b808c228030a0202800820000a82000a208820c80e0","size":18,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.678563Z","times_seen":118,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/keydown.observer.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"5dcd2ae60932b08863574a69ec291973","sha1":"5fb97d910f21825074a80d9cccbab90281cae8dd","sha256":"3abc656a7c8484a959ed9b961c2eaa65ecc25853ea621b995a1b045fd36e22e2","sha512":"4f0e5cfef965c3d19f5c1744e1c9ed44960fc62bcc881e1703c2f17fbc153bbd6de77366ed81ade31bd5459ee3c569ac3f51f452c03b04e7c5ff9a605b858ba6","ssdeep":"","tlshash":"2061ac291896642759b6b33a8f1f914df73d4163940951043e8c8aecbff282596f3f4c","size":3231,"data":"","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.66496Z","times_seen":171,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/load_bar.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"89e095f6d97a8ce9616b5ee6da4cb46a","sha1":"d3ad52683250381576de043e51c08b61a5ad070b","sha256":"dd26c6a097220571831da22745450bf3e66134e4becee89a6ae881ba5dea8b2e","sha512":"204c08ca6242cd7ca028f06cd78f902aa372cc9d830f3ff9563dd8a735a594347f41efbb12233dc972a5a068f355e1524eb95a36e718104b46dc53c24a58112b","ssdeep":"","tlshash":"21617d8a52ee41d0cd3572ae9ea7252ee3b8222f45075658389f82d4cff0134114adbd","size":3265,"data":"","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.666948Z","times_seen":171,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/layer.modal_form.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"db322783db1fc68a87320dc984b5b0b5","sha1":"6b10e020f208d1335cbc166425ec656bc8cea2db","sha256":"1acd87cbc6f6c2a1cc1f15c01ccade8d15a7fc7ad12296c87c4f0c123a6bdbdd","sha512":"bc151c0ab0d0e3b89e1e624056b00676e3618f4938cb18a2b1a1763505ebebc14a526f77ef0b8bbac9a8945f908a68aa39d939ebe6f8bb5129f0ff69867486b0","ssdeep":"384:MuBAR77Mtn0TAs9sZ282Wp0mUyWVf8nANAqUs6/cQCNjM:3AR7QtnAB4282WeyVAmqUKjM","tlshash":"aeb23989a76e21128ab637b65db7140fe775912fc806024cb99c44dc5fbc43482b6f7e","size":23829,"data":"","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.676027Z","times_seen":117,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/global.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"5e8e400b80d1b66017de67e53f22b6e0","sha1":"c3779e6d8b8adb53d12b553833f5c4eb28c62798","sha256":"fc71b986e802e7a4cd02b691f63b8de5da71e8f42bf1bb16dffa77ed900a23d0","sha512":"519ef142bcda31cf98d975f833c71bfb3c493b157ec0498bed569e0df4fbaf4cb608db146e1361f0a1241a56b61a2d836b915afc712a0d36f469755b844a726e","ssdeep":"384:q6JOmGblpxvDauWHZoYBd/pDdmaaEkYeLKp+/4oYlU5JxR7GJWIuoB7PE7z8g7qR:qwOmGblvj4ZoYBd/pDdmaqYeLKpq4oYr","tlshash":"ebb21288a957102686b7f33e4e6b4c09f765453b4608428fb96cd5ed2fb482443b9fbc","size":24312,"data":"","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.673448Z","times_seen":120,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"poyraz67.com:8080/c/","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-02T19:06:12.032Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/ HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:12 GMT\r\nContent-Type: text/html\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-2ce1\"\r\nExpires: Thu, 01 Jan 2026 19:06:12 GMT\r\nX-Cache-Status: HIT\r\nX-Cache-Date: Mon, 01 Dec 2025 10:48:19 GMT\r\nCache-Control: max-age=2592000, public, max-age=2592000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11489,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"c4f7d9b2bcd4e76bc98cf79c77afb399","sha1":"125749e340075a92507cd3f7933543d5b80f1a2e","sha256":"8187bf5fad747fc1232ac70fe19117ad7759ebff04eac272196c22b0f0a3be13","sha512":"870306cb437ce9cf8f33743a396491131434952ee05ee86c7cd198ec156af959ac76c5ee9a3b2b9d59e04aaa20ccdc4e5cb94bf174f24f9637d753c6a497b239","ssdeep":"192:CVs4wPXFwDy1HlB8rgtMyvBjtDxEzrPI5Qf5dJPDxXXG2+PlLc:CU9w+1Hz8rgtMyvBjNxEzrPdf5nPD9Xx","tlshash":"cb32fc480db796028576737aefb7851cffaa1163020186027ecd91d96f70a1985e9efc","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.678033Z","times_seen":112,"resource_available":true,"data":null}},"time_used":827,"timings":{"blocked":386,"dns":338,"connect":51,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/player.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.799Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/player.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:13 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-30f3c\"\r\nExpires: Thu, 01 Jan 2026 19:06:13 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":200508,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"c1371c9f1ee85065358aa11983f529b1","sha1":"50bb4bba2d4b30d2181a070490fea8a927975861","sha256":"8721329c56c118dec0daab964597aeeb5ab30b617d7be0b2b4b63f6a242d5970","sha512":"d9de4e92c6cd5eef6b66cee19d715b44a69c7fcb8649a5957e26ba8642a044e14dba1d9212ac615a41a68afa16d4e81b181879b921676771c748baa7de5c5fcf","ssdeep":"768:ydpONxC9CiVD0cJuAcCSHPvqWQHnEnXp+A3NdED4NP8zCutVTViHT9qA4PF08obk:ydkIBcCCgSua46MCsa16xdhJQHcV","tlshash":"dc144049866b2a0386b337799fab120df776552b45068f0d7e6c82c86f7182141b9ffc","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.670281Z","times_seen":115,"resource_available":true,"data":null}},"time_used":215,"timings":{"blocked":52,"dns":1,"connect":51,"send":0,"wait":60,"receive":51,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/reset.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.990Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/reset.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:14 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 14\r\nConnection: keep-alive\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: \"5f7c3241-e\"\r\nExpires: Thu, 01 Jan 2026 19:06:14 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"1ca000492515509a003bdf949b99092f","sha1":"e1f282188eb51136cb9894611552aa1d3d8d163e","sha256":"f3e6b70e6a2df3ad46e37d131105a94aaa82580d0f1d0cc971d6878dc2753afa","sha512":"76e038bd688b2d42e5762265c488f6b1f305754d48e21eaaec3a5da15835faf77de002291c7765424224e10602e65bc7930b27c3495bfafb1dbbc0419a47f485","ssdeep":"","tlshash":"b660000c00cc0c30000cc00cc00cccc0c0000003c003030333000c0c00c000ff0c00c0","first_seen":"2023-03-08T07:42:30Z","last_seen":"2026-04-04T17:00:32.850614Z","times_seen":1154,"resource_available":true,"data":null}},"time_used":146,"timings":{"blocked":47,"dns":1,"connect":49,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/favicon.ico","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:12.677Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:12 GMT\r\nContent-Type: text/html\r\nContent-Length: 146\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-05T04:46:51.766214Z","times_seen":479057,"resource_available":true,"data":null}},"time_used":50,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/keydown.keycodes.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:12.867Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/keydown.keycodes.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:12 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-5c4\"\r\nExpires: Thu, 01 Jan 2026 19:06:12 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1476,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"7d1ca827bb9fc5d77e7507ec0ecb7fd7","sha1":"c9d7df3eb4e372e0b91c3f978ee28d9a1dbfadd8","sha256":"8b352bcce59f25ad46831e8064b23b98cebc95633137b9accb15c0c7d4f3b687","sha512":"467a1b15d13891ad32c609f4c9bad47fc9680ad834bdaa5de4705e9948b65969275f754844472d6e82f0485bf4a84b3d702307ff8f153d27d35ca9814422c1e7","ssdeep":"","tlshash":"1e3157ca724ae388b17b42b1362c0ed6e5dec61b2e750a6932fb0c409f3b2176d450d7","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.674392Z","times_seen":171,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":51,"dns":1,"connect":49,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/watchdog.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.083Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/watchdog.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:13 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:51 GMT\r\nETag: W/\"5f7c3243-2d18\"\r\nExpires: Thu, 01 Jan 2026 19:06:13 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11544,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"a02c9cbb0bdbfa2f5940d43f3a3b6213","sha1":"63ee94fe2c23a76ead6ac91e3a22570a8db936a3","sha256":"2de8870f7a1156dbbd9e2ed2a0f6e060eb175c4b4ba2a568fae213a8520c5a19","sha512":"1843e0b6bc36a15d5d7514b0bd9a93b151128c801efca2cebc5c1b0b08912f1d60227bb6e9e75c69fec81d6928193551f14821825d273fa232177de7cbd66d02","ssdeep":"192:McCQOPPYrfTGbOtsid7m5772zW2yIZ95YHmkFzmE42D61wYZ6zbieG76eG2WXYW+:McCQOPPYTTGbOtsid7m5772zW2yi5YHs","tlshash":"5332219d5163950684f277b9cf6f0248fbbb6073010a4745bdde95c8af30426a1a2efc","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.668728Z","times_seen":171,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":50,"dns":1,"connect":49,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/load_bar.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.302Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/load_bar.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:13 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-cc1\"\r\nExpires: Thu, 01 Jan 2026 19:06:13 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3265,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"89e095f6d97a8ce9616b5ee6da4cb46a","sha1":"d3ad52683250381576de043e51c08b61a5ad070b","sha256":"dd26c6a097220571831da22745450bf3e66134e4becee89a6ae881ba5dea8b2e","sha512":"204c08ca6242cd7ca028f06cd78f902aa372cc9d830f3ff9563dd8a735a594347f41efbb12233dc972a5a068f355e1524eb95a36e718104b46dc53c24a58112b","ssdeep":"","tlshash":"21617d8a52ee41d0cd3572ae9ea7252ee3b8222f45075658389f82d4cff0134114adbd","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.666948Z","times_seen":171,"resource_available":true,"data":null}},"time_used":153,"timings":{"blocked":51,"dns":1,"connect":50,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/xpcom.common.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.412Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/xpcom.common.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:13 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:51 GMT\r\nETag: W/\"5f7c3243-18034\"\r\nExpires: Thu, 01 Jan 2026 19:06:13 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":98356,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"f960fbbb3a63090639197241bb835651","sha1":"78af68dbabd80179d8bd035b5f3dbebe45c9d68e","sha256":"8495787f373e33fe833c9a19ee5412b0c760362f716b3ebe96b08c1e68cb1433","sha512":"4982a6061ea34b5e4989cb588c288f4d8f91543b133d42bd3007163989ee8d1689d60554e97fba63ad86ef26c800549189c0117a25de2cf0f5f605b42f4089b9","ssdeep":"768:5/ApuOu8EebseijiLrjdgow6c7DG3Shpg2JwCKpeSieKcFGW6MKgWkWQKsfkUXHe:5/iB4y4PG4G8NEfbeYO6XcNjnkvQt","tlshash":"82a3418c96bb691289b23378ef5b010cf7f5412b05064b0ebead51dc4f3582589a6fbc","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.667518Z","times_seen":102,"resource_available":true,"data":null}},"time_used":204,"timings":{"blocked":50,"dns":1,"connect":49,"send":0,"wait":55,"receive":49,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/blocking.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.692Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/blocking.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:13 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-89d\"\r\nExpires: Thu, 01 Jan 2026 19:06:13 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2205,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"50fc4f44479b7b52c2c8e7ba982404ad","sha1":"9c731e3126905f50634f7cbc8d503095bf4ed755","sha256":"a13994197e8ef9a0b97fdf61ba4861701d2a4fa90684eb7f23a111c4008fd96b","sha512":"3637d8cf7f5416697523b28e061368005a131dfe882d125edad050729b88cbad49b2069cb92cad60af5d4861adeaf6e6ad47c2c7dce22ec708c1c2802fb7b889","ssdeep":"","tlshash":"7d41ac8a357b045a897672766f6ba31cf7f2012b04020249fe8cc0e85f7c967c165daf","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.677085Z","times_seen":118,"resource_available":true,"data":null}},"time_used":152,"timings":{"blocked":51,"dns":1,"connect":50,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/template/default/load_bar_720.css","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.980Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/template/default/load_bar_720.css HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:14 GMT\r\nContent-Type: text/css\r\nContent-Length: 756\r\nConnection: keep-alive\r\nLast-Modified: Wed, 29 Oct 2025 23:53:37 GMT\r\nETag: \"6902a901-2f4\"\r\nExpires: Thu, 01 Jan 2026 19:06:14 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":756,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"99e01075a8a9e3712352b5f7266a3add","sha1":"b27dd643d76308c27ec0a7e8b68cda59936d4fe8","sha256":"bdf9990b8f4fb3a0b0d0e8430297dac9b752bc1edc901f0a058454ba007a5584","sha512":"dfe561deb7668a5a1fa270fb49285d4db964e2add582e395996f1ea3eba95bc33e29dfd210b9a67a1a4d06c4ae3f1ea3ec172f524445b73043d6edc17817e9e5","ssdeep":"","tlshash":"6f0124c74a1b564e7819e595af181b9e1230208bd26acc2c3bd472eccf840e0c4a6aec","first_seen":"2023-04-09T23:18:31Z","last_seen":"2026-04-04T17:00:32.855854Z","times_seen":991,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":52,"dns":1,"connect":51,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/layer.modal_form.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.999Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/layer.modal_form.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nCookie: mac=; stb_lang=undefined; timezone=undefined\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:14 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-5d15\"\r\nExpires: Thu, 01 Jan 2026 19:06:14 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23829,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"db322783db1fc68a87320dc984b5b0b5","sha1":"6b10e020f208d1335cbc166425ec656bc8cea2db","sha256":"1acd87cbc6f6c2a1cc1f15c01ccade8d15a7fc7ad12296c87c4f0c123a6bdbdd","sha512":"bc151c0ab0d0e3b89e1e624056b00676e3618f4938cb18a2b1a1763505ebebc14a526f77ef0b8bbac9a8945f908a68aa39d939ebe6f8bb5129f0ff69867486b0","ssdeep":"384:MuBAR77Mtn0TAs9sZ282Wp0mUyWVf8nANAqUs6/cQCNjM:3AR7QtnAB4282WeyVAmqUKjM","tlshash":"aeb23989a76e21128ab637b65db7140fe775912fc806024cb99c44dc5fbc43482b6f7e","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.676027Z","times_seen":117,"resource_available":true,"data":null}},"time_used":145,"timings":{"blocked":42,"dns":1,"connect":50,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/version.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:12.572Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/version.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:12 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 18\r\nConnection: keep-alive\r\nLast-Modified: Tue, 06 Oct 2020 09:00:51 GMT\r\nETag: \"5f7c3243-12\"\r\nExpires: Thu, 01 Jan 2026 19:06:12 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"fdd0a86e9c957a9e5139b006e8e42166","sha1":"649ec51e1dfd154aee8fa4ceef1d3951f9fdd4f4","sha256":"bdbd37ec840519010f914206aa1a1ca31100a009c8edd655f47955b6806d79cc","sha512":"186196f95bf4fa71049c17669697f4c1d02b31696c0d997344398e9c0a373731a04c0fae3cc88fe8769162daaa5c76f4a92e31689634f1d7aa8b94090fe95166","ssdeep":"","tlshash":"9370008002280c0c00080000e80b808c228030a0202800820000a82000a208820c80e0","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.678563Z","times_seen":118,"resource_available":true,"data":null}},"time_used":146,"timings":{"blocked":45,"dns":1,"connect":48,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/global.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:12.703Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/global.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:12 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-5ef8\"\r\nExpires: Thu, 01 Jan 2026 19:06:12 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24312,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"5e8e400b80d1b66017de67e53f22b6e0","sha1":"c3779e6d8b8adb53d12b553833f5c4eb28c62798","sha256":"fc71b986e802e7a4cd02b691f63b8de5da71e8f42bf1bb16dffa77ed900a23d0","sha512":"519ef142bcda31cf98d975f833c71bfb3c493b157ec0498bed569e0df4fbaf4cb608db146e1361f0a1241a56b61a2d836b915afc712a0d36f469755b844a726e","ssdeep":"384:q6JOmGblpxvDauWHZoYBd/pDdmaaEkYeLKp+/4oYlU5JxR7GJWIuoB7PE7z8g7qR:qwOmGblvj4ZoYBd/pDdmaqYeLKpq4oYr","tlshash":"ebb21288a957102686b7f33e4e6b4c09f765453b4608428fb96cd5ed2fb482443b9fbc","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.673448Z","times_seen":120,"resource_available":true,"data":null}},"time_used":75,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/template/default/reset_720.css","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.988Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/template/default/reset_720.css HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:14 GMT\r\nContent-Type: text/css\r\nContent-Length: 881\r\nConnection: keep-alive\r\nLast-Modified: Wed, 29 Oct 2025 23:53:37 GMT\r\nETag: \"6902a901-371\"\r\nExpires: Thu, 01 Jan 2026 19:06:14 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":881,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"7746991618121d5b0ffbb00ff9f2954a","sha1":"72b6315e1ff03c7c05b82d8ba4d8cd3f2cb17a2a","sha256":"0f5d13bda68fd4125bde358680e9e8055fecd38833144ca879a492949b19278b","sha512":"493ab2fa77cc6925b7ce95fb1ea900aca5af5df91258c2d153c1ded2948fffaed2b4206242971aae26621c27d13aaedffb79d77c5754aa6241006133f10118c7","ssdeep":"","tlshash":"47118c019d671900a287d96cb72b5364361e200b124fc4b4ffa13a994fd3a7993e2bcf","first_seen":"2024-12-03T22:36:36.942357Z","last_seen":"2026-03-25T18:41:20.354928Z","times_seen":19,"resource_available":false,"data":null}},"time_used":145,"timings":{"blocked":47,"dns":1,"connect":48,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/template/default/layer.modal_form_720.css","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.997Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/template/default/layer.modal_form_720.css HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:14 GMT\r\nContent-Type: text/css\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Wed, 29 Oct 2025 23:53:37 GMT\r\nETag: W/\"6902a901-d83\"\r\nExpires: Thu, 01 Jan 2026 19:06:14 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3459,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"529859dc8af00c419d3bd721fd830fdd","sha1":"9ffd15da617194cc7f4831a21a91cb463a40b01e","sha256":"2f7cd065d6dc47beb3bb31038e7a07a675659b8a491554fc03e97bcff11c6b8c","sha512":"2936d7c5775bc8ccb966c852455f2ebdaaa120c8243de69d4e8076dd34f5c8ba147c630e82bcb2cd8fac634cf182dc7be45fa421cb7631ad7b7647818658efcf","ssdeep":"","tlshash":"4d61ceeb497f16037c599d4b3bda0fe2131805e3411af17a7ff062488fc56a98671b49","first_seen":"2023-08-02T02:56:25Z","last_seen":"2026-04-04T08:42:12.543873Z","times_seen":423,"resource_available":false,"data":null}},"time_used":147,"timings":{"blocked":43,"dns":0,"connect":52,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/JsHttpRequest.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:12.806Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/JsHttpRequest.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:12 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-5d12\"\r\nExpires: Thu, 01 Jan 2026 19:06:12 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23826,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"a56bac1dbc5c3f5fb6fad0331e4eb82a","sha1":"3a9b8858afdeddf949285876356ffaa3fb482f36","sha256":"afccd33c3a0391e79a963334e17fc4e9417f5905284adb6dfc7a7a635a0df64a","sha512":"096f8efe75874090e29f42697579d562054bd62077f39516eb57622d7b11f0c0f0aae5d9edf34cd0255b086d1451c23ed925f7673e1b5339d76e2779417ae906","ssdeep":"384:vatAoFXXKq1D8CuRfI/a7nHFfiwkSzRUHYkzutpixPuzd1WQZpi1yQrpcEOgla:roFv1D8CMI/yHFa9SFUHYautwxPuz6QX","tlshash":"dab2210e5e499065d632b37ccf6b8519f766856b2202c1267d5c80e56fb087885f8ffc","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.673928Z","times_seen":171,"resource_available":true,"data":null}},"time_used":52,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/keydown.observer.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:12.976Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/keydown.observer.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:13 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:49 GMT\r\nETag: W/\"5f7c3241-c9f\"\r\nExpires: Thu, 01 Jan 2026 19:06:13 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3231,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"5dcd2ae60932b08863574a69ec291973","sha1":"5fb97d910f21825074a80d9cccbab90281cae8dd","sha256":"3abc656a7c8484a959ed9b961c2eaa65ecc25853ea621b995a1b045fd36e22e2","sha512":"4f0e5cfef965c3d19f5c1744e1c9ed44960fc62bcc881e1703c2f17fbc153bbd6de77366ed81ade31bd5459ee3c569ac3f51f452c03b04e7c5ff9a605b858ba6","ssdeep":"","tlshash":"2061ac291896642759b6b33a8f1f914df73d4163940951043e8c8aecbff282596f3f4c","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.66496Z","times_seen":171,"resource_available":true,"data":null}},"time_used":152,"timings":{"blocked":51,"dns":1,"connect":50,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/usbdisk.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.189Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/usbdisk.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:13 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:51 GMT\r\nETag: W/\"5f7c3243-1528\"\r\nExpires: Thu, 01 Jan 2026 19:06:13 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5416,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"48352b45b2bd493f05da261d74e9375e","sha1":"d8b2589837902eda5e5faab08a0b84bd347de0ad","sha256":"809fa0c2e0167bc0b6b67a3d5cce3a51afb5da29e5fbdebc4c96d1156dece55c","sha512":"a364eae9ef05e10e87d40bc37097694cccfa75ed1bb70b09c0b0b361c717d356a536bc3c9cd1a7da8e6d66ec0887ae75acd4b3bf8ce1e571ce10bb032cfb3865","ssdeep":"96:3la0vBu/jncSYbNW6JMN7V/xYvFMOyuuH0Dfop2YPBVignSo505p1O:E0v8/jncSmPJQ7V/aG3utDfop2eBVig7","tlshash":"4db1598d297791198eba73e97e5f6818eff5441b114ec2083c9e91de1f788390390dad","first_seen":"2023-03-11T22:26:49Z","last_seen":"2026-04-02T12:52:00.666337Z","times_seen":171,"resource_available":true,"data":null}},"time_used":162,"timings":{"blocked":55,"dns":1,"connect":53,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/xpcom.webkit.js","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:13.581Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/xpcom.webkit.js HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:13 GMT\r\nContent-Type: application/javascript\r\nConnection: close\r\nVary: Accept-Encoding\r\nLast-Modified: Tue, 06 Oct 2020 09:00:51 GMT\r\nETag: W/\"5f7c3243-9f4\"\r\nExpires: Thu, 01 Jan 2026 19:06:13 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2548,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"3a029dca6596d31c24b222fda5248b3a","sha1":"f168b156e52810b01113d947fd15397f5f34ff97","sha256":"1810a7452ca36fad0656551fbd3eb472a3262d94c846e44b711a1d3702ac3280","sha512":"fb8a95909e918ac1489ccc39a4e99285065e5add77a6f741f372db2911dc39e0472d4dbde098a53be2c5c59325363389ca6112e93a1c276884c53bb69dab54cf","ssdeep":"","tlshash":"2751758d6227122101363ba95f473b8af3b70477804a21587f8d91646f72563cba2fec","first_seen":"2023-06-10T18:05:01Z","last_seen":"2026-04-02T12:52:00.676585Z","times_seen":169,"resource_available":true,"data":null}},"time_used":157,"timings":{"blocked":52,"dns":1,"connect":51,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/portal.php?type=stb\u0026action=handshake\u0026token=\u0026prehash=0\u0026JsHttpRequest=1-xml","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:14.002Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /portal.php?type=stb\u0026action=handshake\u0026token=\u0026prehash=0\u0026JsHttpRequest=1-xml HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nCookie: mac=; stb_lang=undefined; timezone=undefined; adid=\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:14 GMT\r\nContent-Type: text/javascript;charset=UTF-8\r\nConnection: close\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/7.4.5\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.4.5","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T05:47:04.311114Z","times_seen":13362114,"resource_available":true,"data":null}},"time_used":270,"timings":{"blocked":50,"dns":1,"connect":49,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poyraz67.com:8080/c/template/default/blocking_720.css","fqdn":"poyraz67.com","domain":"poyraz67.com","tld":"com"},"ip":{"addr":"213.176.3.75","port":8080,"asn":141718,"as":"haoxiangyun","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://poyraz67.com:8080/c/","date":"2025-12-02T19:06:14.003Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /c/template/default/blocking_720.css HTTP/1.1\r\nHost: poyraz67.com:8080\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://poyraz67.com:8080/c/\r\nCookie: mac=; stb_lang=undefined; timezone=undefined; adid=\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 02 Dec 2025 19:06:14 GMT\r\nContent-Type: text/css\r\nContent-Length: 988\r\nConnection: keep-alive\r\nLast-Modified: Wed, 29 Oct 2025 23:53:37 GMT\r\nETag: \"6902a901-3dc\"\r\nExpires: Thu, 01 Jan 2026 19:06:14 GMT\r\nCache-Control: max-age=2592000\r\nX-Cache-Status: HIT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":988,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"f777203c37da0560271021441f161238","sha1":"92acb5f0c8c4d29dd9ec86d793e117b8bfd327e7","sha256":"b053abe338318212f1d138e95bbadc2c85040e45f73f8184b579994d5e6056f6","sha512":"3709550d877f03096710d24ce1d25d8ddfb9bf7b8ce28e16457ab21ee2151073d5221177cfe30b318ee82010e28ea7e6e5b3132412952f6ea3ff8aa789830a1e","ssdeep":"","tlshash":"18119bcb96331b9f7a1fb9a81f52d74816d94087401ad229778bf1e88f8e1d50076eca","first_seen":"2023-05-17T23:20:47Z","last_seen":"2026-04-04T08:42:12.524246Z","times_seen":854,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":81,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}