{"report_id":"9f8a0a94-32cb-4603-aa7a-677266d62147","version":6,"status":"done","tags":[],"date":"2026-04-26T08:36:40Z","url":{"schema":"http","addr":"overload.su","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"title":"Overload - Best L4 \u0026 L7 IP Stresser","dom":{"size":39,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"086707e4369f60afedcafb16050a7618","sha1":"8216b0cc6876cbd44f01c158e7dff3833ceccd41","sha256":"a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e","sha512":"aade21843813e2cab329b99185c6f61db7907a556ea974e0315dcf3ad967cab20fee66d4f10db0d0ec43a71e086ce6d700d5524103deaefa3ce5f6be74ba5737","ssdeep":"","tlshash":"6a9000fee0a2000efc303bc00cc2238a0c28c3a830028e002ac038b8c80822bcc032c8","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"overload.su","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-31T08:36:40Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"overload.su","ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2024-08-18","domain_rank":1479199,"first_seen":"2025-08-22T05:56:56.000845Z","last_seen":"2026-04-18T14:53:54.811165Z","alert_count":152,"request_count":38,"received_data":2789000,"sent_data":18576,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]},{"fqdn":"player.kinescope.io","ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2019-11-26","domain_rank":1889356,"first_seen":"2022-05-24T17:41:43Z","last_seen":"2026-04-22T04:23:02.442024Z","alert_count":0,"request_count":14,"received_data":2139252,"sent_data":6201,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"kinescope.io","ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2019-11-26","domain_rank":24350,"first_seen":"2020-02-02T20:32:37Z","last_seen":"2026-04-20T11:50:52.38139Z","alert_count":0,"request_count":1,"received_data":30097,"sent_data":538,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/app/not-found-844314a6ab10255d.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"067c0676bd0c7c66ddbd6e8dd0f4c117","sha1":"52f5dfee22f7210946818aeb5cdf3dc895e6f47e","sha256":"d740c73d02fca5d4884dd6d3aa51c9accd0c4f528cf4f7eb8a4e6a7089d4c056","sha512":"26a31b9421c0ad303052b47837007358cb7a66f62e6f62d000cd493df4d77760deb10bba7056f5b75d12d1b67e30589fc4b2bb1e987acf447c1cf7ebe20d133e","ssdeep":"","tlshash":"1331660e11c1b548d6a74d9c517f944830ff481c262ac5fe933ccc7079a5a58752bbe8","size":1649,"data":"","first_seen":"2026-04-14T13:02:31.50254Z","last_seen":"2026-05-01T17:51:07.872413Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/1356-57d12209e4af5858.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c2350a6683de083f5bedefaf4ce23d2f","sha1":"e29708c903c0a133641544c72c17ac55572f8f3d","sha256":"33e99476b1ad229a2670462cf1a0cd173c17a23d32c1672fedcb9fd7adf3d079","sha512":"6599a542c3d9974a8b26979f3f809341ea77cbaea68f7fa59216b74e860d6949f30757ad157dc1a1e2b85374fe19eeda77f79dac18292437fe13a080838f4d20","ssdeep":"192:thRFDY9L4aLHvgBCypZyhFwA3P7RoL2BV+wOf4VmPTYH2LaGdPNylL4Duv9hKL:zK42HvfypWFj7acVytW2lPNCLauv9hI","tlshash":"77522a723694fce6139bc095d47f000ef3656d71722ab09873ea9cc9a6e0594b0a2f76","size":13647,"data":"","first_seen":"2026-04-26T08:37:22.489485Z","last_seen":"2026-04-26T08:37:22.489485Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/main-app-b7ac91ae224968d9.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0fc1ed37eaa6fb7baefe57842e38a2fb","sha1":"141d0277c0f944e5289ade2d57b8731ffff67775","sha256":"081da4c60742c182eab35c4348553597e464242c3fea2e19da2ef1d4485f011a","sha512":"0cdf1308fbe9108ba15b9b3a00e1d3935996cdd6e1d4cf6cf5938d9c8dfc44b0d8de01ef23d0be9c038bdc7bc9b44cb209f0e6f9dcd1e48d89da68a4bba2ef5c","ssdeep":"","tlshash":"c7f0d65a4f0cf92f5c26ae65fe96ace3245f4179202b4e606901de713c23b6dd270408","size":572,"data":"","first_seen":"2025-08-31T14:56:40.314889Z","last_seen":"2026-06-08T18:57:50.681069Z","times_seen":4575,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/app/layout-2ce99ca16c66f314.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"90e671877046fd45fda1ac0c8707fb5b","sha1":"e33a18485958c86e8b79fa89d6b38f2d9f80e901","sha256":"652c23e43abe3239ef03ac17908876eb5b09200623ec4992b4bd0314db9a4268","sha512":"693707b9179f328c7e3aaad6a83bc98acfe9b4b6c338b9faa4665501a0535809d690d65b8c2dea2648c4a170229b873ee43315f236efe5d05bed22e751eb76c8","ssdeep":"","tlshash":"3751b9f9634eb98ec4628d89e7ab4947f52e0610340f6cb063258e5554d1f4c92f5ff4","size":2797,"data":"","first_seen":"2026-04-26T08:37:22.478377Z","last_seen":"2026-04-26T08:37:22.478377Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"c3e3e350f78cf22bd7b335d70b41a58a","sha1":"cce22220b6a8dff76692755cc45439b4ec474a4d","sha256":"ee6bb81f4e9fc030a39a7c71affc4d1f2b900baa4b4c7af83361388d7c39599b","sha512":"15b6cbf8bd67e82a4952004138ebc95c44e4d373317826f1560eeec13416cc1d6a38d834609ef4b713e7a9c92d1b1bbf84de08e2e4061ed3d1e3891982c25b0a","ssdeep":"","tlshash":"3f90025ff2302063a756122b166f15456421626565550869123830eb4955148474265c","size":57,"data":"","first_seen":"2025-06-30T14:23:19.448274Z","last_seen":"2026-06-08T19:58:56.006513Z","times_seen":52989,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/1255-4441861bba0879c4.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"20e0d518c3ed8b625f2f7c4b8fcb6e4f","sha1":"11d22b9fc939ee4ce3ce22beda8bbff3551a6786","sha256":"6d20776360bc2f84fcf98c2c3d1a13c639503445ca86e30826e41e007a823d47","sha512":"b2c6041fe08568761e95589b43207de6cb7666a84ab468620c9db2cbe6e9818e2d76a5a08d701e62cc9dccde165c65026c53fcdbf2e03b39ac9b0c61c183ccca","ssdeep":"1536:bzigN+87bicO5HYHqLVcX77CIzPY6Q04ToTlTx1p7eklTtaocZXxreXRNIrky/Sz:37zgmA+3C4Y904Ajw4RN0z/Sz","tlshash":"b104dab636d0f8d107a780e5843b400af3295c3b146f74a0a3e6dcd975645dea1b3faa","size":173094,"data":"","first_seen":"2026-04-26T08:37:22.525286Z","last_seen":"2026-04-26T08:37:22.525286Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"b3594c64cf924625c05a7010cafc018a","sha1":"0dfbc548122dea0a68476b400895ffa1eb22f645","sha256":"93268a0726ec1efaa676ae5171f84267e72b7c3d215b6190794cb4069d5f58d8","sha512":"8f1d3fdc6a2935557a199535e172a92c825bbd1b2ddf25cc9be3968fcd444cd0a4e023bd3eeb90c2c222588defbcb5f1ad05dfbd1f542eeb760769db532fd282","ssdeep":"","tlshash":"420156a9f32819da66d92fbfa06b570c7460203e380600319507edfa1700de021cbd8e","size":845,"data":"","first_seen":"2025-08-20T20:29:16.213676Z","last_seen":"2026-06-08T19:07:38.842626Z","times_seen":5742,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/4bd1b696-182b6b13bdad92e3.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"956914c2a98a4c8823df801bf18375c9","sha1":"4837b06e25d5dda0ac156ef6862515561f9c0ed9","sha256":"ac61824cbe55db2ff6a8d8a22e8427dc3ddba120242a077e944ee4159ed7c5fc","sha512":"7a9875f274732327773f22a8a69cb15e7ffb911cc2b5c931bc07243691328fdbbbb8a133cd18ed818cd73ed0cb776bed24cce49bc6e725729ba19efbdb93fea8","ssdeep":"1536:nWET9Lwegcl2MywYleojBFOQLfioEV7hNc7lFlgXGhJx4bzZc5zg5tgW/zAe6c0:l9LwzMyh1vLEE7RgXOQ5SIA1","tlshash":"1df3f8ec3999e611aeb342a700df28037378261b240d4d60a614fd9ea57845bb17bfde","size":173025,"data":"","first_seen":"2025-08-31T14:56:40.349787Z","last_seen":"2026-06-08T07:28:57.167574Z","times_seen":1564,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/explicit-resource-management.b76b4e79.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"49caea7ac3d125021a1a108ea7d5c834","sha1":"39688ea0abb1d995928b42f1e903d9b6ec825938","sha256":"476703ad3c8d7aee89527b4c8e96a68e887fbe5b646e186051f68f7826686c2d","sha512":"4293b407c5a6b4e6462dc9d31c4e18fd6e3bf451c122a30fb5d707672118833ef0d20133218412535113326d3aa82278316a9a0348543c1a5b1919d394896a21","ssdeep":"96:VJkUbCzTe68IuBN4OElTopxxyrNzQTtiZF5GzeDoRlTFmTZYACTXeXP/OghG6SN+:VJ1e3eXI64OEFo7xyrxOtUF8sYFF4ZYC","tlshash":"abc17355ff61b1674be3f51cc0bf501a507d2908b80caae0b26bd0c61dae50e9237da6","size":5827,"data":"","first_seen":"2026-04-18T14:53:58.354794Z","last_seen":"2026-05-23T12:55:19.679035Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/176-34e89399a26899a1.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"253beb90e1a7cb3b4024a367879083c7","sha1":"8d18c6b52daf999b1c6236b4de53dfe0b85e2174","sha256":"24dae16138a93c3bd7dc0129d01ef3e29c49c4235cbbde4fdf55b213816d1d0d","sha512":"ddae8ccde2ec12db65d249bb6f9f6a13a54937106b11344bb641bf4005539976f91e97f3aba07d9a95591cb721d60f4e5799a743ae2a21833ac89af86c3128c5","ssdeep":"192:5L9+2cihbDVkPYxnRMeo0Qn8Z9YOHChAwM2GI/j:5L9nxzRMFKji+wM2GIb","tlshash":"a802a8da75d1f8e283ab1190443b100bf37e1db5141e91c4e7b95ce6f9b085c91b2fa9","size":8899,"data":"","first_seen":"2025-12-23T15:59:09.191772Z","last_seen":"2026-06-05T06:00:41.721236Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/app/page-0f9eff8320b44e4c.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9a34859406206637d782a46a9ae9149","sha1":"6382fa1c103a67bc62ce89ab3bcfbd8ee1fe5566","sha256":"ac8f76413db136eff91b34dde2fc8a1ba9e21f737d8acba25adecb280dba2911","sha512":"1ba7c6cfaa04837b9b1b377a1bf28b299dbe81b7f2e8a23bd38bdc7fa64462264d1b5104cc0608039473e7e198de289b5db649bdea58551d831e849868f27804","ssdeep":"","tlshash":"cb31595d3a17f15097f529e9f4581520e1640659572c85b0b2760c1735f8e8da3b0fee","size":1448,"data":"","first_seen":"2026-04-26T08:37:22.498161Z","last_seen":"2026-04-26T08:37:22.498161Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"f1d8410f129a659e882f6e80ef48b45d","sha1":"1d6480ba482cd0fcc0885d521778381d29e1b6d2","sha256":"8f1a66bb3132bd59867f5baedeb2e755bfbe69ce10d24878f5514897051fe90d","sha512":"2e54e53cbfdabdccce0dba0339a04be14d2c920eda6c5755914f646e83662898332fbacffdab854fe73d5d31dd4e4d469a06c89a4d8f48bad460bf2fd47403ce","ssdeep":"","tlshash":"cf6000300cc3000c000000c030000cc00c03f000300003300003030c0003cc0033300c","size":16,"data":"","first_seen":"2023-05-01T16:55:24Z","last_seen":"2026-06-08T19:07:38.843248Z","times_seen":8917,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/embedly.player.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f773d149331bac5d7b86f764cebc0133","sha1":"ffb997447259fe5c23a93e4c4d52b057fb587488","sha256":"f23fcb4a6b345e7b75e46fba51773a1fc07dd19e1b44c6a657e2280adefe3018","sha512":"f9413c6a02a7b08992828763ccc13f4dccd97a512b874845e0ed3b6efb4f632275bafdc6d0911704c158c5f91e522e775241479ac12443489739a4803be1689c","ssdeep":"384:Sf+551zwFcvvkbJJmvlPZ/U95HYSLMYpR8IWLwcqNtwEtuqOM:Sf+5rzwFcvvkbJJmvlPZ/U95HNLMYpRZ","tlshash":"10727449761b74b402e6713aa01f250d633717ed600a4ad8ba39e9e65dfec0ad127f3c","size":16212,"data":"","first_seen":"2026-04-18T14:53:58.353877Z","last_seen":"2026-05-23T12:55:19.819872Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.module.49d0a293.1924cbcd.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"e16a85aa12516c27fe9406b46a9360e8","sha1":"91c43aaae4b2cb888abef59492d12d30e64f0bb9","sha256":"376dfe5654d5082ed8e832a3ffd544e6629e51498a51a727ab69ff0b53168525","sha512":"21c65fda834dd8aeecde250125ac623314f261f1490fa9d65ef447a4a17c10802ef9b68034370cb7123af840ba6d7e21f3fc6513581f9dde50e2f1d29698f443","ssdeep":"3072:Iy92pGZ9RQTocG3ehi41ZFwITOcGriethEOGgNhfK6hoEYsjX8jsc2QkB2qf2i3o:IJpGZ9RQTocG3ehi41ZFwITOcGriethw","tlshash":"f0e3f7d872d2f0a183e361b6406f5107f23a7d55280d8864f26ae8d67c7958e827ff39","size":148929,"data":"","first_seen":"2026-03-21T07:33:24.07743Z","last_seen":"2026-05-23T12:55:19.536697Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.module.27545368.4796f17b.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"7cb954261c43291c3966b33c24ef4f64","sha1":"0e963c2557ad986c688717c8c007596fd2d11a99","sha256":"5c0777db9332be9566627f10b7f2354d513f95a3a12ddd73d86802392ea0d8c5","sha512":"d9cf4e508835745d157aec59d00253c39c5d159db91a18bdfc5b79b945b03592180dae7f67984cc79142f55959789faafb22a9d18e46190b296c88cfad01dc5a","ssdeep":"6144:rxV53/k+C2IcbLG4+4PDK/tD0iOUm+MPZfB/Fp9z1LQsT/hWVtI:rN/KWGKDK/B0iON+MPZfNFpd1k+","tlshash":"05541ae93595f5215bf352b750af0806b33c292b680d48a0b221fdde78b8469707bf9d","size":304468,"data":"","first_seen":"2026-04-18T14:53:58.368121Z","last_seen":"2026-05-23T12:55:19.485566Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/webpack-20acb443685a4297.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"59a26bd3c9a77fc5961ab91b2e20df6f","sha1":"44cd959a98ea3645adfdc1304392f8bddd329319","sha256":"89b6e55d959af1052c304793142c56063f65e5e6b239cec1937d2a63e80ffd75","sha512":"c41aef4508b32f81a80805108bb254d5d5a3e6cd651a88a8fdbef47a6e48ecfd01de394a57337ad255c0e8508d47c03431132bcb9d33841f53bfbbd23b70fc6b","ssdeep":"","tlshash":"3f81c5b63614fab51af004c9583ec581f62831361616ecb0970fecbd6128ed00562ff3","size":3936,"data":"","first_seen":"2026-04-26T08:37:22.538175Z","last_seen":"2026-04-26T08:37:22.538175Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1a6e1178e4bbf5730bd664a49dd3bc24","sha1":"17c3ae3273f9de6afbbdedf2e413dbb3a6722792","sha256":"3814cddd18b2095e01abb745a99e5ada90178e709c09879324c3b623f2d829ea","sha512":"cfb1aab0bf589e33fd12906f448ddbbf7163420a088de513b174304c9ba3a7abcd9b41c98bc4dd51edd0206c1fe4660db9857e3c6163d1bf50c670cefddee509","ssdeep":"","tlshash":"de9002b090c39c5890264186687100160b6c040c01080141132184d810115048e40d8e","size":43,"data":"","first_seen":"2023-03-13T01:07:12Z","last_seen":"2026-06-08T19:34:11.24863Z","times_seen":156829,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"f011b9678fc6113018271a099b1c8750","sha1":"50eb88efd90e9bb6d17b896b4ff15dafae52f7e5","sha256":"0e641732585ff614bd7fe874797c0f775d63084b5bf0f95f5d3ee9c32a56222e","sha512":"b2a60dee5035c936bf62b726c61cefd68fd8a7847a8e9df710038d9b681624275f08fc840f670fcb4efabae4e72802f7bfd5f4f09f923d666cbecc9c45f2e41e","ssdeep":"","tlshash":"3e4188037064fdcd68669e392b25ff27407dde7680a45c88af8df4121272ee90265e4b","size":2210,"data":"","first_seen":"2026-04-26T08:37:22.562902Z","last_seen":"2026-04-26T08:37:22.562902Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/1455-2e1867cdb14b7c7c.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"72892d746c5cf3d55fd9edad19c38f40","sha1":"61cc1b41fa628b84f0d97ffeb997aa2a9deb2c98","sha256":"77e776157bc3c05cfdef035bf41eb67bd9732421f55dd083ea2d9740bc066f78","sha512":"a1273446fd3f03718ebaa1917513d012e0cb270cf38a74a5a52a50205522fddb052a8c8ba4f36745475a4bb936b6d7ed9d3d2ad7e975410932ced02fcffb5d1a","ssdeep":"768:uja8tuNG/kNv2rJ9Uf11Gg3vrEbT93HVfVpjieSlK25:+a/skdVrEbT9dWlK4","tlshash":"4bf28414a166fe9cf52a0998595ed41c702e7f48ca0e5978f7fc7c266a188c83613fce","size":35650,"data":"","first_seen":"2026-04-26T08:37:22.540052Z","last_seen":"2026-04-26T08:37:22.540052Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/5622-b76388a4712dab99.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c3d5a9980a498d829da89b150fbf0090","sha1":"4d4b85556b343ef83308314cd2deaca404900a83","sha256":"9f627804907c02ae78c704988731cb2887f477c260e88bf464018fbe852b7813","sha512":"78eaa3f1a490ae6bf981e88f8ac34fce63a1dcf75b2fecfe14f87400efe424d9f9fe703d86ea5e168eee604707a961d75d9da407462adc947125dbb5fd7e1398","ssdeep":"384:G1whBeapqPJyCkMgovp5aVjO4pim66W71:G1whBRpqPJNkMrvQjO4pil6W","tlshash":"034275c0d7a9fadcf9464bd8d42f644c701f3eb88f6549a8b479682128090cd3997fc9","size":12459,"data":"","first_seen":"2026-04-14T13:02:31.586011Z","last_seen":"2026-05-01T17:51:07.871047Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/iterator.37e3faeb.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"a3ad97a01a34e06f0b13dec0d3f98465","sha1":"3d5ff04cdf0126681b65ccf89e4f6bef830b52d8","sha256":"74e561f86d2606dfce9ec6b3711119bdbcb5ceed5d3625db7f23981a65b259b4","sha512":"ed771b552674cdd36f050915408e1c44d65fa689ed4700193c07802151e4e37b783541dcafc572d63247cdd4fdef47498e109a4762495b176a77f10fa44ab1c7","ssdeep":"384:klqhU+IZXnmtvWlNYAgM7VtXtcwJ5fY8r+3QRVRHICtrp3RWzZoOz8TZ:XIZQ2NP0EtSJo","tlshash":"40725554f2c2a83106bb7620d02f0509b5671e09ec8c9d94f65eed99f4bb50af236dbc","size":16781,"data":"","first_seen":"2026-03-29T06:05:50.110801Z","last_seen":"2026-05-23T12:55:19.681872Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/intl.locale.a4a07d28.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"8feb56b806200796c7cd18c06d4c4700","sha1":"4fb96d3ca53daaf7942b41fb0b7d277f315b723f","sha256":"f0fc152f0a84369ef48a75e91952caab12c773e3ade7d7fef28bc63c8359c282","sha512":"5b14d144c0a697d64b719a8f850f4025179fa5ef8f2f0d44847c96901f2bb7cea1f7ae33170755ec73cec08fb6e13832078df323f3991bdb944e59a57a594256","ssdeep":"6144:i+U/qJ7BYpyDv6oCa8W9QiH2OLB2FKQmTdEve6gQyhZTCWSrg+La9Q/MX9QHxn41:i+U/i7BY1W9QiH2OLB2FKQmTdEve6gQ2","tlshash":"6f44c7121eab968f8f5817d2bc8e6678680c64b3ac4e7d169dcd6f7ec9c0c4811396cd","size":278195,"data":"","first_seen":"2026-04-18T14:53:58.338597Z","last_seen":"2026-05-23T12:55:19.563315Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.core.184599f6.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"7d1d53d9cb59964ac2b44ba25235346e","sha1":"73bd6d04c6914290091064ddfe94e118d1b9587e","sha256":"2535487fd5d531c9d747140e0ae44d65404c41df4942fdd45166180e4170bb30","sha512":"c64faafe6afc6571f93d202ed3d11c2d1f073e108ca3a4d95d70c27854efd10414fb7f2a3feff72e80a493009ccbff7bd588f1319d1e669267ccc6e3b4f2f4d4","ssdeep":"12288:xpoip37wERLIQ2uRJfLazMSkm47AGdqPM7ZNLPAO9MTfzl7:xpooVO6fSkjHdgMlNLPAbfJ","tlshash":"e2e49e9da692786c5493c8dde4bb4409b33e398c7458c164b13ede9c208f685eb33b79","size":712596,"data":"","first_seen":"2026-04-18T14:53:58.350876Z","last_seen":"2026-05-01T17:51:07.883932Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9b8b0bdd3b4eaba2066d1cd4ed48af71","sha1":"459ef05941e3fd1d8fbb5f765181cd252e8bfa3c","sha256":"48ef5038de8822fda34e7681da7264a5566ad41992b156942b369edd942e4ab8","sha512":"2e702ab2d71400d5163b2d24db11369cb8cb8c590215314324d1a0e47069ca59323880988e9142bd1a6fcce1c1c3feda76771dd23146fc3ea87dababb9bd5878","ssdeep":"","tlshash":"86c09b549459fc9d903109371a2ebd52409cce8a53c449dd6795e1d6e331dfc32c6d87","size":139,"data":"","first_seen":"2026-04-26T08:37:22.564558Z","last_seen":"2026-04-26T08:37:22.564558Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"8dfaa8bd1388ca052a0faf5b57a0030a","sha1":"b5baca00b72144c712969b47ed3de3c44bd18d8f","sha256":"7be5ccf0f3463b3fd26b4c9f0f9d520dff854a438494c097146349f8f2d1ac8c","sha512":"6f1c6819bf6cfd31cfb11e2dd929eceee229c439312e4d47bd6a3e1420692e4410bf5f3134d7c1638b4d5af80ccecab6296fb813bac428ad840023531668843d","ssdeep":"","tlshash":"312124295005cd4eec6e3db8063d9e3b20cc8a7b8250def88289de141b665b623d6dc2","size":1278,"data":"","first_seen":"2026-04-26T08:37:22.567094Z","last_seen":"2026-04-26T08:37:22.567094Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/6958-652b57740cfa8b95.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4a438e992ca72733a38dff124cd3849d","sha1":"a499fb8de5dd9d618e7018316c0450deeb60c9a6","sha256":"f1c73fa2a47160e14b168c8f15a3e25024f29cbc2c8ac4740a6ea2918463bf24","sha512":"de6630d8a48310c44c803f616a9b640aee82814577f223bdcea4c231b2eb36bbbb48013ca4b900b14d0408d8fab32e51302afba22c41321f2c2bc70966239299","ssdeep":"768:eqaN3NpnQ2o+H7RyZEGYATNfqzlz1mIXJ3v5aCGj0D1oKaBtl5N2g1BF1RXm2cWc:eqaN3NpnQ2oY8+GbTcN3v5aCGtXVWZTL","tlshash":"d003c751a28532360f4343d9146903096fae79b4678c541fb76c5ed72d22c8a4bbeff2","size":41033,"data":"","first_seen":"2026-04-15T14:54:50.96891Z","last_seen":"2026-06-05T02:38:39.631542Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"5b49f39120b1bee119a3dab6894e53ba","sha1":"7508a611d6b7a474ad7acc028df98b5162b34ce5","sha256":"a4e7b41668056e20e21adc95b0f4506931f791009163419a205f8a46650c00f0","sha512":"8d8201b0809e5732ccde23544377d263ea2198f5c8cfc62a333283bd8ef379287f38e09e2dd2eec519757d8ff902822914417314afa13ddd1ab6bd99f67bd2db","ssdeep":"3072:ixgV917/cuf9WDTJcB+OY01t6B+mHDbHDLDHDF:dVLfWDB46cmHDbHDLDHDF","tlshash":"89c3d5097fe470764a9b51a1707f2503f1a606d4ed2ca9c2d206cdde28cce0666f67ee","size":119564,"data":"","first_seen":"2026-04-18T14:53:58.37385Z","last_seen":"2026-05-01T17:51:07.867831Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"dc4c3c319976b2c197cda8bf32d71c3f","sha1":"efaae3f3381f6164862c2272de013a1689f5bef3","sha256":"1b2dc7ba1f266921e7274ac733456456952b6a8d823e06a43f43ee734afa7380","sha512":"33d93bb3ec88d45be14bf5e44b7936ebde88b5188db24c9504432e11badbc1b59c1c5a6c050e52db8719e57e68d3c6e6ce99df16511f5a6beb731b0aa36fd28b","ssdeep":"","tlshash":"d651e1e97812dc56eec6bc5864ff2c37518e46cf49c28d7ee2d4ed1141a34b87a92b80","size":2564,"data":"","first_seen":"2026-04-14T13:02:31.693021Z","last_seen":"2026-04-26T08:37:22.568398Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"3921b64793bb10783faf6fc551f9b511","sha1":"c8962d378b1078d394f1092cd42c37f83b12acfe","sha256":"53d5be668456d7dadfea88447d4876a1237c52627c9998c2a31a77d406c41983","sha512":"df942df75ee888f51a80d118b027ec8378b743fc900ad057414aea546a6689f34b672f7bc624226515711880bd20b20e584eb0b9beb2e69001ededea3a8c293c","ssdeep":"","tlshash":"b4c02290dc12cc2cc26a0f22183e0c2921ccc564030941069c85da280981b3005b1d89","size":185,"data":"","first_seen":"2025-08-03T18:12:01.039537Z","last_seen":"2026-06-08T08:21:30.303102Z","times_seen":446,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"7af2a33eef6d5f253266f8bdcd39637e","sha1":"7b3f535021aa7c7f49d1a1da5a74674322fcedad","sha256":"e4657c7c14f84bf0fa664bdb9ade5f90bfb4e3f3ead05eecf04cfb4ba6c7149e","sha512":"d0b1ee2e43300682126dc56ed1a857f7d6feb0e66b1044c11c45a41a448678a7a3bd48454bf1c0c6a024e407c4349444da82ad093644f17bdc3d6f90b976d1d7","ssdeep":"1536:nDEVvBofpBqwT+D+tFyuUjwBiRgfAfTZinkOkv:YVvBofXf0UQuUjwBIgfu8nNu","tlshash":"0843a51ea659c22ac7c38d4b3aba5d76bb68d15813d140bc7cf8c10a0355dfceab75a0","size":55703,"data":"","first_seen":"2026-04-14T13:02:31.706063Z","last_seen":"2026-04-26T08:37:22.57207Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/1838-7cf135c919710680.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ce0904563f643c8a436552e8f3b8ac56","sha1":"408ab66bdd6588938e4beedbdd7da3ff06c47f0a","sha256":"38deb077e4fea5ae488e3834addd960516792f1f129f1dd7cb3c67a01dce0762","sha512":"95aa88b79ea160d5c35b053882027504e75d12f105b58104b06bf687d9a04c3a2f7ab676ae79d064a562e34f7a991d75c6490b7dbb9b133a2a3d290f7e159d4e","ssdeep":"1536:39T4OR1ebx/c64Jysq7vjJ4sRoCSPaBEfQsGFCLtbfpAmg7vj8QW:j/eH4sRoyBE4sGF0tbRAmg7vj/W","tlshash":"62a318c0f654b035476b6294449f010af239fa25644e0868f298dceba8f5ace65fff74","size":97773,"data":"","first_seen":"2026-04-26T08:37:22.55015Z","last_seen":"2026-04-26T08:37:22.55015Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","fqdn":"kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"8a099a21a2f5ec5b6429dc11cead9708","sha1":"45d81be0125c1ba7feb5099049d9a5f007a2410b","sha256":"31726b695cfdeb57670d64db5e3b04032245afd029e568fa3246766c0c3cc099","sha512":"a26832d92a715a702459069ebf10c19e0ee6eccc30353ce70754ee57b40a69dd07f165a98ccbcf77abbbabf27cfdc1fe45c074306a9e0e4a6ca5b7af2a6f2efc","ssdeep":"384:YpQj9NfEG7x0ahmScKYHqDoke2IqpNtHTr5+zfTo98Sxxzu8QXc2UC62Kz:YpQj9NfEGT0SLYHqDok+qt5SE98SbP7X","tlshash":"4db2bf9393e3441a9e46a2ab304936c97f393202fa94a74df79cd7cc43ba36d141bd25","size":24124,"data":"","first_seen":"2026-04-26T08:37:22.574147Z","last_seen":"2026-04-26T08:37:22.574147Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/symbol.530c62b5.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f4146ce787fb2270ebb8bd3c8f21e24e","sha1":"263946786092b20a1363e1127cf9ac8f58f2ed8e","sha256":"b6cf8cd4dca1b228a047eb011fe28ba90f611e6722f7a5130209fafba13010cf","sha512":"14d8e23945fc88cbb62187ae97697e2d22e279e432be38656da039b565d65da1ee6ca595e1841adbf38669940d1c5357b732f0415b45424b6c9e77b160bb9560","ssdeep":"192:ieRt6wQ5fs8qDp7uL3+9f5HltOCUPnz5JVQA4UGp6vW73o+so6ZN/t:hAwYfG7uL3KsPnz5DQAFGpyW73oPjZNF","tlshash":"6742d585b28270e706a36518906f4483a0a61f45fc0d9d90f75be8912d7fe5ab0f2e9e","size":12223,"data":"","first_seen":"2026-03-29T06:05:50.160369Z","last_seen":"2026-05-23T12:55:19.716223Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.module.0bc0478e.1952771c.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"7aed20768c6e72f1a628709b3258dcef","sha1":"9135f7e7580b0e2cd5c8761490a54b77d444e639","sha256":"2c16fbe3392569453444257738bea5150f602c7dc01b6d1876fd9abc630aeb8c","sha512":"23d6ab7e3096cc0f4339a985cb72d4a5637a45d4f097b8f805a18fcc2009241ee220c542a75b5165848bfbd6b58f737cdfdd921a447ffb44e3a487faf5348a0a","ssdeep":"3072:H2VKOv0EpnHy058+WRBBd5pknnJoQ1QqFY2dTMWpzFRxvRmR2aGuxlBIIQNhp/C:HPOHyN+yBpknn9tFY2dTMWpzFRxvRmR1","tlshash":"35e318d432d2b4a643a749ea40bf8006f33d3a55310dc854f229e8e7b8a615ed273f79","size":152877,"data":"","first_seen":"2026-04-18T14:53:58.341519Z","last_seen":"2026-05-23T12:55:19.629543Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"44e95fccaaf10d065b7e07cb04849846","sha1":"8d543e11a8b1f0d45e4650828eb17fd5519a69ed","sha256":"1cebaf8fd1dfbc980d27e74be8c46bf38bf8483cd0a80e15a65b803fc948dd5c","sha512":"35e2a438d1a7e1202bf2f3fb3c29f1a318d15a0f5fe7aa565319572e1d9a475c06821427b70263280fec7618a33b778a2decfdfd26bbeb08eca400092272f8f3","ssdeep":"","tlshash":"59e01a6f1948c957a93e282a8a3e5c3500c8cc370b6067b4c6decf492a010b92bfdd52","size":388,"data":"","first_seen":"2025-11-03T01:09:51.078845Z","last_seen":"2026-05-01T17:51:07.916151Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"cfa0de39889b5ba9b94423f5b15c2b47","sha1":"0999944f27a5d6ee46d0f0a5d727e11481938181","sha256":"0c52038016f37c615eb798afff10dbf1f4cb7ecae1a464de594103f017f659ea","sha512":"9f3b4ba14670b477a9712a29af55b860ee12bdffa0c71b8242a7e4319da6985486546af2a05fcaa8013d3bae8e6484e6bcde55a98d9931012489278c3946dbd5","ssdeep":"","tlshash":"f4511bf7fd06cd08df825d48943e3c7492ca879681d66966b268cf658543f7428f1e90","size":3107,"data":"","first_seen":"2026-04-14T13:02:31.715794Z","last_seen":"2026-04-26T08:37:22.582395Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"de074b48fcb42697fc829888f2b20c2e","sha1":"468391ce4b0e597e9586ecdfd465fca7025e424e","sha256":"c73f347cf8e101cce0fed0725e79b7c5f66b7405163833e642d0f8b289728f57","sha512":"ae23bd4709128942c0c3233b1f3ce623e0c5d898b0739b618d71b7c27d07bc1c2df953e63f6020af25bf622ddbf434f712fdde00efd0bf263a682e60323e3456","ssdeep":"","tlshash":"b1900470d0c00d574031043315fd7101d55cd0cc44110f001f57575714131d57745f5d","size":45,"data":"","first_seen":"2025-08-03T18:12:01.041637Z","last_seen":"2026-06-08T08:21:30.30444Z","times_seen":565,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/map.c51fa63f.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"d07dd667b4b0135ef7563ab5f16cca62","sha1":"929b25ef51c80a1cdd81b3de5415b9abf2f56d18","sha256":"226a4fff498788d878a227efaa50007f6049124479ef4961d1d6364a78741473","sha512":"f2cc5bfb1eaa4652f91877599ef58354df3a8dbc1b1df2398008238d6b2f868db0aac9214a20e48b13225fea50cb7f2379ee784c1f6292c061774460302927cf","ssdeep":"96:Sq6May4yOtz7ZepYYqdlH+dODTmmigdtNlTHBt9+UYeQ2FNUlkhWC:StMayaAYHltTmmigdtNlbd+UY6Pz","tlshash":"7fd1a58dbe95f0b55aa36d64912f4107f11e1b54b01eaac0f62bc6856cbc58f4033e7e","size":6362,"data":"","first_seen":"2026-03-29T06:05:50.111751Z","last_seen":"2026-05-23T12:55:19.512812Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/array.30e88016.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"5bbffabace2bdf17ea31a85cf990edcf","sha1":"dc836912c0d5d4cb0920ea399ec83d487025bef6","sha256":"33b9c1e3b4b7e6bfb824f802ed8e27aca077cc3570fbc81a7a8b462a2cb9fb6d","sha512":"dc03a35ff9b9dc35230ba7f115c7e6649e8cfda2ad422142e2e446818e5f84f486bfcac804563ef3a282732319b1af09d6c0bc4e2c092e711710063344053b89","ssdeep":"384:vE6nwlTp2n5xezR4nsbm3wfQhfwtx1G2IfBaKd+Bu4Sa0+V6kKnMrpB:vTwlw5xezM8cwhJIfBanBu1a0oUMrpB","tlshash":"54a2a798b38550f381e26924802f4587a0aa2f55ec8aed42fa07f904747ff9770b6d7c","size":21372,"data":"","first_seen":"2026-03-29T06:05:50.139782Z","last_seen":"2026-05-23T12:55:19.414635Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/intl.durationformat.44700b8a.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"3bf453f2d194248a39bb3563ca0e14e7","sha1":"586104a6b986cdb199e8d7103e12856bae6b45e0","sha256":"c701368e78f6041bbe532aabdd7e03454b6e43f484793596bfa622c1ae74700c","sha512":"6b8314866b8bed036f1e8ec56eb65ea60f6286622a072398e7a207f655d2fcb7dd2165676a7c317b6feca866da352cf78104dc75bf948361d14c2ab47a67bde3","ssdeep":"1536:KoVk4Xg/qR508fo5wobr+NWuOhB0jNMZx:Ko+4Xg/qRa8fofOWRaw","tlshash":"c2534d8431f7a5d31eb23c813caa2e07e12828fc66791450914db7fffc65d896129e6d","size":64840,"data":"","first_seen":"2026-04-18T14:53:58.344331Z","last_seen":"2026-05-23T12:55:19.417525Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.module.ef5eeb79.c1f68e24.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"98ab74ddfe758a6828eb20e1cbc70220","sha1":"12d1f444f093db2e79332d725080b4dbe5a0494c","sha256":"7a9a406af65a56844934e41dd249a83e41315bab58dc115c399669546e43d750","sha512":"ded1a8fbc4ac596091d4ecf7f37cae50180c540030c20c078f420c9606e9b94f1bb4678dae9345d315f822a244ff032424066f02d086da9c3b5dd9142043cea6","ssdeep":"6144:mtw+P/LSSJOpMiAM3DszLQ+AvALJ8pTvGa1giCAq19QAz4qfbWG1PpH1W2Lb/Jlt:mw+P/LSSOszLQ+AvALJ8pzGFiCAq19T5","tlshash":"8d4409d97792f46156e3c9dad03b0126e3397a893005c058b23e9cca35997cae633f79","size":271088,"data":"","first_seen":"2026-04-18T14:53:58.342486Z","last_seen":"2026-05-23T12:55:19.839712Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"overload.su/_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2 HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://overload.su/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 135918\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"f3f7e95f2dbc4fe4-s.p.woff2\"\r\ncontent-type: font/woff2\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: \"26b4b6557e9db18aab82adad3e2df080\"\r\nlast-modified: Fri, 24 Apr 2026 18:50:59 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::ngrjq-1777192577925-7ae5b5b770b4\r\ncontent-length: 33672\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":33672,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 33672, version 1.0","md5":"26b4b6557e9db18aab82adad3e2df080","sha1":"ba2647db89c7bf93c9914758482bbb4eed142699","sha256":"d2909123a6a8ed2f928055f002c32f63ee93496b470c1a344873f955111fca53","sha512":"43fad64ea8d0b21ef5229c289bf123e8371ca5454e9a59ee29371508735da77c839c6b575567f7f839d95232fd6ba745720b22e8460a41d3cc41678954a8f436","ssdeep":"768:gVZAf4ez56vS5WyeWdZrUFG+7eWpi2trpkDajgb:g4wezUaVxr6Gkeki4r8acb","tlshash":"36e2f15e545ceb73db7bbc30cd9843cd675eaa1a3d4900c4e7c1782a1b5443b282fa66","first_seen":"2025-09-14T23:58:13.457529Z","last_seen":"2026-06-08T08:49:34.000688Z","times_seen":784,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/5622-b76388a4712dab99.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/5622-b76388a4712dab99.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 135620\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"5622-b76388a4712dab99.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"c3d5a9980a498d829da89b150fbf0090\"\r\nlast-modified: Fri, 24 Apr 2026 18:55:57 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/5622-b76388a4712dab99.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::g9cb6-1777192577942-a14c44617c0f\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":12459,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (12459), with no line terminators","md5":"c3d5a9980a498d829da89b150fbf0090","sha1":"4d4b85556b343ef83308314cd2deaca404900a83","sha256":"9f627804907c02ae78c704988731cb2887f477c260e88bf464018fbe852b7813","sha512":"78eaa3f1a490ae6bf981e88f8ac34fce63a1dcf75b2fecfe14f87400efe424d9f9fe703d86ea5e168eee604707a961d75d9da407462adc947125dbb5fd7e1398","ssdeep":"384:G1whBeapqPJyCkMgovp5aVjO4pim66W71:G1whBRpqPJNkMrvQjO4pil6W","tlshash":"034275c0d7a9fadcf9464bd8d42f644c701f3eb88f6549a8b479682128090cd3997fc9","first_seen":"2026-04-14T13:02:31.586011Z","last_seen":"2026-05-01T17:51:07.871047Z","times_seen":4,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/image?url=%2F_next%2Fstatic%2Fmedia%2FwhyFullstack.abb8895e.webp\u0026w=1920\u0026q=75\u0026dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/image?url=%2F_next%2Fstatic%2Fmedia%2FwhyFullstack.abb8895e.webp\u0026w=1920\u0026q=75\u0026dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 398883\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: attachment; filename=\"whyFullstack.webp\"\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\ncontent-type: image/webp\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\nlast-modified: Tue, 21 Apr 2026 17:48:14 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Accept\r\nx-matched-path: /_next/static/media/whyFullstack.abb8895e.webp\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::g9cb6-1777192578233-03e9b68ac90d\r\ncontent-length: 7336\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":7336,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"7797cfaf2fa9f9cf8eebdd7ee385c58c","sha1":"8832b9f3c4c973ec0e122a212dcd569502b8b1a2","sha256":"8b3ce199a1a4a1d54f3917c21f68b6d7cf743993badd6b7c992c116d08a091c1","sha512":"84a5b5b625d0c012962afa0f385f5914ffca17e988075e0874453bf00c2268ae7fcc9b32f6a01e80161752e230e42a3fa3c2f24d65dd5035c589779d327346b8","ssdeep":"192:pqnN5j9BWKuAAE7dV5K1VYuyJ30gZ0+/sRyRoE8lH:pONotmdj0VvA30o/sRYEH","tlshash":"cae17eae2de687c28be8b106a234c1b3394a47bc9df543ccd5454129186d1cdabacd2d","first_seen":"2025-11-03T01:09:51.012148Z","last_seen":"2026-05-01T17:51:07.838626Z","times_seen":5,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/api/plans","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.619Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /api/plans HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 12827\r\ncache-control: no-cache, no-store, must-revalidate\r\ncdn-cache-control: max-age=21600\r\ncontent-encoding: br\r\ncontent-type: application/json; charset=utf-8\r\ndate: Sun, 26 Apr 2026 05:02:31 GMT\r\netag: W/\"103d-qnCo7vxCxZA/8eO3XLYEQpftJdo\"\r\nmmc-engine-parsing-mode: injecting\r\nmmc-engine-region: %F0%9F%87%B7%F0%9F%87%BA%20CIS\r\nmmc-engine-service: server-10\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-powered-by: MMC-ENGINE\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::fzlnf-1777192578596-27350eeb870f\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4157,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"ee0a67bde81d4344dbe15b49fd4e4e7b","sha1":"aa70a8eefc42c5903ff1e3b75cb6044297ed25da","sha256":"954fa13e2966608e56e65c288eba9b393b84ab190e2dc304d995e8eb0224fb73","sha512":"f56932b76c7baad40f763f6451255c1f55a6cf37a02172d542f3409256396e0645b2522f9a0434a55ab14f1fdfbb458149c62561785380ca6f79797485bedf82","ssdeep":"48:rvsszxA8vgs3u0GAOqv/DB3+C9EvbrnYzMu8vtbEuAXfvvP9pzXvHGeiJebOvwTs:zCqbfu4XIuobE3z1ikBiYiWP3GbZ","tlshash":"4681dd3f890acd78d5545049d2c38295467d2276af4e2ea1f3fcf46964deca23376243","first_seen":"2026-03-01T20:52:20.827231Z","last_seen":"2026-05-01T17:51:07.849328Z","times_seen":8,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/home/hero/server.webm","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /home/hero/server.webm HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 136922\r\ncache-control: public, max-age=0, must-revalidate\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"server.webm\"\r\ncontent-range: bytes 0-1276831/1276832\r\ncontent-type: video/webm\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: \"da2bc744400ac22b2755c7417fbe4c2d\"\r\nlast-modified: Fri, 24 Apr 2026 18:34:16 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /home/hero/server.webm\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::fzlnf-1777192578675-310c77ec83f9\r\ncontent-length: 1276832\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":1276832,"size_decoded":0,"mime_type":"video/webm","magic":"WebM","md5":"e386cea33e50fb1c6277b34e8ee3dbc2","sha1":"db4c2f352c5db20f28798753771b2609ad82bd94","sha256":"89005b88172952c0fcad8fecdc4eb78ed9a2fe35121e4c630288c70a0ed8d802","sha512":"8331d5b8d4a153a6feffe5a39756e2230a1babada18f54609340be14fe9b08f4e4c0e4eb9f1dee1897c157098c54d85308b289c77f0695f22b1b4fee29e8636b","ssdeep":"24576:LZqHcjnLDcdL/W1XuFYnfppMJdXt3u4X2ZrEyB8PMAm:R7LD8ijfppMJdXkI68Prm","tlshash":"932533e85a1b0827fa420661c5b0d0ed6e16c8de45986627ffdb60ac4b5e315cb63f07","first_seen":"2025-11-03T01:09:51.063747Z","last_seen":"2026-05-01T17:51:07.890801Z","times_seen":5,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":66,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/IBMM.55c27876.svg","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.236Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/IBMM.55c27876.svg HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 135620\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"IBMM.55c27876.svg\"\r\ncontent-encoding: br\r\ncontent-type: image/svg+xml\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: W/\"e6f8d41471f4d5ab28e554d1b9491db0\"\r\nlast-modified: Fri, 24 Apr 2026 18:55:58 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/IBMM.55c27876.svg\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192578228-89a5bba9f45f\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7315,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e6f8d41471f4d5ab28e554d1b9491db0","sha1":"f79a24e4b525174e241217acdbcd51340ed8b176","sha256":"e09b334bcdd1caf6ec6d725c50dd4aa34472d21cf55796252c5281831c3e7702","sha512":"8c453724b7480de71f4cef23d3567582de4ce3ad50217a4a12b9dbabc05784f113d70f9d09cf75df1f9be2a48a22532312718b32a403d4bd21436d025b0b6815","ssdeep":"96:wv6SI8mjNZI9GvLa0P+slW0FzGEJSQGMv/yh9hRvjMvynJHwE+hwcFfrPzIm84Dd:sO5ZI9GuTs80FyTQGMWjF8yLcRPz1l","tlshash":"15e151cd5b1c55f4da0de7f8ee0dd8b92a1a01f33b21aaa683549f16760113e48bddc2","first_seen":"2025-11-03T01:09:50.992996Z","last_seen":"2026-05-01T17:51:07.870279Z","times_seen":5,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.module.27545368.4796f17b.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.878Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/player.module.27545368.4796f17b.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":304468,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"7cb954261c43291c3966b33c24ef4f64","sha1":"0e963c2557ad986c688717c8c007596fd2d11a99","sha256":"5c0777db9332be9566627f10b7f2354d513f95a3a12ddd73d86802392ea0d8c5","sha512":"d9cf4e508835745d157aec59d00253c39c5d159db91a18bdfc5b79b945b03592180dae7f67984cc79142f55959789faafb22a9d18e46190b296c88cfad01dc5a","ssdeep":"6144:rxV53/k+C2IcbLG4+4PDK/tD0iOUm+MPZfB/Fp9z1LQsT/hWVtI:rN/KWGKDK/B0iON+MPZfNFpd1k+","tlshash":"05541ae93595f5215bf352b750af0806b33c292b680d48a0b221fdde78b8469707bf9d","first_seen":"2026-04-18T14:53:58.368121Z","last_seen":"2026-05-23T12:55:19.485566Z","times_seen":35,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/app/layout-2ce99ca16c66f314.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.982Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/app/layout-2ce99ca16c66f314.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"layout-2ce99ca16c66f314.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"90e671877046fd45fda1ac0c8707fb5b\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:27 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/app/layout-2ce99ca16c66f314.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::ngrjq-1777192577947-cbd29ccfd7f5\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":2797,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2788), with no line terminators","md5":"90e671877046fd45fda1ac0c8707fb5b","sha1":"e33a18485958c86e8b79fa89d6b38f2d9f80e901","sha256":"652c23e43abe3239ef03ac17908876eb5b09200623ec4992b4bd0314db9a4268","sha512":"693707b9179f328c7e3aaad6a83bc98acfe9b4b6c338b9faa4665501a0535809d690d65b8c2dea2648c4a170229b873ee43315f236efe5d05bed22e751eb76c8","ssdeep":"","tlshash":"3751b9f9634eb98ec4628d89e7ab4947f52e0610340f6cb063258e5554d1f4c92f5ff4","first_seen":"2026-04-26T08:37:22.478377Z","last_seen":"2026-04-26T08:37:22.478377Z","times_seen":1,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/intl.locale.a4a07d28.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.592Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/polyfills/intl.locale.a4a07d28.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":278195,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8feb56b806200796c7cd18c06d4c4700","sha1":"4fb96d3ca53daaf7942b41fb0b7d277f315b723f","sha256":"f0fc152f0a84369ef48a75e91952caab12c773e3ade7d7fef28bc63c8359c282","sha512":"5b14d144c0a697d64b719a8f850f4025179fa5ef8f2f0d44847c96901f2bb7cea1f7ae33170755ec73cec08fb6e13832078df323f3991bdb944e59a57a594256","ssdeep":"6144:i+U/qJ7BYpyDv6oCa8W9QiH2OLB2FKQmTdEve6gQyhZTCWSrg+La9Q/MX9QHxn41:i+U/i7BY1W9QiH2OLB2FKQmTdEve6gQ2","tlshash":"6f44c7121eab968f8f5817d2bc8e6678680c64b3ac4e7d169dcd6f7ec9c0c4811396cd","first_seen":"2026-04-18T14:53:58.338597Z","last_seen":"2026-05-23T12:55:19.563315Z","times_seen":35,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/api/plans","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.658Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /api/plans HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 12827\r\ncache-control: no-cache, no-store, must-revalidate\r\ncdn-cache-control: max-age=21600\r\ncontent-encoding: br\r\ncontent-type: application/json; charset=utf-8\r\ndate: Sun, 26 Apr 2026 05:02:31 GMT\r\netag: W/\"103d-qnCo7vxCxZA/8eO3XLYEQpftJdo\"\r\nmmc-engine-parsing-mode: injecting\r\nmmc-engine-region: %F0%9F%87%B7%F0%9F%87%BA%20CIS\r\nmmc-engine-service: server-10\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-powered-by: MMC-ENGINE\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::4vpgm-1777192578644-7f7fbdd7fdf6\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":4157,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"ee0a67bde81d4344dbe15b49fd4e4e7b","sha1":"aa70a8eefc42c5903ff1e3b75cb6044297ed25da","sha256":"954fa13e2966608e56e65c288eba9b393b84ab190e2dc304d995e8eb0224fb73","sha512":"f56932b76c7baad40f763f6451255c1f55a6cf37a02172d542f3409256396e0645b2522f9a0434a55ab14f1fdfbb458149c62561785380ca6f79797485bedf82","ssdeep":"48:rvsszxA8vgs3u0GAOqv/DB3+C9EvbrnYzMu8vtbEuAXfvvP9pzXvHGeiJebOvwTs:zCqbfu4XIuobE3z1ikBiYiWP3GbZ","tlshash":"4681dd3f890acd78d5545049d2c38295467d2276af4e2ea1f3fcf46964deca23376243","first_seen":"2026-03-01T20:52:20.827231Z","last_seen":"2026-05-01T17:51:07.849328Z","times_seen":8,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/home/hero/server.webp","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /home/hero/server.webp HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 134191\r\ncache-control: public, max-age=0, must-revalidate\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"server.webp\"\r\ncontent-type: image/webp\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: \"d2c9ee6017924a7abead06f54808a699\"\r\nlast-modified: Fri, 24 Apr 2026 19:19:46 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /home/hero/server.webp\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192577926-d23257450e10\r\ncontent-length: 9172\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":9172,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 613x613, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"d2c9ee6017924a7abead06f54808a699","sha1":"71019b31a1189c4d13fb79ff14297fca451d4995","sha256":"4841539106c803e016fdfe827a8523dda80ceed23b8e841e75992f234bbca652","sha512":"6026eed9c5865e0948d1f8f6f9a32de2bd0b1f482624de8ca5a2b5645c7959abf67b32f1ffe26a09d6810d74dfe9c5c788deb22626c341268924886942ad58b2","ssdeep":"192:OHKG5lQVe8Q6zvQWoexuXuUZ0pAMW0hDsYsr+QNZFlkSldpn:eQ+6zlZxudalgYsr+QNZPTl","tlshash":"2912af10d783e487f71becb28fa75a2512d7378e2e0f5ba557481ea08348d9d57a21c0","first_seen":"2026-04-14T13:02:31.580071Z","last_seen":"2026-05-01T17:51:07.853959Z","times_seen":4,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.352Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/player.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":119564,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65531), with no line terminators","md5":"5b49f39120b1bee119a3dab6894e53ba","sha1":"7508a611d6b7a474ad7acc028df98b5162b34ce5","sha256":"a4e7b41668056e20e21adc95b0f4506931f791009163419a205f8a46650c00f0","sha512":"8d8201b0809e5732ccde23544377d263ea2198f5c8cfc62a333283bd8ef379287f38e09e2dd2eec519757d8ff902822914417314afa13ddd1ab6bd99f67bd2db","ssdeep":"3072:ixgV917/cuf9WDTJcB+OY01t6B+mHDbHDLDHDF:dVLfWDB46cmHDbHDLDHDF","tlshash":"89c3d5097fe470764a9b51a1707f2503f1a606d4ed2ca9c2d206cdde28cce0666f67ee","first_seen":"2026-04-18T14:53:58.37385Z","last_seen":"2026-05-01T17:51:07.867831Z","times_seen":12,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/symbol.530c62b5.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/polyfills/symbol.530c62b5.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12223,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12223), with no line terminators","md5":"f4146ce787fb2270ebb8bd3c8f21e24e","sha1":"263946786092b20a1363e1127cf9ac8f58f2ed8e","sha256":"b6cf8cd4dca1b228a047eb011fe28ba90f611e6722f7a5130209fafba13010cf","sha512":"14d8e23945fc88cbb62187ae97697e2d22e279e432be38656da039b565d65da1ee6ca595e1841adbf38669940d1c5357b732f0415b45424b6c9e77b160bb9560","ssdeep":"192:ieRt6wQ5fs8qDp7uL3+9f5HltOCUPnz5JVQA4UGp6vW73o+so6ZN/t:hAwYfG7uL3KsPnz5DQAFGpyW73oPjZNF","tlshash":"6742d585b28270e706a36518906f4483a0a61f45fc0d9d90f75be8912d7fe5ab0f2e9e","first_seen":"2026-03-29T06:05:50.160369Z","last_seen":"2026-05-23T12:55:19.716223Z","times_seen":47,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/1356-57d12209e4af5858.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/1356-57d12209e4af5858.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"1356-57d12209e4af5858.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"c2350a6683de083f5bedefaf4ce23d2f\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:27 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/1356-57d12209e4af5858.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::dlq8x-1777192577938-56b3b6cc167b\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":13647,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (13647), with no line terminators","md5":"c2350a6683de083f5bedefaf4ce23d2f","sha1":"e29708c903c0a133641544c72c17ac55572f8f3d","sha256":"33e99476b1ad229a2670462cf1a0cd173c17a23d32c1672fedcb9fd7adf3d079","sha512":"6599a542c3d9974a8b26979f3f809341ea77cbaea68f7fa59216b74e860d6949f30757ad157dc1a1e2b85374fe19eeda77f79dac18292437fe13a080838f4d20","ssdeep":"192:thRFDY9L4aLHvgBCypZyhFwA3P7RoL2BV+wOf4VmPTYH2LaGdPNylL4Duv9hKL:zK42HvfypWFj7acVytW2lPNCLauv9hI","tlshash":"77522a723694fce6139bc095d47f000ef3656d71722ab09873ea9cc9a6e0594b0a2f76","first_seen":"2026-04-26T08:37:22.489485Z","last_seen":"2026-04-26T08:37:22.489485Z","times_seen":1,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/login?form=login\u0026_rsc=3lb4g","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /login?form=login\u0026_rsc=3lb4g HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://overload.su/\r\nrsc: 1\r\nnext-router-state-tree: %5B%22%22%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%2Cnull%2Cnull%5D%7D%2Cnull%2Cnull%2Ctrue%5D\r\nnext-router-prefetch: 1\r\nnext-url: /\r\nx-deployment-id: dpl_9xoh72FKKnirFPANoK94sSpc33Le\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 5415\r\ncache-control: private, no-cache, no-store, max-age=0, must-revalidate\r\ncdn-cache-control: max-age=691200\r\ncontent-encoding: br\r\ncontent-type: text/x-component\r\ndate: Sun, 26 Apr 2026 07:06:03 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch\r\nx-locale: en\r\nx-matched-path: /login.rsc\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::iad1::g9cb6-1777192578647-5855b28881ff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":151,"size_decoded":0,"mime_type":"text/x-component","magic":"ASCII text","md5":"97964d983c4c328685c0878d83b87584","sha1":"4f6b5d596129d6064d22042ea80e19d581dd050f","sha256":"b8aca9130a14b0a6e6d81454e3c4291d61d3e150433f6852559db6e8c4bab8ac","sha512":"189468a160fa0038867b592a252a7b1abb95ba5d690c396bc691d7bdc39ea30f399e8fa99090b4a911f048736a4b6e2ca8750e9178a7e77f906c318796f20369","ssdeep":"","tlshash":"4fc08031424559f14cbd14c0422dcacf650d020622859dfce0759b112765130e7477e0","first_seen":"2026-04-26T08:37:22.491471Z","last_seen":"2026-04-26T08:37:22.491471Z","times_seen":1,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.module.ef5eeb79.c1f68e24.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/player.module.ef5eeb79.c1f68e24.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":271088,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"98ab74ddfe758a6828eb20e1cbc70220","sha1":"12d1f444f093db2e79332d725080b4dbe5a0494c","sha256":"7a9a406af65a56844934e41dd249a83e41315bab58dc115c399669546e43d750","sha512":"ded1a8fbc4ac596091d4ecf7f37cae50180c540030c20c078f420c9606e9b94f1bb4678dae9345d315f822a244ff032424066f02d086da9c3b5dd9142043cea6","ssdeep":"6144:mtw+P/LSSJOpMiAM3DszLQ+AvALJ8pTvGa1giCAq19QAz4qfbWG1PpH1W2Lb/Jlt:mw+P/LSSOszLQ+AvALJ8pzGFiCAq19T5","tlshash":"8d4409d97792f46156e3c9dad03b0126e3397a893005c058b23e9cca35997cae633f79","first_seen":"2026-04-18T14:53:58.342486Z","last_seen":"2026-05-23T12:55:19.839712Z","times_seen":35,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/6958-652b57740cfa8b95.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.958Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/6958-652b57740cfa8b95.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"6958-652b57740cfa8b95.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"4a438e992ca72733a38dff124cd3849d\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:27 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/6958-652b57740cfa8b95.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::ngrjq-1777192577936-560949aa33fb\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":41033,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32031)","md5":"4a438e992ca72733a38dff124cd3849d","sha1":"a499fb8de5dd9d618e7018316c0450deeb60c9a6","sha256":"f1c73fa2a47160e14b168c8f15a3e25024f29cbc2c8ac4740a6ea2918463bf24","sha512":"de6630d8a48310c44c803f616a9b640aee82814577f223bdcea4c231b2eb36bbbb48013ca4b900b14d0408d8fab32e51302afba22c41321f2c2bc70966239299","ssdeep":"768:eqaN3NpnQ2o+H7RyZEGYATNfqzlz1mIXJ3v5aCGj0D1oKaBtl5N2g1BF1RXm2cWc:eqaN3NpnQ2oY8+GbTcN3v5aCGtXVWZTL","tlshash":"d003c751a28532360f4343d9146903096fae79b4678c541fb76c5ed72d22c8a4bbeff2","first_seen":"2026-04-15T14:54:50.96891Z","last_seen":"2026-06-05T02:38:39.631542Z","times_seen":10,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/iterator.37e3faeb.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.586Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/polyfills/iterator.37e3faeb.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16781,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (16781), with no line terminators","md5":"a3ad97a01a34e06f0b13dec0d3f98465","sha1":"3d5ff04cdf0126681b65ccf89e4f6bef830b52d8","sha256":"74e561f86d2606dfce9ec6b3711119bdbcb5ceed5d3625db7f23981a65b259b4","sha512":"ed771b552674cdd36f050915408e1c44d65fa689ed4700193c07802151e4e37b783541dcafc572d63247cdd4fdef47498e109a4762495b176a77f10fa44ab1c7","ssdeep":"384:klqhU+IZXnmtvWlNYAgM7VtXtcwJ5fY8r+3QRVRHICtrp3RWzZoOz8TZ:XIZQ2NP0EtSJo","tlshash":"40725554f2c2a83106bb7620d02f0509b5671e09ec8c9d94f65eed99f4bb50af236dbc","first_seen":"2026-03-29T06:05:50.110801Z","last_seen":"2026-05-23T12:55:19.681872Z","times_seen":47,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/app/page-0f9eff8320b44e4c.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/app/page-0f9eff8320b44e4c.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"page-0f9eff8320b44e4c.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"c9a34859406206637d782a46a9ae9149\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:27 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/app/page-0f9eff8320b44e4c.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::dlq8x-1777192577946-108b693cc280\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":1448,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1448), with no line terminators","md5":"c9a34859406206637d782a46a9ae9149","sha1":"6382fa1c103a67bc62ce89ab3bcfbd8ee1fe5566","sha256":"ac8f76413db136eff91b34dde2fc8a1ba9e21f737d8acba25adecb280dba2911","sha512":"1ba7c6cfaa04837b9b1b377a1bf28b299dbe81b7f2e8a23bd38bdc7fa64462264d1b5104cc0608039473e7e198de289b5db649bdea58551d831e849868f27804","ssdeep":"","tlshash":"cb31595d3a17f15097f529e9f4581520e1640659572c85b0b2760c1735f8e8da3b0fee","first_seen":"2026-04-26T08:37:22.498161Z","last_seen":"2026-04-26T08:37:22.498161Z","times_seen":1,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.056Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2 HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/_next/static/css/3ac8064a286d954f.css?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 135918\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"f3f7e95f2dbc4fe4-s.p.woff2\"\r\ncontent-type: font/woff2\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: \"26b4b6557e9db18aab82adad3e2df080\"\r\nlast-modified: Fri, 24 Apr 2026 18:50:59 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192578059-36fcea61be55\r\ncontent-length: 33672\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":33672,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 33672, version 1.0","md5":"26b4b6557e9db18aab82adad3e2df080","sha1":"ba2647db89c7bf93c9914758482bbb4eed142699","sha256":"d2909123a6a8ed2f928055f002c32f63ee93496b470c1a344873f955111fca53","sha512":"43fad64ea8d0b21ef5229c289bf123e8371ca5454e9a59ee29371508735da77c839c6b575567f7f839d95232fd6ba745720b22e8460a41d3cc41678954a8f436","ssdeep":"768:gVZAf4ez56vS5WyeWdZrUFG+7eWpi2trpkDajgb:g4wezUaVxr6Gkeki4r8acb","tlshash":"36e2f15e545ceb73db7bbc30cd9843cd675eaa1a3d4900c4e7c1782a1b5443b282fa66","first_seen":"2025-09-14T23:58:13.457529Z","last_seen":"2026-06-08T08:49:34.000688Z","times_seen":784,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-26T08:36:17.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 11042\r\ncache-control: private, no-cache, no-store, max-age=0, must-revalidate\r\ncdn-cache-control: max-age=691200\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Sun, 26 Apr 2026 05:32:15 GMT\r\nlink: \u003c/_next/static/media/1d4eaed977255102-s.p.woff2\u003e; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", \u003c/_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2\u003e; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", \u003c/home/hero/server.webp\u003e; rel=preload; as=\"image\"; fetchpriority=\"high\"\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch\r\nx-locale: en\r\nx-matched-path: /\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::iad1::wx7zz-1777192577652-64d5fd08c3ff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":106885,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (38517)","md5":"399d3070cd3f29cd402f6bde19caffbc","sha1":"f26563750c09d31781611f2e076b44e8e13f8809","sha256":"fe4514b93eb660872cd171bc9bffcad074d389089bf31102ba6b8c2bc060bb02","sha512":"c710fc831560d38d17d477016dbeb0568ef50e2a9150f604f6c5bc3d7daba87d8e511c0a69682d17a6a6c47a5bd1a3f473cb2b1799ee653162aeb633790f0fbd","ssdeep":"3072:IhRL263zVvBofXf0UQuUjwBIgfu8nNMicJ:GxjHozQuUjwH/nNMicJ","tlshash":"16a33a2af614c62fe3838dad3ab5ed367159d249879144bcbafcc1060361dfc8a73991","first_seen":"2026-04-26T08:37:22.499945Z","last_seen":"2026-04-26T08:37:22.499945Z","times_seen":1,"resource_available":true,"data":null}},"time_used":137,"timings":{"blocked":63,"dns":30,"connect":4,"send":0,"wait":11,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/176-34e89399a26899a1.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.961Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/176-34e89399a26899a1.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 392081\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"176-34e89399a26899a1.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"253beb90e1a7cb3b4024a367879083c7\"\r\nlast-modified: Tue, 21 Apr 2026 19:41:36 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/176-34e89399a26899a1.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192577937-bc4410cd7f55\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8899,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (8899), with no line terminators","md5":"253beb90e1a7cb3b4024a367879083c7","sha1":"8d18c6b52daf999b1c6236b4de53dfe0b85e2174","sha256":"24dae16138a93c3bd7dc0129d01ef3e29c49c4235cbbde4fdf55b213816d1d0d","sha512":"ddae8ccde2ec12db65d249bb6f9f6a13a54937106b11344bb641bf4005539976f91e97f3aba07d9a95591cb721d60f4e5799a743ae2a21833ac89af86c3128c5","ssdeep":"192:5L9+2cihbDVkPYxnRMeo0Qn8Z9YOHChAwM2GI/j:5L9nxzRMFKji+wM2GIb","tlshash":"a802a8da75d1f8e283ab1190443b100bf37e1db5141e91c4e7b95ce6f9b085c91b2fa9","first_seen":"2025-12-23T15:59:09.191772Z","last_seen":"2026-06-05T06:00:41.721236Z","times_seen":16,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/Rugproof.94c0665b.svg","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/Rugproof.94c0665b.svg HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 136691\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"Rugproof.94c0665b.svg\"\r\ncontent-encoding: br\r\ncontent-type: image/svg+xml\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: W/\"7a2b1f2ddbd2d852fe37901c8c04dd4b\"\r\nlast-modified: Fri, 24 Apr 2026 18:38:07 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/Rugproof.94c0665b.svg\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::ngrjq-1777192578229-bd2c3e63849d\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9339,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7a2b1f2ddbd2d852fe37901c8c04dd4b","sha1":"71a44cf6c24af2691f5093218994dedab671f55e","sha256":"b74a75134909c67296c22d748d7b8765252ee3d4fcc2ca33652de681840b2d34","sha512":"0d556eb880c51b16dffe01085ab098f7863ca863c185b08f2e99d2a40dc30ddcea88485941d09766619a8e0395aa2f5c20f07582c50c48770cf7e17516d0f82a","ssdeep":"192:sKS7UF/De8eK4WdCaT2VcC66yJmg439kClGJc4Po:sKN/epiT2ydCbu8GLPo","tlshash":"521273efb3e4b2f0e409f3e6eb1165a4762f24fe6b63ca2c83995e55ba0445dc845840","first_seen":"2025-11-03T01:09:50.996079Z","last_seen":"2026-05-01T17:51:07.854697Z","times_seen":5,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/kaspa.b1ab377c.svg","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.242Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/kaspa.b1ab377c.svg HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"kaspa.b1ab377c.svg\"\r\ncontent-encoding: br\r\ncontent-type: image/svg+xml\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: W/\"0b74d56c1a0f696e5c23f13a806a6bc6\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:27 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/kaspa.b1ab377c.svg\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::9lx2k-1777192578231-1d2dfdc91d03\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":5662,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0b74d56c1a0f696e5c23f13a806a6bc6","sha1":"0dd6d899c5425353101d863f7f3db6365804ae3d","sha256":"1760fe75199048cf1032352e930b38cfcc3786edc33ded31acf16f33796627b0","sha512":"8a5fbf8d7faccf018a63f0811ddbd0aa908aec5733d0cd656af059f978147a21ba1cfae66af237e53e100fe2ff666da96ba8c50ff6d0919b7e9fa8f42650a00d","ssdeep":"96:jaoF18b1tzuReOAD10ShJBu9jSivR+FvNraL7sNOlltp4TN/Rvh03pplTtJZH9AG:jLnIzx0IOvmaHVRp43EpphzVh63g","tlshash":"b9c186ec668db3f5e001a3d5c92a6065bd5b10f51f13cc6c83aa6a57e81549e88c94c7","first_seen":"2025-11-03T01:09:51.037029Z","last_seen":"2026-05-01T17:51:07.863254Z","times_seen":5,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/icons/icon-512x512.png","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /icons/icon-512x512.png HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 133518\r\ncache-control: public, max-age=0, must-revalidate\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"icon-512x512.png\"\r\ncontent-type: image/png\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: \"8d0c3c4f588583c542a105524db8f453\"\r\nlast-modified: Fri, 24 Apr 2026 19:30:59 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /icons/icon-512x512.png\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192578294-2200abae063c\r\ncontent-length: 301348\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":301348,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"8d0c3c4f588583c542a105524db8f453","sha1":"8a487d0d0d603b75960ac1366720e7559690a77a","sha256":"c212586ff2efc7885d2138ff3ea0937f2f2b4320ca48731c5767f3c3f18734a8","sha512":"2b81a385df562df02c23522debb421c666d2f157885576e5b0e9473a82a6eb7191cec952919ebe762d1b95566ecdb7fb383586ad7703a844a7c34cef2bb7539f","ssdeep":"6144:hm7yxuXx7N6HCQhn+WI5oM0vtBDVnvy2onDRPEk6YwIo7y3+LxKbDLAK:hm7Ouh4HzcWI5oVrDxypnxeJIx0cD9","tlshash":"a3542392314144f32d7da46e6b6daa6c9c923f2152048f4d908d2df79bb39bce0b4987","first_seen":"2026-04-14T13:02:31.600204Z","last_seen":"2026-05-01T17:51:07.824252Z","times_seen":4,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/plans?_rsc=3lb4g","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /plans?_rsc=3lb4g HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://overload.su/\r\nrsc: 1\r\nnext-router-state-tree: %5B%22%22%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%2Cnull%2Cnull%5D%7D%2Cnull%2Cnull%2Ctrue%5D\r\nnext-router-prefetch: 1\r\nnext-url: /\r\nx-deployment-id: dpl_9xoh72FKKnirFPANoK94sSpc33Le\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 9467\r\ncache-control: private, no-cache, no-store, max-age=0, must-revalidate\r\ncdn-cache-control: max-age=691200\r\ncontent-encoding: br\r\ncontent-type: text/x-component\r\ndate: Sun, 26 Apr 2026 05:58:31 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch\r\nx-locale: en\r\nx-matched-path: /plans.rsc\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::iad1::fzlnf-1777192578646-7aeb036e6997\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":130,"size_decoded":0,"mime_type":"text/x-component","magic":"ASCII text","md5":"16a4c4d7ee1c318abb9ec0911e8e9ed8","sha1":"ab8122589dcb71577714cb447779c1332630f945","sha256":"192817bfd71d38ccea87e9ff4502c12d40434e0ad9fd41b2c54f98e922ed60c9","sha512":"eb971297775bc6d71f98085775039bb40720ff3473a26dcad7ce4be39373311af9178fb64ee16cd918b9b93d95aa378e19ef2883fed534124afe82701c2c8cc9","ssdeep":"","tlshash":"bac02b3206831cf24c7e2082412eca8f251f010b31c414f4f0b149003336038f3036cd","first_seen":"2026-04-26T08:37:22.518999Z","last_seen":"2026-04-26T08:37:22.518999Z","times_seen":1,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.core.184599f6.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/player.core.184599f6.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":712596,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"7d1d53d9cb59964ac2b44ba25235346e","sha1":"73bd6d04c6914290091064ddfe94e118d1b9587e","sha256":"2535487fd5d531c9d747140e0ae44d65404c41df4942fdd45166180e4170bb30","sha512":"c64faafe6afc6571f93d202ed3d11c2d1f073e108ca3a4d95d70c27854efd10414fb7f2a3feff72e80a493009ccbff7bd588f1319d1e669267ccc6e3b4f2f4d4","ssdeep":"12288:xpoip37wERLIQ2uRJfLazMSkm47AGdqPM7ZNLPAO9MTfzl7:xpooVO6fSkjHdgMlNLPAbfJ","tlshash":"e2e49e9da692786c5493c8dde4bb4409b33e398c7458c164b13ede9c208f685eb33b79","first_seen":"2026-04-18T14:53:58.350876Z","last_seen":"2026-05-01T17:51:07.883932Z","times_seen":12,"resource_available":true,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/1255-4441861bba0879c4.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/1255-4441861bba0879c4.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 393753\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"1255-4441861bba0879c4.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"20e0d518c3ed8b625f2f7c4b8fcb6e4f\"\r\nlast-modified: Tue, 21 Apr 2026 19:13:44 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/1255-4441861bba0879c4.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::9lx2k-1777192577933-50136948ca1e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":173094,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"20e0d518c3ed8b625f2f7c4b8fcb6e4f","sha1":"11d22b9fc939ee4ce3ce22beda8bbff3551a6786","sha256":"6d20776360bc2f84fcf98c2c3d1a13c639503445ca86e30826e41e007a823d47","sha512":"b2c6041fe08568761e95589b43207de6cb7666a84ab468620c9db2cbe6e9818e2d76a5a08d701e62cc9dccde165c65026c53fcdbf2e03b39ac9b0c61c183ccca","ssdeep":"1536:bzigN+87bicO5HYHqLVcX77CIzPY6Q04ToTlTx1p7eklTtaocZXxreXRNIrky/Sz:37zgmA+3C4Y904Ajw4RN0z/Sz","tlshash":"b104dab636d0f8d107a780e5843b400af3295c3b146f74a0a3e6dcd975645dea1b3faa","first_seen":"2026-04-26T08:37:22.525286Z","last_seen":"2026-04-26T08:37:22.525286Z","times_seen":1,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/image?url=%2F_next%2Fstatic%2Fmedia%2FwhyEnterprise.b51548f3.webp\u0026w=1920\u0026q=75\u0026dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/image?url=%2F_next%2Fstatic%2Fmedia%2FwhyEnterprise.b51548f3.webp\u0026w=1920\u0026q=75\u0026dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 398883\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: attachment; filename=\"whyEnterprise.webp\"\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\ncontent-type: image/webp\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\nlast-modified: Tue, 21 Apr 2026 17:48:14 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Accept\r\nx-matched-path: /_next/static/media/whyEnterprise.b51548f3.webp\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::ngrjq-1777192578234-143b8df70979\r\ncontent-length: 9494\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":9494,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"49403ebbcb1f65bec6250f05e5db29a5","sha1":"37b647f6039d86fc62c9939bdb833c99f57f321d","sha256":"d08d6bcec7137539590ff578e37dd1d5307dc9f693443009e625e0ae5678495e","sha512":"dfac03f70d96a5af92089201c4b163ac377f6d053c4ccfd556a2938153ca02a61e01c14ba52fd4747b7f315a55cd34709c05dee04e4626cd6e2e700068a308f9","ssdeep":"192:2qnJiNF4uK7dG2Dv+MuJ/Y77xUFwMA19Akswr7ztJyUNCDTm:2OJSpwl5UYrbP3Cu","tlshash":"9412af552df302cb37228480e765b40692331535df25376afa9a5a42216f1dcbfbf981","first_seen":"2025-11-03T01:09:51.022744Z","last_seen":"2026-05-01T17:51:07.875196Z","times_seen":5,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/intl.durationformat.44700b8a.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/polyfills/intl.durationformat.44700b8a.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":64840,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64839), with no line terminators","md5":"3bf453f2d194248a39bb3563ca0e14e7","sha1":"586104a6b986cdb199e8d7103e12856bae6b45e0","sha256":"c701368e78f6041bbe532aabdd7e03454b6e43f484793596bfa622c1ae74700c","sha512":"6b8314866b8bed036f1e8ec56eb65ea60f6286622a072398e7a207f655d2fcb7dd2165676a7c317b6feca866da352cf78104dc75bf948361d14c2ab47a67bde3","ssdeep":"1536:KoVk4Xg/qR508fo5wobr+NWuOhB0jNMZx:Ko+4Xg/qRa8fofOWRaw","tlshash":"c2534d8431f7a5d31eb23c813caa2e07e12828fc66791450914db7fffc65d896129e6d","first_seen":"2026-04-18T14:53:58.344331Z","last_seen":"2026-05-23T12:55:19.417525Z","times_seen":35,"resource_available":true,"data":null}},"time_used":59,"timings":{"blocked":39,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/css/af2f51cbb31b6fbc.css?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.945Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/css/af2f51cbb31b6fbc.css?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 135952\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"af2f51cbb31b6fbc.css\"\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"8273f8ac1b1d1551d961c38e2147528c\"\r\nlast-modified: Fri, 24 Apr 2026 18:50:25 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/css/af2f51cbb31b6fbc.css\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::ngrjq-1777192577930-ea1db7c6f72d\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":104563,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"8273f8ac1b1d1551d961c38e2147528c","sha1":"49a637678cb119b40bd940bc5a3d94214cd85d59","sha256":"355cd9c36c2d4f439075750e25b06376eb9a454e9459a089c81ff68deac9eb39","sha512":"1da725da1376d29459651782b320a78b2922aed88af837d1c2e2d6cae5311489b4cc0f82e18f588f80e0dc50d7333412af6e1007c9ae2a6b3b83c0a6b769d335","ssdeep":"3072:b4GrnYC8Dump5BbrI+cQmutmVhayOd0t4POOHUJm1xcM1s2t8lucbIh74W/XRC7l:b4GrnYC8Dump5BbrI+cQmutmVhayOd0T","tlshash":"f9a396a0f329d87fbc23a4bdd3acf84c6119b182de125be8fa11b13116c67f65d52618","first_seen":"2026-04-26T08:37:22.529191Z","last_seen":"2026-05-01T17:51:07.880872Z","times_seen":2,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/css/3ac8064a286d954f.css?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/css/3ac8064a286d954f.css?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 398586\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"3ac8064a286d954f.css\"\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"1ce64f8d9471008fed2cd88d776f76b8\"\r\nlast-modified: Tue, 21 Apr 2026 17:53:11 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/css/3ac8064a286d954f.css\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::g9cb6-1777192577930-35aa1b534d10\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2973,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (2973), with no line terminators","md5":"1ce64f8d9471008fed2cd88d776f76b8","sha1":"9f535a03644139d26482ce96223994d1c468326e","sha256":"292315577aecf087953f9b16138eba11d9b54fd2883e045f0313c7497dbb49af","sha512":"073a27e5b79df2398279de4b4f11512a1c844b8ea0efd320500c3d90d4b6ab8fd92c9920086082dba439c4e03e25e3f0c200cd245948c01950272726dd09cd02","ssdeep":"","tlshash":"7c51fa31842d904ed932bcd230c97f136d7d001d56d05d62aa2c99b98fafc2a73a1fac","first_seen":"2026-04-14T13:02:31.634598Z","last_seen":"2026-05-01T17:51:07.843242Z","times_seen":4,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2 HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://overload.su/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 135919\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"f3f7e95f2dbc4fe4-s.p.woff2\"\r\ncontent-type: font/woff2\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: \"26b4b6557e9db18aab82adad3e2df080\"\r\nlast-modified: Fri, 24 Apr 2026 18:50:59 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192578274-9fa28a30db88\r\ncontent-length: 33672\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":33672,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 33672, version 1.0","md5":"26b4b6557e9db18aab82adad3e2df080","sha1":"ba2647db89c7bf93c9914758482bbb4eed142699","sha256":"d2909123a6a8ed2f928055f002c32f63ee93496b470c1a344873f955111fca53","sha512":"43fad64ea8d0b21ef5229c289bf123e8371ca5454e9a59ee29371508735da77c839c6b575567f7f839d95232fd6ba745720b22e8460a41d3cc41678954a8f436","ssdeep":"768:gVZAf4ez56vS5WyeWdZrUFG+7eWpi2trpkDajgb:g4wezUaVxr6Gkeki4r8acb","tlshash":"36e2f15e545ceb73db7bbc30cd9843cd675eaa1a3d4900c4e7c1782a1b5443b282fa66","first_seen":"2025-09-14T23:58:13.457529Z","last_seen":"2026-06-08T08:49:34.000688Z","times_seen":784,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/embedly.player.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/embedly.player.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16212,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (16212), with no line terminators","md5":"f773d149331bac5d7b86f764cebc0133","sha1":"ffb997447259fe5c23a93e4c4d52b057fb587488","sha256":"f23fcb4a6b345e7b75e46fba51773a1fc07dd19e1b44c6a657e2280adefe3018","sha512":"f9413c6a02a7b08992828763ccc13f4dccd97a512b874845e0ed3b6efb4f632275bafdc6d0911704c158c5f91e522e775241479ac12443489739a4803be1689c","ssdeep":"384:Sf+551zwFcvvkbJJmvlPZ/U95HYSLMYpR8IWLwcqNtwEtuqOM:Sf+5rzwFcvvkbJJmvlPZ/U95HNLMYpRZ","tlshash":"10727449761b74b402e6713aa01f250d633717ed600a4ad8ba39e9e65dfec0ad127f3c","first_seen":"2026-04-18T14:53:58.353877Z","last_seen":"2026-05-23T12:55:19.819872Z","times_seen":32,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.module.0bc0478e.1952771c.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/player.module.0bc0478e.1952771c.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":152877,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"7aed20768c6e72f1a628709b3258dcef","sha1":"9135f7e7580b0e2cd5c8761490a54b77d444e639","sha256":"2c16fbe3392569453444257738bea5150f602c7dc01b6d1876fd9abc630aeb8c","sha512":"23d6ab7e3096cc0f4339a985cb72d4a5637a45d4f097b8f805a18fcc2009241ee220c542a75b5165848bfbd6b58f737cdfdd921a447ffb44e3a487faf5348a0a","ssdeep":"3072:H2VKOv0EpnHy058+WRBBd5pknnJoQ1QqFY2dTMWpzFRxvRmR2aGuxlBIIQNhp/C:HPOHyN+yBpknn9tFY2dTMWpzFRxvRmR1","tlshash":"35e318d432d2b4a643a749ea40bf8006f33d3a55310dc854f229e8e7b8a615ed273f79","first_seen":"2026-04-18T14:53:58.341519Z","last_seen":"2026-05-23T12:55:19.629543Z","times_seen":35,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.057Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2 HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/_next/static/css/3ac8064a286d954f.css?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 135918\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"f3f7e95f2dbc4fe4-s.p.woff2\"\r\ncontent-type: font/woff2\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: \"26b4b6557e9db18aab82adad3e2df080\"\r\nlast-modified: Fri, 24 Apr 2026 18:50:59 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/f3f7e95f2dbc4fe4-s.p.woff2\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::fzlnf-1777192578060-915d87f2d9c9\r\ncontent-length: 33672\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33672,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 33672, version 1.0","md5":"26b4b6557e9db18aab82adad3e2df080","sha1":"ba2647db89c7bf93c9914758482bbb4eed142699","sha256":"d2909123a6a8ed2f928055f002c32f63ee93496b470c1a344873f955111fca53","sha512":"43fad64ea8d0b21ef5229c289bf123e8371ca5454e9a59ee29371508735da77c839c6b575567f7f839d95232fd6ba745720b22e8460a41d3cc41678954a8f436","ssdeep":"768:gVZAf4ez56vS5WyeWdZrUFG+7eWpi2trpkDajgb:g4wezUaVxr6Gkeki4r8acb","tlshash":"36e2f15e545ceb73db7bbc30cd9843cd675eaa1a3d4900c4e7c1782a1b5443b282fa66","first_seen":"2025-09-14T23:58:13.457529Z","last_seen":"2026-06-08T08:49:34.000688Z","times_seen":784,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/favicon.svg","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /favicon.svg HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public, max-age=0, must-revalidate\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"favicon.svg\"\r\ncontent-encoding: br\r\ncontent-type: image/svg+xml\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: W/\"589598a5a77b5c23ff61077585c72437\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:28 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /favicon.svg\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::g9cb6-1777192578295-ecd7a8ea4780\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":161798,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"589598a5a77b5c23ff61077585c72437","sha1":"ddf42f8721e38ee67649261f438c7d4129f3d71e","sha256":"125e00ef9fbdedb549cc61d076cb50fbeaff17f75c0fcfffe9c2d6277b09d3fe","sha512":"cfce59854575846b85236552d6fcd2a92c86be1e07f55cef631e3922bf7785ee8a0480f1907a72df5ba9b8ba304bfc77f27cb7e62786d36cc4fcbdfc34c21d99","ssdeep":"3072:xd9NGHlFGoOiwqc9RIJ7M1kKzIAqSAmnrNAHy/8xRa4Q+GlbC5ef:glIobwqm1rNFgw4FGlO0f","tlshash":"aaf312b38debfcf1a66865ad652ffac07c54c907c201f4ea70c535d28aaa744c8056f6","first_seen":"2025-11-03T01:09:51.031355Z","last_seen":"2026-05-01T17:51:07.868629Z","times_seen":5,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/map.c51fa63f.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/polyfills/map.c51fa63f.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 6362\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Origin\r\nx-robots-tag: noindex\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6362,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6362), with no line terminators","md5":"d07dd667b4b0135ef7563ab5f16cca62","sha1":"929b25ef51c80a1cdd81b3de5415b9abf2f56d18","sha256":"226a4fff498788d878a227efaa50007f6049124479ef4961d1d6364a78741473","sha512":"f2cc5bfb1eaa4652f91877599ef58354df3a8dbc1b1df2398008238d6b2f868db0aac9214a20e48b13225fea50cb7f2379ee784c1f6292c061774460302927cf","ssdeep":"96:Sq6May4yOtz7ZepYYqdlH+dODTmmigdtNlTHBt9+UYeQ2FNUlkhWC:StMayaAYHltTmmigdtNlbd+UY6Pz","tlshash":"7fd1a58dbe95f0b55aa36d64912f4107f11e1b54b01eaac0f62bc6856cbc58f4033e7e","first_seen":"2026-03-29T06:05:50.111751Z","last_seen":"2026-05-23T12:55:19.512812Z","times_seen":47,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/player.module.49d0a293.1924cbcd.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/player.module.49d0a293.1924cbcd.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":148929,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"e16a85aa12516c27fe9406b46a9360e8","sha1":"91c43aaae4b2cb888abef59492d12d30e64f0bb9","sha256":"376dfe5654d5082ed8e832a3ffd544e6629e51498a51a727ab69ff0b53168525","sha512":"21c65fda834dd8aeecde250125ac623314f261f1490fa9d65ef447a4a17c10802ef9b68034370cb7123af840ba6d7e21f3fc6513581f9dde50e2f1d29698f443","ssdeep":"3072:Iy92pGZ9RQTocG3ehi41ZFwITOcGriethEOGgNhfK6hoEYsjX8jsc2QkB2qf2i3o:IJpGZ9RQTocG3ehi41ZFwITOcGriethw","tlshash":"f0e3f7d872d2f0a183e361b6406f5107f23a7d55280d8864f26ae8d67c7958e827ff39","first_seen":"2026-03-21T07:33:24.07743Z","last_seen":"2026-05-23T12:55:19.536697Z","times_seen":49,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/webpack-20acb443685a4297.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.949Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/webpack-20acb443685a4297.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 398586\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"webpack-20acb443685a4297.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"59a26bd3c9a77fc5961ab91b2e20df6f\"\r\nlast-modified: Tue, 21 Apr 2026 17:53:11 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/webpack-20acb443685a4297.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192577931-6f5112ff1f4d\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3936,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (3497)","md5":"59a26bd3c9a77fc5961ab91b2e20df6f","sha1":"44cd959a98ea3645adfdc1304392f8bddd329319","sha256":"89b6e55d959af1052c304793142c56063f65e5e6b239cec1937d2a63e80ffd75","sha512":"c41aef4508b32f81a80805108bb254d5d5a3e6cd651a88a8fdbef47a6e48ecfd01de394a57337ad255c0e8508d47c03431132bcb9d33841f53bfbbd23b70fc6b","ssdeep":"","tlshash":"3f81c5b63614fab51af004c9583ec581f62831361616ecb0970fecbd6128ed00562ff3","first_seen":"2026-04-26T08:37:22.538175Z","last_seen":"2026-04-26T08:37:22.538175Z","times_seen":1,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/1455-2e1867cdb14b7c7c.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/1455-2e1867cdb14b7c7c.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 135918\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"1455-2e1867cdb14b7c7c.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"72892d746c5cf3d55fd9edad19c38f40\"\r\nlast-modified: Fri, 24 Apr 2026 18:50:59 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/1455-2e1867cdb14b7c7c.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::dlq8x-1777192577943-28a4e6b388b9\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":35650,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (35641), with no line terminators","md5":"72892d746c5cf3d55fd9edad19c38f40","sha1":"61cc1b41fa628b84f0d97ffeb997aa2a9deb2c98","sha256":"77e776157bc3c05cfdef035bf41eb67bd9732421f55dd083ea2d9740bc066f78","sha512":"a1273446fd3f03718ebaa1917513d012e0cb270cf38a74a5a52a50205522fddb052a8c8ba4f36745475a4bb936b6d7ed9d3d2ad7e975410932ced02fcffb5d1a","ssdeep":"768:uja8tuNG/kNv2rJ9Uf11Gg3vrEbT93HVfVpjieSlK25:+a/skdVrEbT9dWlK4","tlshash":"4bf28414a166fe9cf52a0998595ed41c702e7f48ca0e5978f7fc7c266a188c83613fce","first_seen":"2026-04-26T08:37:22.540052Z","last_seen":"2026-04-26T08:37:22.540052Z","times_seen":1,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/explicit-resource-management.b76b4e79.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.582Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/polyfills/explicit-resource-management.b76b4e79.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 5827\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Origin\r\nx-robots-tag: noindex\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5827,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5827), with no line terminators","md5":"49caea7ac3d125021a1a108ea7d5c834","sha1":"39688ea0abb1d995928b42f1e903d9b6ec825938","sha256":"476703ad3c8d7aee89527b4c8e96a68e887fbe5b646e186051f68f7826686c2d","sha512":"4293b407c5a6b4e6462dc9d31c4e18fd6e3bf451c122a30fb5d707672118833ef0d20133218412535113326d3aa82278316a9a0348543c1a5b1919d394896a21","ssdeep":"96:VJkUbCzTe68IuBN4OElTopxxyrNzQTtiZF5GzeDoRlTFmTZYACTXeXP/OghG6SN+:VJ1e3eXI64OEFo7xyrxOtUF8sYFF4ZYC","tlshash":"abc17355ff61b1674be3f51cc0bf501a507d2908b80caae0b26bd0c61dae50e9237da6","first_seen":"2026-04-18T14:53:58.354794Z","last_seen":"2026-05-23T12:55:19.679035Z","times_seen":35,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"player.kinescope.io/v2.183.0/polyfills/array.30e88016.js","fqdn":"player.kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","date":"2026-04-26T08:36:18.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /v2.183.0/polyfills/array.30e88016.js HTTP/1.1\r\nHost: player.kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kinescope.io/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: application/javascript\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-allow-headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21372,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (21372), with no line terminators","md5":"5bbffabace2bdf17ea31a85cf990edcf","sha1":"dc836912c0d5d4cb0920ea399ec83d487025bef6","sha256":"33b9c1e3b4b7e6bfb824f802ed8e27aca077cc3570fbc81a7a8b462a2cb9fb6d","sha512":"dc03a35ff9b9dc35230ba7f115c7e6649e8cfda2ad422142e2e446818e5f84f486bfcac804563ef3a282732319b1af09d6c0bc4e2c092e711710063344053b89","ssdeep":"384:vE6nwlTp2n5xezR4nsbm3wfQhfwtx1G2IfBaKd+Bu4Sa0+V6kKnMrpB:vTwlw5xezM8cwhJIfBanBu1a0oUMrpB","tlshash":"54a2a798b38550f381e26924802f4587a0aa2f55ec8aed42fa07f904747ff9770b6d7c","first_seen":"2026-03-29T06:05:50.139782Z","last_seen":"2026-05-23T12:55:19.414635Z","times_seen":47,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/image?url=%2F_next%2Fstatic%2Fmedia%2FwhyAutomated.6407a86a.webp\u0026w=1920\u0026q=75\u0026dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/image?url=%2F_next%2Fstatic%2Fmedia%2FwhyAutomated.6407a86a.webp\u0026w=1920\u0026q=75\u0026dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 398884\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: attachment; filename=\"whyAutomated.webp\"\r\ncontent-security-policy: script-src 'none'; frame-src 'none'; sandbox;\r\ncontent-type: image/webp\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\nlast-modified: Tue, 21 Apr 2026 17:48:13 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Accept\r\nx-matched-path: /_next/static/media/whyAutomated.6407a86a.webp\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192578233-a97702a36ee2\r\ncontent-length: 24978\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":24978,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"71952778ae36b3eb9ed7fd92c76f504a","sha1":"7503d087abc0b84f30df4c6503a69dc491754ccd","sha256":"5d77a7915aa9ba74d357bfc606382e9b42f798b55a22f9e8486e77959d8054cf","sha512":"281aa08b898e28a795de791e66658521727a3fa5b65d631667a1ad369181fcd604b7386ce605a338c7a87625de707fd4844a9dbb636e43f5ac96e6d797e63120","ssdeep":"384:mCiLQP/YivkBlSKJVEJ9YWur/7pdQtFrX/QKv8SrSOtyz66VV80OWElXS/Pb+2+V:V5Yi6VZQ7P+Srly28Ozli/Pb+d4vBnE","tlshash":"fbb2d1b157c6b0dcd54ae4f112a6119136f3a57bcb48f2ac3dc4990584cd89736acbe2","first_seen":"2025-11-03T01:09:51.018979Z","last_seen":"2026-05-01T17:51:07.822678Z","times_seen":5,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/1d4eaed977255102-s.p.woff2","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/1d4eaed977255102-s.p.woff2 HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://overload.su/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 396572\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"1d4eaed977255102-s.p.woff2\"\r\ncontent-type: font/woff2\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: \"b2ac789bfd3a250ecb1f0d1bc8002cb6\"\r\nlast-modified: Tue, 21 Apr 2026 18:26:45 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/1d4eaed977255102-s.p.woff2\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::g9cb6-1777192577925-d5e43f132cd3\r\ncontent-length: 15556\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15556,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 15556, version 1.0","md5":"b2ac789bfd3a250ecb1f0d1bc8002cb6","sha1":"2e7eae30220ec74bf5cf3440caebc088825785c9","sha256":"df4fca18912e29202b16286ab514798de8357c416b5e1f2dd31703994bec7a78","sha512":"55ad77867e4ec7a09c7e5c471bfc4d62f3e034e4c69229311a15587052dcdee04be92ea00499ff6d45bb2cf15c419096698b6f12763f23f0d8b6c3302ee5e2d3","ssdeep":"384:bjkha52DqDK63NqE00aDIVkmvK/kAIDV2JtYYF:bIiOqDf60DFKMNh2JtH","tlshash":"4262d0cd07723894da8528ba6c38e7a0f9e632985990f5fd3b2ad7c9183f74ccc64154","first_seen":"2025-11-03T01:09:51.000655Z","last_seen":"2026-06-04T09:29:38.899834Z","times_seen":55,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/app/not-found-844314a6ab10255d.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/app/not-found-844314a6ab10255d.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"not-found-844314a6ab10255d.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"067c0676bd0c7c66ddbd6e8dd0f4c117\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:27 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/app/not-found-844314a6ab10255d.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192577948-568a762ea024\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1649,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1649), with no line terminators","md5":"067c0676bd0c7c66ddbd6e8dd0f4c117","sha1":"52f5dfee22f7210946818aeb5cdf3dc895e6f47e","sha256":"d740c73d02fca5d4884dd6d3aa51c9accd0c4f528cf4f7eb8a4e6a7089d4c056","sha512":"26a31b9421c0ad303052b47837007358cb7a66f62e6f62d000cd493df4d77760deb10bba7056f5b75d12d1b67e30589fc4b2bb1e987acf447c1cf7ebe20d133e","ssdeep":"","tlshash":"1331660e11c1b548d6a74d9c517f944830ff481c262ac5fe933ccc7079a5a58752bbe8","first_seen":"2026-04-14T13:02:31.50254Z","last_seen":"2026-05-01T17:51:07.872413Z","times_seen":4,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kinescope.io/embed/mVc8V5xJXQ5AghuBPZwHZ8","fqdn":"kinescope.io","domain":"kinescope.io","tld":"io"},"ip":{"addr":"46.102.104.4","port":443,"asn":202614,"as":"Kinescope B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.017Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kinescope.io","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 00:22:52 GMT","end":"Wed, 01 Jul 2026 00:22:51 GMT"},"fingerprint":{"sha1":"B3:9A:9D:82:A1:65:BD:39:1F:2E:70:11:12:7E:CF:37:C2:65:0F:5D","sha256":"41:7D:91:B6:94:8A:C8:10:25:5A:EB:DD:1F:4C:6B:A1:FD:F0:C6:C4:2E:D7:A4:D5:1D:68:2D:DD:DC:8C:F0:DE"}}},"request":{"raw":"GET /embed/mVc8V5xJXQ5AghuBPZwHZ8 HTTP/1.1\r\nHost: kinescope.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding, Origin\r\nx-robots-tag: noindex\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":29829,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (23499)","md5":"0bd0402f0289de48c76ccac35b28e606","sha1":"ad9de06b9b6f24d25595df5ce0b001a27cb746fe","sha256":"7de8094c14f09562e85a9fd05fb6c66d1f1a0ebdecc682bf9d50217dff603324","sha512":"1a17e9ee539135370d8c39032543fb67f98df4fa4f9bb74a3816a217fcfb5c85f91659a64ad1bb5a1403d47c2ff9a34b7e28e056771f0144649cd309fbbac7a7","ssdeep":"768:MAqWgpQj9NfEGT0SLYHqDok+qt5SE98SbP7wKW9:MAUpQj9NfEGTrLQqDxFeE9NHLW9","tlshash":"f9d29ea392b388255e0192a724d930cdbf793203db846e89b7dc93dc4fe676d4067a74","first_seen":"2026-04-26T08:37:22.547135Z","last_seen":"2026-04-26T08:37:22.547135Z","times_seen":1,"resource_available":false,"data":null}},"time_used":145,"timings":{"blocked":27,"dns":33,"connect":16,"send":0,"wait":32,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/main-app-b7ac91ae224968d9.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/main-app-b7ac91ae224968d9.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 135477\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"main-app-b7ac91ae224968d9.js\"\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: \"0fc1ed37eaa6fb7baefe57842e38a2fb\"\r\nlast-modified: Fri, 24 Apr 2026 18:58:20 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/main-app-b7ac91ae224968d9.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::ngrjq-1777192577933-029eb5c5bd93\r\ncontent-length: 572\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":572,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (572), with no line terminators","md5":"0fc1ed37eaa6fb7baefe57842e38a2fb","sha1":"141d0277c0f944e5289ade2d57b8731ffff67775","sha256":"081da4c60742c182eab35c4348553597e464242c3fea2e19da2ef1d4485f011a","sha512":"0cdf1308fbe9108ba15b9b3a00e1d3935996cdd6e1d4cf6cf5938d9c8dfc44b0d8de01ef23d0be9c038bdc7bc9b44cb209f0e6f9dcd1e48d89da68a4bba2ef5c","ssdeep":"","tlshash":"c7f0d65a4f0cf92f5c26ae65fe96ace3245f4179202b4e606901de713c23b6dd270408","first_seen":"2025-08-31T14:56:40.314889Z","last_seen":"2026-06-08T18:57:50.681069Z","times_seen":4575,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/1838-7cf135c919710680.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/1838-7cf135c919710680.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"1838-7cf135c919710680.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"ce0904563f643c8a436552e8f3b8ac56\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:27 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/1838-7cf135c919710680.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::g9cb6-1777192577937-5b9750406bb4\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":97773,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"ce0904563f643c8a436552e8f3b8ac56","sha1":"408ab66bdd6588938e4beedbdd7da3ff06c47f0a","sha256":"38deb077e4fea5ae488e3834addd960516792f1f129f1dd7cb3c67a01dce0762","sha512":"95aa88b79ea160d5c35b053882027504e75d12f105b58104b06bf687d9a04c3a2f7ab676ae79d064a562e34f7a991d75c6490b7dbb9b133a2a3d290f7e159d4e","ssdeep":"1536:39T4OR1ebx/c64Jysq7vjJ4sRoCSPaBEfQsGFCLtbfpAmg7vj8QW:j/eH4sRoyBE4sGF0tbRAmg7vj/W","tlshash":"62a318c0f654b035476b6294449f010af239fa25644e0868f298dceba8f5ace65fff74","first_seen":"2026-04-26T08:37:22.55015Z","last_seen":"2026-04-26T08:37:22.55015Z","times_seen":1,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/currency.json","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.621Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /currency.json HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://overload.su/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 396278\r\ncache-control: public, max-age=0, must-revalidate\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"currency.json\"\r\ncontent-type: application/json; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: \"b8a1252d12fa8f12a133057b15c74902\"\r\nlast-modified: Tue, 21 Apr 2026 17:49:39 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /currency.json\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::4vpgm-1777192578598-ec766a30a116\r\ncontent-length: 301\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":301,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"b8a1252d12fa8f12a133057b15c74902","sha1":"969ba40ee78d95bf2af8e6f23f84138de0c8cd65","sha256":"1602492ece51f260dbfb09b892e25fd6e3f785c44a4fe8c2d7431a47ac6cb5f1","sha512":"395c107f6187f2a2dbe2c96033c0c2c1fbb7dfbad718d4a50f85536295e85228a6591d3f19bdc275d5296deae069eaadd21feea9e61ce518c2d96a005943c150","ssdeep":"","tlshash":"3ae0c268e6780e471294a2b45499b2092541cf232c94f86afa97952ccf8d52f1a7640d","first_seen":"2025-11-03T01:09:51.0607Z","last_seen":"2026-05-01T17:51:07.877936Z","times_seen":5,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/chunks/4bd1b696-182b6b13bdad92e3.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://overload.su/","date":"2026-04-26T08:36:17.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/chunks/4bd1b696-182b6b13bdad92e3.js?dpl=dpl_9xoh72FKKnirFPANoK94sSpc33Le HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 393753\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"4bd1b696-182b6b13bdad92e3.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 26 Apr 2026 08:36:17 GMT\r\netag: W/\"956914c2a98a4c8823df801bf18375c9\"\r\nlast-modified: Tue, 21 Apr 2026 19:13:44 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/chunks/4bd1b696-182b6b13bdad92e3.js\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::qv2vp-1777192577931-bc15a9ec85d9\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":173025,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"956914c2a98a4c8823df801bf18375c9","sha1":"4837b06e25d5dda0ac156ef6862515561f9c0ed9","sha256":"ac61824cbe55db2ff6a8d8a22e8427dc3ddba120242a077e944ee4159ed7c5fc","sha512":"7a9875f274732327773f22a8a69cb15e7ffb911cc2b5c931bc07243691328fdbbbb8a133cd18ed818cd73ed0cb776bed24cce49bc6e725729ba19efbdb93fea8","ssdeep":"1536:nWET9Lwegcl2MywYleojBFOQLfioEV7hNc7lFlgXGhJx4bzZc5zg5tgW/zAe6c0:l9LwzMyh1vLEE7RgXOQ5SIA1","tlshash":"1df3f8ec3999e611aeb342a700df28037378261b240d4d60a614fd9ea57845bb17bfde","first_seen":"2025-08-31T14:56:40.349787Z","last_seen":"2026-06-08T07:28:57.167574Z","times_seen":1564,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/Jetcon.9facc720.svg","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.240Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/Jetcon.9facc720.svg HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 135620\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"Jetcon.9facc720.svg\"\r\ncontent-encoding: br\r\ncontent-type: image/svg+xml\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: W/\"6da566be305a916f662ce5610187eaf2\"\r\nlast-modified: Fri, 24 Apr 2026 18:55:58 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/Jetcon.9facc720.svg\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::g9cb6-1777192578230-22656214aaeb\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3868,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6da566be305a916f662ce5610187eaf2","sha1":"2591c55d4f238c6ef11dc8a645b2ba39ec17bc85","sha256":"1df179bf1f04aba2b8df45f99d293d1e56bfa6a319ffc7f4960886293eb56f92","sha512":"ed3e636a27a80aa4927c30de84524128e0ece230b8d3c984f878414fcf2dc071a49a047d21a6687e68407af8b1b780cac369289aea6f6556c4e5eae07f0f9fb2","ssdeep":"","tlshash":"fe815fd9bbe8a2f5e408e3e58b9995b53b0b10f93b10ca7dcb706e94f10181f98818d0","first_seen":"2025-11-03T01:09:51.029332Z","last_seen":"2026-05-01T17:51:07.855408Z","times_seen":5,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"overload.su/_next/static/media/Classpass.9d48f707.svg","fqdn":"overload.su","domain":"overload.su","tld":"su"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://overload.su/","date":"2026-04-26T08:36:18.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"overload.su","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 06:18:03 GMT","end":"Wed, 03 Jun 2026 06:18:02 GMT"},"fingerprint":{"sha1":"77:02:1B:14:76:54:92:9C:5C:55:04:EE:CC:54:70:EF:72:02:45:68","sha256":"4E:A1:14:FC:6E:14:D9:CF:79:7D:A3:70:26:36:63:AB:9F:67:F2:02:B6:B3:C4:78:0A:E7:22:22:D7:53:CB:8E"}}},"request":{"raw":"GET /_next/static/media/Classpass.9d48f707.svg HTTP/1.1\r\nHost: overload.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://overload.su/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 134390\r\ncache-control: public,max-age=31536000,immutable\r\ncdn-cache-control: max-age=691200\r\ncontent-disposition: inline; filename=\"Classpass.9d48f707.svg\"\r\ncontent-encoding: br\r\ncontent-type: image/svg+xml\r\ndate: Sun, 26 Apr 2026 08:36:18 GMT\r\netag: W/\"73ff53f73eb053875e890d625d337fea\"\r\nlast-modified: Fri, 24 Apr 2026 19:16:27 GMT\r\nserver: Vercel\r\nserver-downstream-engine: MMC-ENGINE-WEB\r\nstrict-transport-security: max-age=63072000\r\nvary: Cookie\r\nx-matched-path: /_next/static/media/Classpass.9d48f707.svg\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::dlq8x-1777192578230-901005ab024c\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5514,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"73ff53f73eb053875e890d625d337fea","sha1":"e4a14a24d65487d2a71dfe9c5c8c4fe80112d19c","sha256":"0f0335105ae6c821f5160369f0de1b36611afafbf267f1482c574c04b9324bc5","sha512":"e39762a64acc6c48b9d62ed8c6d61ec86f803a301413504e9f7d18c6cd186288ab55a876ba4479a425174813fde8cd9907bacd917447aee2035789d78d5fb3a6","ssdeep":"96:TGjQ52lqjGxjxl6Tjb4qZUCiucU5G7welnpF/pr9vJzLRLuTFVOW54cY7sdztczY:TGjQyTX6Tj8qZUa5G7RnpF/nBzlLuTFt","tlshash":"71b11edeb7a2a1f0e102f7d5861649357a2b14fa2b03cb6cc3da5da4b14142d99d98c2","first_seen":"2025-11-03T01:09:51.021277Z","last_seen":"2026-05-01T17:51:07.8515Z","times_seen":5,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-26","alert":"Sinkholed","trigger":"overload.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}