{"report_id":"a5b046a4-edbc-48b0-b129-a38cb32833d2","version":6,"status":"done","tags":[],"date":"2026-06-01T02:02:05Z","url":{"schema":"https","addr":"nearintentsinstaller.xyz/","fqdn":"nearintentsinstaller.xyz","domain":"nearintentsinstaller.xyz","tld":"xyz"},"ip":{"addr":"64.29.17.65","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.nearintentsinstaller.xyz/","fqdn":"www.nearintentsinstaller.xyz","domain":"nearintentsinstaller.xyz","tld":"xyz"},"title":"NEAR Intents — Desktop Extension for Windows","dom":{"size":911652,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"8a5631c378449202c61ea94a8c8938d6","sha1":"465922ceabaa24df68cf39d9e215c7c67a3eb55b","sha256":"4d788eebeed21715b7fbba8db514453d6aab9825330c34f69644cf570a78d851","sha512":"11a3f72ad3a13e01a83bcb9bc7b4675fdaf6461b5bb76ffd2013b754c86c99eccfa39cf098ffebec5127019b85dab03fcd767f7acb18653e2d29cda8328d069f","ssdeep":"12288:9/7MARPxdMHctB5ycN1rhR9hCp6C/bO7juhufb/iuIn9fL:WAu8AStRPCXbOQufuZn9fL","tlshash":"1815e02662b3997a6c336179979d610d7e35e087c50ccda8be8c01608fc2af8ede7754","dom_hash":"domhashca35c576f1acc2a90245792bac058db0","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"nearintentsinstaller.xyz/","fqdn":"nearintentsinstaller.xyz","domain":"nearintentsinstaller.xyz","tld":"xyz"},"ip":{"addr":"64.29.17.65","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-06T02:02:05Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"nearintentsinstaller.xyz","ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-05-25","domain_rank":0,"first_seen":"2026-06-01T00:13:14.733104Z","last_seen":"2026-06-01T00:13:14.733104Z","alert_count":0,"request_count":1,"received_data":932731,"sent_data":493,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.nearintentsinstaller.xyz","ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-05-25","domain_rank":0,"first_seen":"2026-06-01T00:13:14.74998Z","last_seen":"2026-06-01T00:13:14.74998Z","alert_count":0,"request_count":3,"received_data":1866189,"sent_data":1412,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.nearintentsinstaller.xyz/","fqdn":"www.nearintentsinstaller.xyz","domain":"nearintentsinstaller.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"2530d0a7f261fa2f196671b446edc8ce","sha1":"2ca67cbee9dbcad8f55a3932bb29244e6a54bdd3","sha256":"9b7e76e96f6c0e2ca81161463be4773da37269626753806aeb84bfb102318f9f","sha512":"cbbc6ddc5bde45d5f631e64afa7b10f2004bd93d1de9ab7387fc5f4c9d162aa5e685d186ae0b063b5da61726edd6c369f55b615986b6486bd2dc626188eaddf0","ssdeep":"","tlshash":"85316a1252b322663c4bb0bd5fbbd84d763a400bd8095450788ea18c6f70b6509f37cc","size":1739,"data":"","first_seen":"2025-10-22T17:11:21.585925Z","last_seen":"2026-06-01T02:02:06.477836Z","times_seen":460,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"www.nearintentsinstaller.xyz/","fqdn":"www.nearintentsinstaller.xyz","domain":"nearintentsinstaller.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.nearintentsinstaller.xyz/","date":"2026-06-01T02:01:40.364Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.nearintentsinstaller.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 May 2026 11:48:53 GMT","end":"Sun, 23 Aug 2026 11:48:52 GMT"},"fingerprint":{"sha1":"72:BF:3C:4B:C0:98:B0:8E:32:11:5C:5B:25:24:E3:CC:A9:6A:42:41","sha256":"10:7E:64:76:4B:58:0F:48:63:C3:C5:DA:B0:A3:F5:C0:CA:AE:E8:CD:8F:D2:9E:BC:56:D9:62:62:3C:A8:9A:B2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.nearintentsinstaller.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.nearintentsinstaller.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 215516\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Mon, 01 Jun 2026 02:01:40 GMT\r\netag: W/\"3ac43655405335295ba3db18b0b5352a\"\r\nlast-modified: Fri, 29 May 2026 14:09:44 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::tzn6w-1780279300372-2db8082b3350\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":932402,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"537811b0f5f552ad7aad9a27d56cb438","sha1":"cbe9c9ce0115f1f1058cab2b88a31bb59855d377","sha256":"06a4ee605f5ddfb532f368469f3c3bce6ad382757ff73614960dd9d7db94d0a7","sha512":"4957284739ade8968dbf2da707cf7ce02588ad5010d2f2164d2b6424a2ab9999a9613db7ff9201bce1b0d70f4d438e50f702b77a0af53d7e4be91c5a50fafc9d","ssdeep":"12288:e/7OARPxdMHctB5ycN1rhR9hCp6C/bO7juhufb/iuIn9fw:DAu8AStRPCXbOQufuZn9fw","tlshash":"7615e02666b399ba6c376179979d610c7e39e087c40ccd987e8c11608fc2af8ede3754","first_seen":"2026-06-01T00:13:17.995396Z","last_seen":"2026-06-01T02:02:06.475043Z","times_seen":4,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.nearintentsinstaller.xyz/favicon.ico","fqdn":"www.nearintentsinstaller.xyz","domain":"nearintentsinstaller.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.nearintentsinstaller.xyz/","date":"2026-06-01T02:01:40.583Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.nearintentsinstaller.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 May 2026 11:48:53 GMT","end":"Sun, 23 Aug 2026 11:48:52 GMT"},"fingerprint":{"sha1":"72:BF:3C:4B:C0:98:B0:8E:32:11:5C:5B:25:24:E3:CC:A9:6A:42:41","sha256":"10:7E:64:76:4B:58:0F:48:63:C3:C5:DA:B0:A3:F5:C0:CA:AE:E8:CD:8F:D2:9E:BC:56:D9:62:62:3C:A8:9A:B2"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.nearintentsinstaller.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.nearintentsinstaller.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/plain; charset=utf-8\r\ndate: Mon, 01 Jun 2026 02:01:40 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-error: NOT_FOUND\r\nx-vercel-id: arn1::2cxft-1780279300592-f1463d3f04ad\r\ncontent-length: 79\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"8bf74fd397eea637b61373eb25405c10","sha1":"06cf6d353b61a57b939a7267d780f7930792502d","sha256":"55e1e64712246da81735dbd545070f912a3b6b98bbdaa495a2ea9b217d967419","sha512":"68b761d3230182ddc5f71c5ad2fcdb8d2b85274357eab2d3da9a9e28f62593c943e9dac9349b87af6fd06f85373b49a891bd7d3fd64d2e687438504e270db2c6","ssdeep":"","tlshash":"f2a0247d4df74d4c33c10c103005133405110013dd50f30050cc77701104dcf53404c0","first_seen":"2026-06-01T02:02:06.476176Z","last_seen":"2026-06-01T02:02:06.476176Z","times_seen":1,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nearintentsinstaller.xyz/","fqdn":"nearintentsinstaller.xyz","domain":"nearintentsinstaller.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-01T02:01:39.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nearintentsinstaller.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 May 2026 11:47:59 GMT","end":"Sun, 23 Aug 2026 11:47:58 GMT"},"fingerprint":{"sha1":"40:F3:9C:AB:AA:A1:BF:35:FB:86:2B:36:48:6C:7C:27:57:A9:66:30","sha256":"0E:00:E8:6C:90:4D:4A:B8:37:D0:A8:4B:71:40:3C:66:FA:E3:D8:6B:30:84:26:22:88:1F:4D:11:4A:AD:12:F5"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: nearintentsinstaller.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 307 Temporary Redirect\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/html\r\ndate: Mon, 01 Jun 2026 02:01:39 GMT\r\nlocation: https://www.nearintentsinstaller.xyz/\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-id: arn1::fxfnz-1780279299787-c0c8dd181b4f\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":932402,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-22T12:29:11.777138Z","times_seen":16636172,"resource_available":true,"data":null}},"time_used":393,"timings":{"blocked":171,"dns":90,"connect":33,"send":0,"wait":41,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.nearintentsinstaller.xyz/","fqdn":"www.nearintentsinstaller.xyz","domain":"nearintentsinstaller.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-01T02:01:39.842Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.nearintentsinstaller.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 May 2026 11:48:53 GMT","end":"Sun, 23 Aug 2026 11:48:52 GMT"},"fingerprint":{"sha1":"72:BF:3C:4B:C0:98:B0:8E:32:11:5C:5B:25:24:E3:CC:A9:6A:42:41","sha256":"10:7E:64:76:4B:58:0F:48:63:C3:C5:DA:B0:A3:F5:C0:CA:AE:E8:CD:8F:D2:9E:BC:56:D9:62:62:3C:A8:9A:B2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.nearintentsinstaller.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 215515\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Mon, 01 Jun 2026 02:01:40 GMT\r\netag: W/\"3ac43655405335295ba3db18b0b5352a\"\r\nlast-modified: Fri, 29 May 2026 14:09:44 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::zfh62-1780279300079-196cc8f2e1a3\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":932402,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"537811b0f5f552ad7aad9a27d56cb438","sha1":"cbe9c9ce0115f1f1058cab2b88a31bb59855d377","sha256":"06a4ee605f5ddfb532f368469f3c3bce6ad382757ff73614960dd9d7db94d0a7","sha512":"4957284739ade8968dbf2da707cf7ce02588ad5010d2f2164d2b6424a2ab9999a9613db7ff9201bce1b0d70f4d438e50f702b77a0af53d7e4be91c5a50fafc9d","ssdeep":"12288:e/7OARPxdMHctB5ycN1rhR9hCp6C/bO7juhufb/iuIn9fw:DAu8AStRPCXbOQufuZn9fw","tlshash":"7615e02666b399ba6c376179979d610c7e39e087c40ccd987e8c11608fc2af8ede3754","first_seen":"2026-06-01T00:13:17.995396Z","last_seen":"2026-06-01T02:02:06.475043Z","times_seen":4,"resource_available":true,"data":null}},"time_used":497,"timings":{"blocked":228,"dns":136,"connect":32,"send":0,"wait":40,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}