{"report_id":"a6481919-b914-48e4-8e3d-de7ff4ad360c","version":6,"status":"done","tags":[],"date":"2026-03-05T18:51:21Z","url":{"schema":"http","addr":"tcwq6pz.com","fqdn":"tcwq6pz.com","domain":"tcwq6pz.com","tld":"com"},"ip":{"addr":"104.21.82.119","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"tcwq6pz.com/","fqdn":"tcwq6pz.com","domain":"tcwq6pz.com","tld":"com"},"title":"tcwq6pz.com/","dom":{"size":6713,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"d47b2c02df4aa8919472d2d0e4bc2dba","sha1":"a125944cf5aa7dca79486578dd1f2a51f05b5f32","sha256":"9b119a321c67545df0875d1d096ac12438b006e04274c1d6d39ff49b62d1d289","sha512":"0a927cf3a8d23e2ff70addbbcf8696e2705fb2810d5de983dac152f3e064d61879f4209abf4b38389aa094ba50b739e7b415be7f43282e6efe34bffa950c265c","ssdeep":"192:XJa/79dzntaK7za1djzRyJREFk3g5pklyq5FGUPT2XPquinS+W6:sZaK7WrZGbSGV","tlshash":"94d1114a82a30126a557a27c0fade6257536c443a20bdc117d9d5364dfc7e2c8be3bac","dom_hash":"domhashf925d2b76d6e8d783157aa0266ba120b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"tcwq6pz.com","fqdn":"tcwq6pz.com","domain":"tcwq6pz.com","tld":"com"},"ip":{"addr":"104.21.82.119","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-09T18:51:21Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"tcwq6pz.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-08-29","domain_rank":0,"first_seen":"2026-03-05T18:51:21.326491Z","last_seen":"2026-03-05T18:51:21.326491Z","alert_count":0,"request_count":3,"received_data":14748,"sent_data":1349,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"tcwq6pz.com/","fqdn":"tcwq6pz.com","domain":"tcwq6pz.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b9a5a3e91eea1bac51633e1c0efbc687","sha1":"9b3151b7bad47d87926f750ee01bae0ba764650c","sha256":"eb0532acdc267c1bd613261c40ca8aa95e91ec847c32140219c5564963c4f51c","sha512":"a5b76f043085beb8ea5309980032dbe73d1dbabb850d634c735fc4e01eb8f3b2edd496bc3faea1ff937702190c9336ee18ecd3ca7120f6e4a13a92050a111ba5","ssdeep":"","tlshash":"54517c4d02a7626216ab316c5b9f516c313b90437449dd02bd4ca7506fe9f2dcbb1fd8","size":2750,"data":"","first_seen":"2025-09-20T22:04:36.326625Z","last_seen":"2026-06-04T14:20:59.149021Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"tcwq6pz.com/","fqdn":"tcwq6pz.com","domain":"tcwq6pz.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T18:50:59.504Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tcwq6pz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 22 Feb 2026 07:59:29 GMT","end":"Sat, 23 May 2026 08:59:27 GMT"},"fingerprint":{"sha1":"D4:68:55:2D:E1:95:9E:97:01:8E:5D:F5:17:6A:46:1C:75:19:96:62","sha256":"76:99:CB:0D:B3:7B:8A:8A:F4:1A:42:6E:87:59:13:74:F1:65:2B:8A:3F:05:B0:15:2B:C2:9B:69:4C:12:44:D4"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: tcwq6pz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 18:50:59 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\netag: W/\"69987381-1a65\"\r\nlast-modified: Fri, 20 Feb 2026 14:45:21 GMT\r\nserver: cloudflare\r\nvary: accept-encoding\r\ncf-ray: 9d7b4f3a5cf6527d-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6757,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"98879060edf46b9b368c7386853d16cd","sha1":"9e9477fe4fc041061adc1ae03509576bfd62c95e","sha256":"0e4bea00cb4e8dc68445877553710f1f682bdb713ae09a1b3e214b4187e26e7e","sha512":"c465ba00be937e91c9bf3315b473f614e77ac98fc5c645925c78791a01f704f09464c5eb36b5f1ec6141f2be49f64e8c6478f9b54685f4a663dd97fc54310678","ssdeep":"192:EJa/79dzntaK7za1djzRyJkEFk3g5pklyq5FGUPT2XPquinS+WC:FZaK7WriGbSG5","tlshash":"6ad1124a82a31126a547a17c0faee7257526c443e20bdc117d9d5364dfc7e2c8be3bac","first_seen":"2025-11-04T17:12:00.865621Z","last_seen":"2026-06-04T14:20:59.144615Z","times_seen":42,"resource_available":false,"data":null}},"time_used":280,"timings":{"blocked":65,"dns":29,"connect":8,"send":0,"wait":150,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tcwq6pz.com/client/api/checkHostCode?host=tcwq6pz.com\u0026code=","fqdn":"tcwq6pz.com","domain":"tcwq6pz.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://tcwq6pz.com/","date":"2026-03-05T18:50:59.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tcwq6pz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 22 Feb 2026 07:59:29 GMT","end":"Sat, 23 May 2026 08:59:27 GMT"},"fingerprint":{"sha1":"D4:68:55:2D:E1:95:9E:97:01:8E:5D:F5:17:6A:46:1C:75:19:96:62","sha256":"76:99:CB:0D:B3:7B:8A:8A:F4:1A:42:6E:87:59:13:74:F1:65:2B:8A:3F:05:B0:15:2B:C2:9B:69:4C:12:44:D4"}}},"request":{"raw":"GET /client/api/checkHostCode?host=tcwq6pz.com\u0026code= HTTP/1.1\r\nHost: tcwq6pz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tcwq6pz.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 05 Mar 2026 18:51:00 GMT\r\ncontent-type: application/json\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\ncf-ray: 9d7b4f3c6e22dcff-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":247,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"99b6288fa8b7179c1e4d8aef1af3129a","sha1":"19ed060260295007f2ed5d4ead24c41e2c1415b0","sha256":"69d8bcf77cc97bf66c90e83a5b2daa0a61880cf7782cf06c6ea3fa4f7fe11223","sha512":"2ce763cc4c6269849c124c55ce13e79e513f8a7e6f031c5e01d2dcb3ea771b59beab63be2024f9c13f6ba1319c7c760cc7d606e39496b02ae54152e4c7f61006","ssdeep":"","tlshash":"d8d0a7220c681c17140c2dca5048bd054a0e078726485e34c44cff2948edfbc212d125","first_seen":"2025-09-24T14:01:09.320781Z","last_seen":"2026-03-05T21:43:34.881291Z","times_seen":5,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tcwq6pz.com/favicon.ico","fqdn":"tcwq6pz.com","domain":"tcwq6pz.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tcwq6pz.com/","date":"2026-03-05T18:50:59.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tcwq6pz.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 22 Feb 2026 07:59:29 GMT","end":"Sat, 23 May 2026 08:59:27 GMT"},"fingerprint":{"sha1":"D4:68:55:2D:E1:95:9E:97:01:8E:5D:F5:17:6A:46:1C:75:19:96:62","sha256":"76:99:CB:0D:B3:7B:8A:8A:F4:1A:42:6E:87:59:13:74:F1:65:2B:8A:3F:05:B0:15:2B:C2:9B:69:4C:12:44:D4"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: tcwq6pz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tcwq6pz.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 05 Mar 2026 18:51:00 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncf-cache-status: MISS\r\ncache-control: max-age=14400\r\ncontent-encoding: gzip\r\netag: W/\"69987381-1a65\"\r\nlast-modified: Fri, 20 Feb 2026 14:45:21 GMT\r\nserver: cloudflare\r\nvary: accept-encoding\r\npriority: u=6,i=?0\r\ncf-ray: 9d7b4f3d0f99dcff-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6757,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"98879060edf46b9b368c7386853d16cd","sha1":"9e9477fe4fc041061adc1ae03509576bfd62c95e","sha256":"0e4bea00cb4e8dc68445877553710f1f682bdb713ae09a1b3e214b4187e26e7e","sha512":"c465ba00be937e91c9bf3315b473f614e77ac98fc5c645925c78791a01f704f09464c5eb36b5f1ec6141f2be49f64e8c6478f9b54685f4a663dd97fc54310678","ssdeep":"192:EJa/79dzntaK7za1djzRyJkEFk3g5pklyq5FGUPT2XPquinS+WC:FZaK7WriGbSG5","tlshash":"6ad1124a82a31126a547a17c0faee7257526c443e20bdc117d9d5364dfc7e2c8be3bac","first_seen":"2025-11-04T17:12:00.865621Z","last_seen":"2026-06-04T14:20:59.144615Z","times_seen":42,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":201,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}