{"report_id":"b8e4826b-cbcd-4eaa-b051-a57bb6cbf9a6","version":6,"status":"done","tags":[],"date":"2026-02-04T16:30:56Z","url":{"schema":"http","addr":"gxh5.geminispro.com","fqdn":"gxh5.geminispro.com","domain":"geminispro.com","tld":"com"},"ip":{"addr":"172.67.191.195","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"gxh5.geminispro.com/","fqdn":"gxh5.geminispro.com","domain":"geminispro.com","tld":"com"},"title":"gxh5.geminispro.com/","dom":{"size":131,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with no line terminators","md5":"4cd0bdd9aa16b217c8621ce978221301","sha1":"cc0b377e51ca44f3d887405d347e045666fc6dcd","sha256":"28a9bfdb5975a2d6598da23a6c9cc6c67644af166f3ce6f50c3e0434286812cc","sha512":"ca39f087e359f6fe24f69ee09864eb3b3df682ef9678f7aa7c86d4b9b739b574306dcc96b2648149b8e5e266bf4b7b66896e04fc4dea7899085a1bd4db9c1a88","ssdeep":"","tlshash":"8dc02bf18074040398303dc11c9391073f11b263300d1c002580325409149d68411c4c","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"gxh5.geminispro.com","fqdn":"gxh5.geminispro.com","domain":"geminispro.com","tld":"com"},"ip":{"addr":"172.67.191.195","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-11T16:30:56Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"gxh5.geminispro.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":1836,"sent_data":933,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"gxh5.geminispro.com/","fqdn":"gxh5.geminispro.com","domain":"geminispro.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-04T16:30:35.647Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"geminispro.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 05:59:25 GMT","end":"Fri, 24 Apr 2026 06:57:00 GMT"},"fingerprint":{"sha1":"FF:C8:66:C0:30:8A:B6:81:3E:B9:B7:3C:3E:DB:B4:65:3E:67:84:89","sha256":"A8:17:C6:86:23:5B:47:D2:25:A7:E3:C2:04:A1:99:FC:88:13:41:AC:25:BA:27:7D:D1:FC:31:49:D2:3F:56:65"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: gxh5.geminispro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 04 Feb 2026 16:30:36 GMT\r\ncontent-type: text/html;charset=UTF-8\r\nserver: cloudflare\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M2h0%2Bky%2Fsdeofmbk3%2FwuWZfg80ct%2Bdsw5O5bvlY6fFYO1QVuwLHyn98dMbUVuzqTHD%2F%2FFqYDEe2dB6qCT74zIbiCMBbdAbqpT0rMkmBpWFgQDwA%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9c8b8db1ca5f1525-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":92,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"Unicode text, UTF-8 text, with no line terminators","md5":"0b2b40ba393173d0bae8698d0388bf3e","sha1":"b423ab2adb7fccfa022cb4759f6757214cbf3777","sha256":"0612382c94325f1368053cf52bea327b8528683ecff3dae3625fec4df383afe8","sha512":"9781e2bbe582573d5bc62b162b785949f0902497622f7cb2e7c858d5cf7999afe18ae4a7ff4c54213010de447e0127731b02a34d2cfe30a82c1308b1c48f1e74","ssdeep":"","tlshash":"bdb012910478154350515d461527901b3f11b163700d2410254023440a258d65060c08","first_seen":"2026-02-04T16:31:00.316115Z","last_seen":"2026-02-04T16:31:00.316115Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1360,"timings":{"blocked":158,"dns":131,"connect":1,"send":0,"wait":1044,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gxh5.geminispro.com/favicon.ico","fqdn":"gxh5.geminispro.com","domain":"geminispro.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://gxh5.geminispro.com/","date":"2026-02-04T16:30:37.018Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"geminispro.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 05:59:25 GMT","end":"Fri, 24 Apr 2026 06:57:00 GMT"},"fingerprint":{"sha1":"FF:C8:66:C0:30:8A:B6:81:3E:B9:B7:3C:3E:DB:B4:65:3E:67:84:89","sha256":"A8:17:C6:86:23:5B:47:D2:25:A7:E3:C2:04:A1:99:FC:88:13:41:AC:25:BA:27:7D:D1:FC:31:49:D2:3F:56:65"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: gxh5.geminispro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://gxh5.geminispro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 16:30:37 GMT\r\ncontent-type: application/json;charset=utf-8\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: SAMEORIGIN\r\nstrict-transport-security: max-age=31536000\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nlast-modified: Wed, 04 Feb 2026 16:30:37 GMT\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YU%2BWj1oXTykVkbC7fZ9Fo8tWx6Ge1NrmFiC3oi3NHh%2FsLLjDAEEqCpjFF3UW8jycdDBdT02Zi%2BVyNqh%2BrF6%2BLjZTt31UjLSv2tVCaaB1l1Jqh34%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9c8b8db95e9c4c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":90,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"a1a0860ef4db634b4d29379cc537b3c0","sha1":"98e11e95470c987d3f3f63a7e7beb4cd0b79bafa","sha256":"c49708f45bcf4aa66345bded195c9792bcf8a551a903859df9ba9651c41f64f5","sha512":"c49c03c6dd2364840d259b1c32de60c499a6d9dae9aad31db34427a2e2e59d2fae9082091c560a152fd2af73bf57d30153cac8a131c41b23ba92b3f6c2b4fb2c","ssdeep":"","tlshash":"0eb012301f2d1bc3351101590b4c02005022d4805e140b501a4d23f50828c4c248a588","first_seen":"2023-04-14T18:31:44Z","last_seen":"2026-06-04T19:39:04.125665Z","times_seen":646,"resource_available":false,"data":null}},"time_used":924,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":924,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}