{"report_id":"bb62ad22-b39e-42df-8e26-bfe0b540cd33","version":6,"status":"done","tags":[],"date":"2026-05-29T11:03:20Z","url":{"schema":"http","addr":"votes-jurassic.xyz","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"ip":{"addr":"104.21.1.166","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"votes-jurassic.xyz/","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"title":"Jurassic Finance","dom":{"size":1310963,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (31068)","md5":"960cc11a55bfa6e43e6686eddc73d335","sha1":"36dafcec2f45297d60c828651cc464cc832365a9","sha256":"7a45efc606bb907c77cbd613abce694ec35760c9ebd034332ad9c8554ceb0c47","sha512":"7cc5e56e78b60b8dd0915fa672a1c0994c6f37ac30f0a10b660473152231e2ccc1b681e4b272125a2c6d3332b4806047b9f39846137476ddc575635ca5533f08","ssdeep":"24576:mQRQ7QXNMdAFGeMnACQ31Nu4S+f336u4J+M7zAEsah6:9NBMe/TFpfHjoAEdh6","tlshash":"34552231552979b1ca63afd1f19f3f287f450603c11506a8abbe3409eadef603263769","dom_hash":"domhashd4745e5a36588fdfd987b5a897d4e840","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"votes-jurassic.xyz","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"ip":{"addr":"104.21.1.166","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-03T11:03:20Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-29","alert":"Sinkholed","trigger":"votes-jurassic.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ipapi.co","ip":{"addr":"104.26.8.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-04-19","domain_rank":7936,"first_seen":"2017-01-31T09:07:01Z","last_seen":"2026-05-27T20:22:56.234416Z","alert_count":0,"request_count":1,"received_data":2495,"sent_data":437,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"hbeugaufg1-8-26hbaaaaddoter.fly.dev","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2019-03-01","domain_rank":0,"first_seen":"2026-02-09T00:40:28.837358Z","last_seen":"2026-05-24T04:37:17.263411Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":558,"comment":"","tags":null,"fingerprints":null},{"fqdn":"votes-jurassic.xyz","ip":{"addr":"172.67.129.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-05-26","domain_rank":0,"first_seen":"2026-05-29T10:57:08.250231Z","last_seen":"2026-05-29T10:57:08.250231Z","alert_count":3,"request_count":3,"received_data":2342697,"sent_data":1348,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"votes-jurassic.xyz/loader.js","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"ip":{"addr":"172.67.129.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"488979595048ee066dec1868c30cc03a","sha1":"93f7768d27b9c1e035bccfed2722d686b29896da","sha256":"491cd5682c33430812e7ac7685841255e69e4facd7108a3bdad9214556721332","sha512":"f735851dedaf21da73d7462a3e6dde56ca3e677a5488d983c4764eae86cea11db59d90c77482844019a0614164bf69a43a4cc117140f239019c5ff1105bfc823","ssdeep":"384:TB0M3ctXM+8ivXTFv24ozKVAkJDZDXNNu34I0hWD8fe+eCRPOCOnEhy2V+MvOnSz:SkctXM+8ojp2xOVAEZ83idtOiy2ogWk5","tlshash":"2d92d98e7a54267b033312484d670e54d926d64fa2024c2976bce3d43fb8e1e58b77ee","size":20094,"data":"","first_seen":"2026-05-13T12:55:15.404714Z","last_seen":"2026-06-03T16:51:32.438083Z","times_seen":61,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"votes-jurassic.xyz/","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"ip":{"addr":"172.67.129.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"261fa5f948bd99fdf005f80595805744","sha1":"51d57156b1974322b3ba8542f48893082199d5e1","sha256":"1dcf3b0e1f92d593867169c5ee26771d2f3b77f552eee6c73beba961b91d61b7","sha512":"532ff30dfdd593068e7afc5f98cb1bc72408e594f297911c0a7c590c97a2ed6be6b91981322dfe3b3e90f21241404ae8692139732372f119279dbdf29f3ae429","ssdeep":"","tlshash":"a6015927222233707ce9d5dca8b6dd8e39bb501ae40a0090a09f944d1834bc644f7bec","size":847,"data":"","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-06-07T04:19:30.117869Z","times_seen":3602,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"votes-jurassic.xyz/","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"ip":{"addr":"172.67.129.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ae384ad24481e58c66199e96d8fc8498","sha1":"f783e58c42af0b008f87e97eb86c15136c220a1f","sha256":"9f09b22e6b115d781c9aa69428f447958e512573cecd30f00854c000f611995a","sha512":"ee1fa67631aec81b8c13ca2b1248afd92ce5361ae225fcf84b7f4159d1e3d8b9612584250bfd14722942baee8c12a006c4e4f5ce07542ab25ffd4e69a54f5bde","ssdeep":"","tlshash":"9821486ff6343a7548fbb677519ffb583a231082084499012b79cd960f18e8438ab8d9","size":1223,"data":"","first_seen":"2026-05-14T15:22:02.792977Z","last_seen":"2026-05-30T10:08:59.263894Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"votes-jurassic.xyz/image.png","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"ip":{"addr":"172.67.129.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://votes-jurassic.xyz/","date":"2026-05-29T11:02:55.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"votes-jurassic.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:05:53 GMT","end":"Mon, 24 Aug 2026 12:05:52 GMT"},"fingerprint":{"sha1":"37:6E:3D:C8:C3:63:3A:73:B2:6D:C6:1C:4B:CF:B6:2B:D2:91:0E:A3","sha256":"16:41:C4:47:C2:12:78:24:1F:55:80:E0:3B:7C:7A:BF:62:B4:5E:DB:FB:B6:D8:52:8C:C5:3A:F6:29:28:CC:CA"}}},"request":{"raw":"GET /image.png HTTP/1.1\r\nHost: votes-jurassic.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://votes-jurassic.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 29 May 2026 11:02:55 GMT\r\ncontent-type: image/png\r\ncontent-length: 1009926\r\nlast-modified: Wed, 27 May 2026 01:07:04 GMT\r\npriority: u=4,i=?0\r\netag: \"6a1643b8-f6906\"\r\naccept-ranges: bytes\r\nage: 372\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cpvad41RdxRMTVBpF14nOXIRupCfGHZWNgaC1plNxAKdCioycectWgS0ahiCowAbDfSHkfLMGyR1GXMoDwmRCTgGsqjmgnI12lNbZvqiF24MECBq%2B6iOTdDzVHslygCcQjJbSKE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a0350276df1a56c5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1009926,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced","md5":"a5f6140bc98858e898558b0a2ebe49e1","sha1":"5e63a22f82b2cdbebb94da355c775e56bcd47c8b","sha256":"75f04a31931a2d174485ff2c0b2047c51c7cb06d4dc90f1ac13438272592b016","sha512":"3112348c34110177d458a99802debfc6804de2323f967812703e3c10aab497771a33133cfd5b711084434b01cc50ea1ced552c606d3ad25be29f0ca4e907e06e","ssdeep":"24576:HNE97F3pbZ4tZv/bPvESHY7+gY48hN/Pves7I:HW92j46gYbJJU","tlshash":"5525224a8b80cbf2e45fef32a268e33861717c659655ab011331eded2c216f64346f5b","first_seen":"2026-05-29T10:57:11.655707Z","last_seen":"2026-05-29T11:03:22.717788Z","times_seen":2,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":57,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-29","alert":"Sinkholed","trigger":"votes-jurassic.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"votes-jurassic.xyz/loader.js","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"ip":{"addr":"172.67.129.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://votes-jurassic.xyz/","date":"2026-05-29T11:02:55.804Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"votes-jurassic.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:05:53 GMT","end":"Mon, 24 Aug 2026 12:05:52 GMT"},"fingerprint":{"sha1":"37:6E:3D:C8:C3:63:3A:73:B2:6D:C6:1C:4B:CF:B6:2B:D2:91:0E:A3","sha256":"16:41:C4:47:C2:12:78:24:1F:55:80:E0:3B:7C:7A:BF:62:B4:5E:DB:FB:B6:D8:52:8C:C5:3A:F6:29:28:CC:CA"}}},"request":{"raw":"GET /loader.js HTTP/1.1\r\nHost: votes-jurassic.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://votes-jurassic.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 29 May 2026 11:02:55 GMT\r\ncontent-type: application/javascript\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1KBTY9e71e88zqggxu81ifnbwvkBKrFzOa7jNDSgwkpcDu16Z2KH3Z5WeUxWX83plIYnSG6G%2Bf6Rb4gsSJ5zcb7lk1mU4fcBRrzOgzHezjN5hiS6ylmdQT4IPhYWAwUQWIJE%2FKs%3D\"}]}\r\nlast-modified: Wed, 27 May 2026 01:07:06 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nage: 372\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"6a1643ba-4e7e\"\r\ncf-ray: a0350276cf1956c5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20094,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (6876), with CRLF line terminators","md5":"488979595048ee066dec1868c30cc03a","sha1":"93f7768d27b9c1e035bccfed2722d686b29896da","sha256":"491cd5682c33430812e7ac7685841255e69e4facd7108a3bdad9214556721332","sha512":"f735851dedaf21da73d7462a3e6dde56ca3e677a5488d983c4764eae86cea11db59d90c77482844019a0614164bf69a43a4cc117140f239019c5ff1105bfc823","ssdeep":"384:TB0M3ctXM+8ivXTFv24ozKVAkJDZDXNNu34I0hWD8fe+eCRPOCOnEhy2V+MvOnSz:SkctXM+8ojp2xOVAEZ83idtOiy2ogWk5","tlshash":"2d92d98e7a54267b033312484d670e54d926d64fa2024c2976bce3d43fb8e1e58b77ee","first_seen":"2026-05-13T12:55:15.404714Z","last_seen":"2026-06-03T16:51:32.438083Z","times_seen":61,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-29","alert":"Sinkholed","trigger":"votes-jurassic.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ipapi.co/json/","fqdn":"ipapi.co","domain":"ipapi.co","tld":"co"},"ip":{"addr":"104.26.8.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://votes-jurassic.xyz/","date":"2026-05-29T11:02:55.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ipapi.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 16 Apr 2026 20:25:59 GMT","end":"Wed, 15 Jul 2026 21:25:52 GMT"},"fingerprint":{"sha1":"76:B2:7F:DD:D1:3A:92:49:08:6F:F6:9D:93:7F:FA:A4:E7:AF:1E:04","sha256":"D3:90:F8:60:D1:C0:1C:19:C5:12:68:B2:54:72:DC:42:A3:9F:4C:D8:10:D6:0D:5B:71:0C:1C:EB:AF:AA:AF:F1"}}},"request":{"raw":"GET /json/ HTTP/1.1\r\nHost: ipapi.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://votes-jurassic.xyz/\r\nOrigin: https://votes-jurassic.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 29 May 2026 11:02:56 GMT\r\ncontent-type: application/json\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nallow: HEAD, OPTIONS, POST, OPTIONS, GET\r\nx-frame-options: DENY\r\nvary: Host, origin\r\naccess-control-allow-origin: https://votes-jurassic.xyz\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.stripe.com https://*.paddle.com https://www.google.com https://www.gstatic.com https://maps.gstatic.com https://maps.googleapis.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; style-src 'self' 'unsafe-inline' https://*.paddle.com https://fonts.gstatic.com https://fonts.googleapis.com; img-src 'self' data: https://ipapi.co https://maps.gstatic.com https://maps.googleapis.com https://*.stripe.com; font-src 'self' data: https://fonts.gstatic.com https://fonts.googleapis.com; frame-src 'self' https://www.google.com https://*.stripe.com https://*.paddle.com https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/; connect-src 'self' https://ipapi.co/ https://*.paddle.com https://*.stripe.com https://maps.googleapis.com https://www.google.com/recaptcha/; object-src 'none'; frame-ancestors 'none'; base-uri 'self'; form-action 'self';\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nHGlz4Bkf6IbD9uJ55tCV81oWqWhOOsLfkhVNISLlE2x61D1mMHq%2FDcxBWZ5vDCbrWRMlEeiGvG2zyHU0%2FukxU6KLGC1%2F%2BLzOm2B4fEKhnkiTkrPJFv95cLd\"}]}\r\ncontent-encoding: br\r\ncf-ray: a0350277fedc3181-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":736,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"873d9f01b0c8b3cefe93ae64cef15289","sha1":"820693adcc2ddc5915badb0f94a4f1f50d99ac5c","sha256":"f28077328c47297f07e458f9c7552abf5acbf088ad016083d80335dea792120d","sha512":"0516b7dc21c12a64bea64c586a2223ee2f513ac9e61aab1aed7837e2751c0a40190907d10532a78ff03f85d670b3b3914b0a69ec30fcedb7ffbe9c63517af3d3","ssdeep":"","tlshash":"1e01df68e4680f7b9cb81358b4386907126422175f56398e7fd0974d0f8e8bf31b134e","first_seen":"2026-05-27T23:41:07.67695Z","last_seen":"2026-06-07T07:19:34.625085Z","times_seen":616,"resource_available":false,"data":null}},"time_used":324,"timings":{"blocked":50,"dns":36,"connect":1,"send":0,"wait":223,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hbeugaufg1-8-26hbaaaaddoter.fly.dev/notify-visit","fqdn":"hbeugaufg1-8-26hbaaaaddoter.fly.dev","domain":"hbeugaufg1-8-26hbaaaaddoter.fly.dev","tld":"fly.dev"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://votes-jurassic.xyz/","date":"2026-05-29T11:02:56.328Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"OPTIONS /notify-visit HTTP/1.1\r\nHost: hbeugaufg1-8-26hbaaaaddoter.fly.dev\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://votes-jurassic.xyz/\r\nOrigin: https://votes-jurassic.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-07T15:09:50.158129Z","times_seen":16214810,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"votes-jurassic.xyz/","fqdn":"votes-jurassic.xyz","domain":"votes-jurassic.xyz","tld":"xyz"},"ip":{"addr":"172.67.129.163","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-29T11:02:55.458Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"votes-jurassic.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 12:05:53 GMT","end":"Mon, 24 Aug 2026 12:05:52 GMT"},"fingerprint":{"sha1":"37:6E:3D:C8:C3:63:3A:73:B2:6D:C6:1C:4B:CF:B6:2B:D2:91:0E:A3","sha256":"16:41:C4:47:C2:12:78:24:1F:55:80:E0:3B:7C:7A:BF:62:B4:5E:DB:FB:B6:D8:52:8C:C5:3A:F6:29:28:CC:CA"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: votes-jurassic.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 29 May 2026 11:02:55 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Wed, 27 May 2026 01:07:14 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9A%2FlfNbljaRia%2FRd2%2BlKCMtNo2O5HQH9S7YVgnHyhFa8y35GrJF6XgGqi5ybfJygEVKsH4BJne1D9GVBs4WEAUuw7QQlnMg2nyuQYh%2BXxH%2FsI6BcHtesBad3y6bUC5YnLP09MM8%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: a03502751bdc712d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1310647,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (31359)","md5":"01994752480598c4c89acd8d9e2f0707","sha1":"23b16eeda18882ce643b99663a9b1079e2e5331f","sha256":"62fdd46997c210635bb94af721c5a086fbaa5e3c5e653abb62e397281eb56154","sha512":"98a033878c84408a2ff8f98faa5cd49c5254ceff3553245e25d9e05a1f3e11340feff1ca46489628dccee179baf2f5f7d3136816abcd5186ca6708a457f75315","ssdeep":"12288:AVQQYQrHQpVzNMdT41FLnjydVzeMnT41CLnjyPjtBqaT0YlwMKGHg3HPKV+Hj+fB:UQRQ7QXNMdAFGeMnACQ31Nu4S+f33h","tlshash":"f1252330191e69a1ce91bbc0f15f3e356f060743911506e99bbf3409f4eaf6021a7bae","first_seen":"2026-05-29T10:57:11.637722Z","last_seen":"2026-05-29T11:03:22.721365Z","times_seen":2,"resource_available":true,"data":null}},"time_used":207,"timings":{"blocked":68,"dns":47,"connect":3,"send":0,"wait":69,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-29","alert":"Sinkholed","trigger":"votes-jurassic.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}