{"report_id":"d9ece81a-5a14-4970-ad65-799f15561247","version":6,"status":"done","tags":[],"date":"2026-03-02T16:24:32Z","url":{"schema":"http","addr":"allfile.me","fqdn":"allfile.me","domain":"allfile.me","tld":"me"},"ip":{"addr":"159.223.128.14","port":0,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"allfile.me/","fqdn":"allfile.me","domain":"allfile.me","tld":"me"},"title":"allfile.me/","dom":{"size":920,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"8bc6f00e3addd0a887c7b9a96d492f68","sha1":"3e96e1022553f5e560eb92e54b0bd9a07da8a2c1","sha256":"e35e5c78705da3047ed51c4d00078776f12768c9eaf7167e46ec809e328eaf0f","sha512":"c723c998db9722edcc4cf915c90b937055e05d9af8e7e2113d6f0850abe5704fd2e00ec16fd4a9b8b3611931f71192f785174ceab3428badc588ab320bcda607","ssdeep":"","tlshash":"fb117af97cf3c4a0116bb16d2bdbe909217dc843900c5505b48c0d45bfd12acabbab55","dom_hash":"domhash54e74334b94796d430556da4b6cae52c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"allfile.me","fqdn":"allfile.me","domain":"allfile.me","tld":"me"},"ip":{"addr":"159.223.128.14","port":0,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-06T16:24:32Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"allfile.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"allfile.me","ip":{"addr":"159.223.128.14","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"domain_registered":"2025-09-11","domain_rank":0,"first_seen":"2025-09-13T13:32:04.85587Z","last_seen":"2026-03-01T15:54:00.229722Z","alert_count":2,"request_count":2,"received_data":8868,"sent_data":906,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"allfile.me/","fqdn":"allfile.me","domain":"allfile.me","tld":"me"},"ip":{"addr":"159.223.128.14","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0051d371ae60c31c024fbcfd7d046934","sha1":"5df4cd151ac030fd8baf2d2fe07f4265273dbb94","sha256":"ee8d7877f5a53f43682e9dfa2605c86eaca5d65671904fbc5e2f7eda81dd16b1","sha512":"672b4c643580a78e29ce3a78b06c517a4c65d86a9cbe024338f250dea0fce03a80f87bdc1f64da5150c69a507dfac5c9de99555845081cd315d40bc764463e90","ssdeep":"","tlshash":"63e0e5a564f7c4f1019b713e2b8adc0a613da8a7904c1206b54d0d4abfd116c1bbab22","size":424,"data":"","first_seen":"2025-11-20T02:47:51.915768Z","last_seen":"2026-03-20T13:43:41.179391Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allfile.me/","fqdn":"allfile.me","domain":"allfile.me","tld":"me"},"ip":{"addr":"159.223.128.14","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"a432b1bdcf0a74078eb802fce66b415a","sha1":"24b600c6a85be5b4550c9b713132de6586df3e97","sha256":"f42e849f989cc7a6a72f437c561ac72604669949653ae42abada842aacec703a","sha512":"0e57e2f111018f52bee32a6d38c5cbe8bbbcfaf1a2323c0bc1f4bb3fdd98d66ba23bee6f46c5f16bf9633e55f7fab2914ac8c6c38d7131b12fd87d940ade8860","ssdeep":"","tlshash":"5de020fc7cd79864227be05e6aebc50071748907204c5504b8ad0444ffd5468a6b2b48","size":361,"data":"","first_seen":"2025-09-13T13:32:09.156172Z","last_seen":"2026-04-01T22:08:13.992493Z","times_seen":76,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"allfile.me/","fqdn":"allfile.me","domain":"allfile.me","tld":"me"},"ip":{"addr":"159.223.128.14","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-02T16:24:09.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allfile.me","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 10 Jan 2026 02:38:58 GMT","end":"Fri, 10 Apr 2026 02:38:57 GMT"},"fingerprint":{"sha1":"B4:5A:97:1A:CA:8A:A0:EF:AF:15:79:EA:01:2E:8E:61:0B:B0:D1:87","sha256":"1F:7A:24:DE:FA:26:DA:0D:C3:E0:04:D4:DB:B4:12:C7:D2:76:E1:88:27:7F:95:3C:BA:A8:3D:0C:20:FB:78:C9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: allfile.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:24:10 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":959,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"a7275d21382fe8c9d3d93daf2afd6f33","sha1":"6946691133e497c9d94a05798bd4fd1ef2d92b84","sha256":"fadf6eae169224f56a93536e415f7b37ab38389598a19f7b5d022a6859967bb9","sha512":"bf8442d6a91fb0600a516f47e05105a6fa4309b353b619db1d8f7140563aa481d86032eab75e51c318ffa04c5d252f2feed5c4ad85b2edaa370992b0e0c18c0f","ssdeep":"","tlshash":"9b115bb938a1cc641177b26d6693e909d57e585340481306b4cc4c077ff20a85be7f55","first_seen":"2025-11-20T02:47:51.914859Z","last_seen":"2026-03-20T13:43:41.177772Z","times_seen":8,"resource_available":true,"data":null}},"time_used":546,"timings":{"blocked":223,"dns":15,"connect":99,"send":0,"wait":100,"receive":0,"ssl":107},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"allfile.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"allfile.me/favicon.ico","fqdn":"allfile.me","domain":"allfile.me","tld":"me"},"ip":{"addr":"159.223.128.14","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://allfile.me/","date":"2026-03-02T16:24:10.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allfile.me","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 10 Jan 2026 02:38:58 GMT","end":"Fri, 10 Apr 2026 02:38:57 GMT"},"fingerprint":{"sha1":"B4:5A:97:1A:CA:8A:A0:EF:AF:15:79:EA:01:2E:8E:61:0B:B0:D1:87","sha256":"1F:7A:24:DE:FA:26:DA:0D:C3:E0:04:D4:DB:B4:12:C7:D2:76:E1:88:27:7F:95:3C:BA:A8:3D:0C:20:FB:78:C9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: allfile.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://allfile.me/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Mon, 02 Mar 2026 16:24:10 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 7454\r\nLast-Modified: Fri, 12 Sep 2025 06:04:31 GMT\r\nConnection: keep-alive\r\nETag: \"68c3b7ef-1d1e\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7454,"size_decoded":0,"mime_type":"image/x-icon","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x360, components 1","md5":"ebf70bea6fbbfd1f340fcd0d58ad3632","sha1":"48a03e350b837b9dbf58cf9799bb40a8e99b629e","sha256":"9808d4f97704f5109583b4f2b9e67d4784c2f46bdd2f900238d5f91d0a7363df","sha512":"91d0d46a3c0ffcf7573ef96b51a65009823077dbfd444e455ea9c002621b485dc58eed1b0c52f5a60761a63f21e814851c1b9cb205d8ba736e5c9f5403564b87","ssdeep":"96:FregAB3B/ctLguHMTKl88wLvXtEW0W4skDUsSQwWhgjmRbtQXjOElYk2XCTcQnWT:FreWFcKlzwLVNsSdjnYkAmvxT1BhU","tlshash":"3cf16c034a819a3063b245ad961da8bf73d8fd31ee1c542be8c86fb5f0451879f562b0","first_seen":"2025-09-13T13:32:09.133496Z","last_seen":"2026-04-01T22:08:13.933038Z","times_seen":71,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-02","alert":"Sinkholed","trigger":"allfile.me","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}