{"report_id":"dea8b6a7-0d85-4bc3-b67b-e9f21f2fe6cc","version":6,"status":"done","tags":[],"date":"2026-06-01T01:03:04Z","url":{"schema":"https","addr":"verificacion.cc/","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":0,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"final":{"url":{"schema":"https","addr":"verificacion.cc/","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"title":"Verificacion.cc - Verificación de Identidad KYC \u0026 AML","dom":{"size":26611,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (14966)","md5":"ecc1e0b717b9eacf28bc048fd99882c5","sha1":"bc4573e96648cde80b0936a67ce769718322299f","sha256":"eb93a6748915cf33c8c9728e9414598eeddce7b621c47ee531ea7039a1859b87","sha512":"e034b3f2bcc16e604ab66038e2fa9968469abcebf88304f73f65f67632848808e425df7e7ed89d06eebf315ea4d03f329c53158bcb2615654818f3d9ab71c39d","ssdeep":"384:mHG1ieEC2NO8U5Q6nBOmEAUU/cxksc64Jysq7vGwqwWC0vG:mHG1ier2TsnB7cxksc64Jysq7vG9wWdO","tlshash":"8dc2c510754c123c7d2f9b58eac0b33da035b142ffa64425b25d049ad7c3fe969ebaa4","dom_hash":"domhash32197f547bd6dd16dcceea43fd59eb43","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"verificacion.cc/","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":0,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-06T01:03:04Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"verificacion.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"verificacion.cc","ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"domain_registered":"2024-08-05","domain_rank":3846782,"first_seen":"2026-06-01T00:30:57.117015Z","last_seen":"2026-06-01T00:30:57.117015Z","alert_count":7,"request_count":7,"received_data":1917986,"sent_data":4505,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"verificacion.cc/assets/index-DlQ_r6L-.js","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"61f24fc6ecc622befb90b0153c29009f","sha1":"d25b4dad5fce50b92a24820e06799f3bd246e534","sha256":"7d9702f8fe6e654e0ea36d02871967c60f485cf754a36ccde0cec41abea64f6c","sha512":"2aa00405a6477a8140dfa4056a39bba5cca0d815d7116e66fef0156843c441bb8a04d553533f66663b764688bbdc9fe253ee42fd02d01cc1aa466c42b8eb59c6","ssdeep":"6144:e4IRIsJqIMeLYCq56IeiZF6sNckziNn80Q1Rlk4Qj+OJ:pIa56IFZF6sNkn1Qxk4K","tlshash":"7d646dd8309ab175abb342a2507f410b73392912780d8460f12cedae77b5645a1bbffd","size":314917,"data":"","first_seen":"2026-06-01T00:30:58.9435Z","last_seen":"2026-06-01T01:03:05.790385Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"verificacion.cc/~flock.js","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ed557a78d5301fbb961abfe911a42b62","sha1":"d11a2a4e9fee28c4b1abc38cd8136bffec7e325b","sha256":"a86e084b4f82709814be6c15fd6305daa783fda87ad95402da9a4d3a1dd6d748","sha512":"18dd1525e2b4d89e3c46d92367fca020cf99fb07856acfd96a25dc7410611eea83b438c91691683983495945eb04a9427bc63e2a383cbe93449f4df0eb1ddb51","ssdeep":"384:FtUCBXTpeaFEo5TTThri1t/mCsOCXiTNZruJ4vKFlcEhRCDxOcX/YM2Vybyq/kmt:n7XTpeauI/Thri1CKWM4ldRzurwkTO0D","tlshash":"cea2b6d61007243d57ead1a13929f7d63177ea98a0caec8a7de91f84d414c83f3f294a","size":21296,"data":"","first_seen":"2025-07-30T15:25:28.733337Z","last_seen":"2026-06-07T01:46:18.487053Z","times_seen":10099,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"verificacion.cc/","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-01T01:02:42.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verificacion.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 May 2026 10:10:18 GMT","end":"Sat, 01 Aug 2026 11:10:11 GMT"},"fingerprint":{"sha1":"12:01:A5:AB:01:80:6A:10:7E:88:F4:67:2B:2F:C6:44:64:98:30:17","sha256":"26:45:34:B2:08:35:B3:FA:E6:03:9D:C2:56:97:B8:CB:00:99:E1:DE:E6:DE:D8:7F:95:F5:3A:A3:97:16:42:12"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: verificacion.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 01:02:42 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, must-revalidate, max-age=0\r\nset-cookie: __cf_bm=TB6Af3eOSPpjrwMcLFqrnbAgTLNjspulo9hqINrSiOk-1780275762.7161338-1.0.1.1-wIwac048xisL0iBYtwwkSA2uqIoUC2Yq0_IUeT.f.2ITJdM8.pbPHPjgTjOoTzJixr0gOwZ7YhgzItA4Pc5m0EKpXIoOzg0WeA.qcAdjWNM6rON8yQ7GiLwyWIzm_QbE; HttpOnly; SameSite=None; Secure; Path=/; Domain=verificacion.cc; Expires=Mon, 01 Jun 2026 01:32:42 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a04a4b5cfa515a0f-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":1851,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (323)","md5":"e3e50418f822aa23acdbac3b7e962a93","sha1":"ee07376a3748706b987895e98db8c57313e5b133","sha256":"e1c5bd4cb8d0c0bfdccbf408ad9ad6476b814f730c2f0cb9698dfce7fe9b6245","sha512":"934a0e001dfdb722a1f3de5d10889b8d0bb08c1b8ce49ce30d66907b6491482f0424517e5edea74cba2de40506f3946595e06a25e8c1fa72d46015ff9f553a83","ssdeep":"","tlshash":"b831ab934fe588482135c234eed0f04b8aa2924be765e88176dd51ee0fc1bc0cbd71b1","first_seen":"2026-06-01T00:30:58.956927Z","last_seen":"2026-06-01T01:03:05.788618Z","times_seen":2,"resource_available":true,"data":null}},"time_used":347,"timings":{"blocked":39,"dns":1,"connect":12,"send":0,"wait":265,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"verificacion.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"verificacion.cc/assets/index-DlQ_r6L-.js","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://verificacion.cc/","date":"2026-06-01T01:02:43.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verificacion.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 May 2026 10:10:18 GMT","end":"Sat, 01 Aug 2026 11:10:11 GMT"},"fingerprint":{"sha1":"12:01:A5:AB:01:80:6A:10:7E:88:F4:67:2B:2F:C6:44:64:98:30:17","sha256":"26:45:34:B2:08:35:B3:FA:E6:03:9D:C2:56:97:B8:CB:00:99:E1:DE:E6:DE:D8:7F:95:F5:3A:A3:97:16:42:12"}}},"request":{"raw":"GET /assets/index-DlQ_r6L-.js HTTP/1.1\r\nHost: verificacion.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verificacion.cc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __cf_bm=TB6Af3eOSPpjrwMcLFqrnbAgTLNjspulo9hqINrSiOk-1780275762.7161338-1.0.1.1-wIwac048xisL0iBYtwwkSA2uqIoUC2Yq0_IUeT.f.2ITJdM8.pbPHPjgTjOoTzJixr0gOwZ7YhgzItA4Pc5m0EKpXIoOzg0WeA.qcAdjWNM6rON8yQ7GiLwyWIzm_QbE\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 01:02:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\netag: W/\"61f24fc6ecc622befb90b0153c29009f\"\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a04a4b5f8d685a0f-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":314917,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (37534)","md5":"61f24fc6ecc622befb90b0153c29009f","sha1":"d25b4dad5fce50b92a24820e06799f3bd246e534","sha256":"7d9702f8fe6e654e0ea36d02871967c60f485cf754a36ccde0cec41abea64f6c","sha512":"2aa00405a6477a8140dfa4056a39bba5cca0d815d7116e66fef0156843c441bb8a04d553533f66663b764688bbdc9fe253ee42fd02d01cc1aa466c42b8eb59c6","ssdeep":"6144:e4IRIsJqIMeLYCq56IeiZF6sNckziNn80Q1Rlk4Qj+OJ:pIa56IFZF6sNkn1Qxk4K","tlshash":"7d646dd8309ab175abb342a2507f410b73392912780d8460f12cedae77b5645a1bbffd","first_seen":"2026-06-01T00:30:58.9435Z","last_seen":"2026-06-01T01:03:05.790385Z","times_seen":2,"resource_available":true,"data":null}},"time_used":86,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":86,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"verificacion.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"verificacion.cc/assets/index-C-Aop6L5.css","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://verificacion.cc/","date":"2026-06-01T01:02:43.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verificacion.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 May 2026 10:10:18 GMT","end":"Sat, 01 Aug 2026 11:10:11 GMT"},"fingerprint":{"sha1":"12:01:A5:AB:01:80:6A:10:7E:88:F4:67:2B:2F:C6:44:64:98:30:17","sha256":"26:45:34:B2:08:35:B3:FA:E6:03:9D:C2:56:97:B8:CB:00:99:E1:DE:E6:DE:D8:7F:95:F5:3A:A3:97:16:42:12"}}},"request":{"raw":"GET /assets/index-C-Aop6L5.css HTTP/1.1\r\nHost: verificacion.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verificacion.cc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __cf_bm=TB6Af3eOSPpjrwMcLFqrnbAgTLNjspulo9hqINrSiOk-1780275762.7161338-1.0.1.1-wIwac048xisL0iBYtwwkSA2uqIoUC2Yq0_IUeT.f.2ITJdM8.pbPHPjgTjOoTzJixr0gOwZ7YhgzItA4Pc5m0EKpXIoOzg0WeA.qcAdjWNM6rON8yQ7GiLwyWIzm_QbE\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 01:02:43 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncache-control: public, max-age=31536000, immutable\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\netag: W/\"7fadfa8064b11abb574dc22645b550bc\"\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a04a4b5f8d695a0f-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":59414,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (59413)","md5":"7fadfa8064b11abb574dc22645b550bc","sha1":"f0904e38f46e4a015fc745b49f0babd2a5349fc1","sha256":"766e04bb9e8b16bcd78808f69862d526d900b30900b035a0c71bd0a0b5962ebc","sha512":"065f87dbfa3afc198966f6ba6033f1b91ad72d18439912f1286328156c3daf3a3ab90431ead56f5af95f28020f099994324dc9d9db5370c0e4bbe281c88208f3","ssdeep":"768:hhVo5YfkoNfUhZNYretaGPCL4U378VQZkt5FN/GTo7ynW:hhVsYfkoBUlaGPCr378VQZkt5FNCo7b","tlshash":"5443a519b91da17e3c2790e883ccb9ec510af0c0dd3b06b5be9a81312ad37f659b7558","first_seen":"2026-06-01T00:30:58.949431Z","last_seen":"2026-06-01T01:03:05.792263Z","times_seen":2,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":75,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"verificacion.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"verificacion.cc/~flock.js","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://verificacion.cc/","date":"2026-06-01T01:02:43.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verificacion.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 May 2026 10:10:18 GMT","end":"Sat, 01 Aug 2026 11:10:11 GMT"},"fingerprint":{"sha1":"12:01:A5:AB:01:80:6A:10:7E:88:F4:67:2B:2F:C6:44:64:98:30:17","sha256":"26:45:34:B2:08:35:B3:FA:E6:03:9D:C2:56:97:B8:CB:00:99:E1:DE:E6:DE:D8:7F:95:F5:3A:A3:97:16:42:12"}}},"request":{"raw":"GET /~flock.js HTTP/1.1\r\nHost: verificacion.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verificacion.cc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __cf_bm=TB6Af3eOSPpjrwMcLFqrnbAgTLNjspulo9hqINrSiOk-1780275762.7161338-1.0.1.1-wIwac048xisL0iBYtwwkSA2uqIoUC2Yq0_IUeT.f.2ITJdM8.pbPHPjgTjOoTzJixr0gOwZ7YhgzItA4Pc5m0EKpXIoOzg0WeA.qcAdjWNM6rON8yQ7GiLwyWIzm_QbE\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 01:02:43 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: max-age=1500\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a04a4b5f9d6c5a0f-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21296,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (21296), with no line terminators","md5":"ed557a78d5301fbb961abfe911a42b62","sha1":"d11a2a4e9fee28c4b1abc38cd8136bffec7e325b","sha256":"a86e084b4f82709814be6c15fd6305daa783fda87ad95402da9a4d3a1dd6d748","sha512":"18dd1525e2b4d89e3c46d92367fca020cf99fb07856acfd96a25dc7410611eea83b438c91691683983495945eb04a9427bc63e2a383cbe93449f4df0eb1ddb51","ssdeep":"384:FtUCBXTpeaFEo5TTThri1t/mCsOCXiTNZruJ4vKFlcEhRCDxOcX/YM2Vybyq/kmt:n7XTpeauI/Thri1CKWM4ldRzurwkTO0D","tlshash":"cea2b6d61007243d57ead1a13929f7d63177ea98a0caec8a7de91f84d414c83f3f294a","first_seen":"2025-07-30T15:25:28.733337Z","last_seen":"2026-06-07T01:46:18.487053Z","times_seen":10099,"resource_available":true,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"verificacion.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"verificacion.cc/assets/logo-Dzocc9H1.png","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://verificacion.cc/","date":"2026-06-01T01:02:43.339Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verificacion.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 May 2026 10:10:18 GMT","end":"Sat, 01 Aug 2026 11:10:11 GMT"},"fingerprint":{"sha1":"12:01:A5:AB:01:80:6A:10:7E:88:F4:67:2B:2F:C6:44:64:98:30:17","sha256":"26:45:34:B2:08:35:B3:FA:E6:03:9D:C2:56:97:B8:CB:00:99:E1:DE:E6:DE:D8:7F:95:F5:3A:A3:97:16:42:12"}}},"request":{"raw":"GET /assets/logo-Dzocc9H1.png HTTP/1.1\r\nHost: verificacion.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verificacion.cc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __cf_bm=TB6Af3eOSPpjrwMcLFqrnbAgTLNjspulo9hqINrSiOk-1780275762.7161338-1.0.1.1-wIwac048xisL0iBYtwwkSA2uqIoUC2Yq0_IUeT.f.2ITJdM8.pbPHPjgTjOoTzJixr0gOwZ7YhgzItA4Pc5m0EKpXIoOzg0WeA.qcAdjWNM6rON8yQ7GiLwyWIzm_QbE\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 01:02:43 GMT\r\ncontent-type: image/png\r\ncontent-length: 1509796\r\ncache-control: public, max-age=31536000, immutable\r\netag: \"c54ea03999931cc57319f40d219f699f\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: a04a4b60eee75a0f-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1509796,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"a341295ed107f3356157e3b9b8a52470","sha1":"da4f9d9d670ac9afdee3698d6482da39a35d73d2","sha256":"2162f30e40f80001fb87d9600817572089e4552a16e8b46a244be60d995d68b0","sha512":"4e84cd91663133b167433214ff1235cdeaa4f5d74a3f85e42d6295519fa36ec237d6745d1f5135641849da86a74697b0677ebd2e11cfeb4a94db89f35afd0d5e","ssdeep":"24576:8UvLu9sgOW2M9nBXT5souAYCQ38DjZgrV2rvBsnn8PblS:fv69sgvdBXT0iDj+wvm8PY","tlshash":"072533fd64edeca2eb4230ba0deb297e162f31c865c405157e70892947a3253d797c3a","first_seen":"2026-06-01T00:30:58.952181Z","last_seen":"2026-06-01T01:03:05.795075Z","times_seen":2,"resource_available":false,"data":null}},"time_used":179,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":113,"receive":66,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"verificacion.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"verificacion.cc/favicon.ico","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://verificacion.cc/","date":"2026-06-01T01:02:43.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verificacion.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 May 2026 10:10:18 GMT","end":"Sat, 01 Aug 2026 11:10:11 GMT"},"fingerprint":{"sha1":"12:01:A5:AB:01:80:6A:10:7E:88:F4:67:2B:2F:C6:44:64:98:30:17","sha256":"26:45:34:B2:08:35:B3:FA:E6:03:9D:C2:56:97:B8:CB:00:99:E1:DE:E6:DE:D8:7F:95:F5:3A:A3:97:16:42:12"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: verificacion.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verificacion.cc/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __cf_bm=TB6Af3eOSPpjrwMcLFqrnbAgTLNjspulo9hqINrSiOk-1780275762.7161338-1.0.1.1-wIwac048xisL0iBYtwwkSA2uqIoUC2Yq0_IUeT.f.2ITJdM8.pbPHPjgTjOoTzJixr0gOwZ7YhgzItA4Pc5m0EKpXIoOzg0WeA.qcAdjWNM6rON8yQ7GiLwyWIzm_QbE\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 01:02:43 GMT\r\ncontent-type: image/x-icon\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\netag: W/\"566e64364d6957715dc11845f4800700\"\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a04a4b6208285a0f-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7645,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 73 x 74, 8-bit/color RGBA, non-interlaced","md5":"566e64364d6957715dc11845f4800700","sha1":"db98fcaaf06be921ed2b8f25ac80f0add9f4a787","sha256":"29a40d56580a5366083461297773dbf146ec043d1156f432f5472cb3487f506b","sha512":"d93824f3088a249625d0bbb64a99d1e320aa4e375ceea0205c961de73d04c635c97a7788865260e3ca13aba38a8dd95435f2183869f17a41afd4ee7d9364bc74","ssdeep":"192:NUNBikqtkfu6b+DkwFy3/0sRmz4fL5AHtHyhaFg63/:uNkkdfakwFy3/Xk6lepy6P","tlshash":"40f19e9f7f833802d90c95bf5492c75189c9d5551558c23fb0fd6132acaf5d3629f085","first_seen":"2025-05-20T14:46:56.545075Z","last_seen":"2026-06-06T04:20:50.516353Z","times_seen":1687,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":23,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"verificacion.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"verificacion.cc/~api/analytics","fqdn":"verificacion.cc","domain":"verificacion.cc","tld":"cc"},"ip":{"addr":"185.158.133.1","port":443,"asn":13213,"as":"UK-2 Limited","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://verificacion.cc/","date":"2026-06-01T01:02:43.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"verificacion.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 03 May 2026 10:10:18 GMT","end":"Sat, 01 Aug 2026 11:10:11 GMT"},"fingerprint":{"sha1":"12:01:A5:AB:01:80:6A:10:7E:88:F4:67:2B:2F:C6:44:64:98:30:17","sha256":"26:45:34:B2:08:35:B3:FA:E6:03:9D:C2:56:97:B8:CB:00:99:E1:DE:E6:DE:D8:7F:95:F5:3A:A3:97:16:42:12"}}},"request":{"raw":"POST /~api/analytics HTTP/1.1\r\nHost: verificacion.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://verificacion.cc/\r\nContent-Type: application/json\r\nContent-Length: 336\r\nOrigin: https://verificacion.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __cf_bm=TB6Af3eOSPpjrwMcLFqrnbAgTLNjspulo9hqINrSiOk-1780275762.7161338-1.0.1.1-wIwac048xisL0iBYtwwkSA2uqIoUC2Yq0_IUeT.f.2ITJdM8.pbPHPjgTjOoTzJixr0gOwZ7YhgzItA4Pc5m0EKpXIoOzg0WeA.qcAdjWNM6rON8yQ7GiLwyWIzm_QbE; session-id=67f6e881-77ae-494e-a647-1eebb3627985\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":336,"data":"{\"timestamp\":\"2026-06-01T01:02:43.603Z\",\"action\":\"page_hit\",\"version\":\"1\",\"session_id\":\"67f6e881-77ae-494e-a647-1eebb3627985\",\"payload\":\"{\\\"user-agent\\\":\\\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\\\",\\\"locale\\\":\\\"en-US\\\",\\\"referrer\\\":\\\"\\\",\\\"pathname\\\":\\\"/\\\",\\\"href\\\":\\\"https://verificacion.cc/\\\"}\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 01:02:44 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-length: 4\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: a04a4b6288c85a0f-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"f92965e2c8a7afb3c1b9a5c09a263636","sha1":"e9b450d14bc2363d292c84f17cfad5cfbd58a458","sha256":"11a6767d5674c7e45f7e00dc525762275b3a48491ad6045427d2609cc496c516","sha512":"25775ba3c567970fc3df3f8107f2a78a67c5619d54bfb37704423acceec253316949eee77b81100a01b91c742e475b4f6157dd2427a9f9fafd87a4078f2d65df","ssdeep":"","tlshash":"54300000000000000000c00c00000000000000000c0000000000000000000000000000","first_seen":"2023-04-09T18:20:08Z","last_seen":"2026-06-07T01:46:18.471477Z","times_seen":10190,"resource_available":true,"data":null}},"time_used":1089,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1089,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"verificacion.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}