{"report_id":"e54a8e4a-933c-42d0-adb2-922698c8450e","version":6,"status":"done","tags":[],"date":"2025-12-31T11:47:25Z","url":{"schema":"http","addr":"camctm.com","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":0,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"camctm.com/","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"title":"tp官方下载安卓最新版本2025(tpwallet)官网-tp官方正版下载\\tp官方下载安卓最新版本\\tp官方网站下载app|你的通用数字钱包","dom":{"size":137,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"5069ae5ba7662051a8d27184c55dba54","sha1":"df42dfb9decb3b58c3cfaaa329ae52454abb9370","sha256":"b397fa9962efd76e5ee42ce027eab7e86742e163f1aa64dec3cf255fde584e2b","sha512":"82f93a9c14934897bc5dbab690b84d4c8962ebfd652a58cbf362e5aa980f0d1fe8b29182739aaaa5d5cb451298395d068bc6df34cf84a57701a23a3f800fd909","ssdeep":"","tlshash":"99c02b0d3463614cdd03116017c33240c088c33f685ac01008018483b0cf2aac4c23a5","dom_hash":"domhash18da208b3b39949e9ba09528a720f5c0","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"camctm.com","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":0,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-04T11:47:25Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"camctm.com","ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"domain_registered":"2024-07-02","domain_rank":0,"first_seen":"2025-01-04T06:39:43.41822Z","last_seen":"2025-05-30T14:02:46.036864Z","alert_count":140,"request_count":35,"received_data":1027988,"sent_data":18724,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Lightbox","description":"Lightbox is small javascript library used to overlay images on top of the current page.","website":"https://lokeshdhakar.com/projects/lightbox2/","common_platform_enumeration":"cpe:2.3:a:lightbox_photo_gallery_project:lightbox_photo_gallery:*:*:*:*:*:*:*:*","icon":"Lightbox.png","categories":["JavaScript libraries"]},{"name":"Tiny Slider","description":"Tiny Slider is a vanilla javascript slider for all purposes.","website":"https://github.com/ganlanyuan/tiny-slider","common_platform_enumeration":"","icon":"default.svg","categories":["JavaScript libraries"]}]},{"fqdn":"oudngmslhifnsf.gdmgcyy.com","ip":{"addr":"206.119.188.34","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"domain_registered":"2020-05-10","domain_rank":0,"first_seen":"2024-02-01T09:47:13Z","last_seen":"2025-12-30T12:02:54.31966Z","alert_count":0,"request_count":1,"received_data":1837,"sent_data":415,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty:1.21.4.3","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-28T22:14:05.525046Z","alert_count":0,"request_count":5,"received_data":246830,"sent_data":2750,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-28T22:17:10.032556Z","alert_count":0,"request_count":1,"received_data":23429,"sent_data":489,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"oudngmslhifnsf.gdmgcyy.com/tj.js","fqdn":"oudngmslhifnsf.gdmgcyy.com","domain":"gdmgcyy.com","tld":"com"},"ip":{"addr":"206.119.188.34","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"75744fb2ef623aad85ddbffa4cf8d621","sha1":"f4b47226e8c7acbb1aed3b53e1e41ab5edd01973","sha256":"3aa8a8bf8c2853aa2eb294e9303ae7aff22aa1d076dd91e1ddbc13b888fa91a8","sha512":"c51b00c3235de1998281f2bc4e9df5883254da82233265b6ed7dd497e1ac776feb5c0172656e4447a8fe67ec675e226ade7b159422af333fdfc12e8cc1825b54","ssdeep":"","tlshash":"77316578374b14a23337f612144b541c62b5d3854b6f08e0e3a576997de6948d04bf7e","size":1546,"data":"","first_seen":"2025-11-25T12:21:30.366924Z","last_seen":"2026-04-03T18:30:23.366728Z","times_seen":219,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"40f33486c7e82a3599949a8d82c3b3cd","sha1":"db1d5cd111c40cef169f44f9c9cd500549fe362c","sha256":"9c6798c006df11e477245aee0c73b729977f1e5048a07749b8551915cd563dd3","sha512":"dd252826130921e83ebc1257a15395cf2181c5f81e52424af0b22314430a5969e1048a3fc842889144daca85374ca9976c331ff03cee1a0dc938d61726232c0e","ssdeep":"","tlshash":"613112f17096902e8163566138556f9c793c6150ef168c7244ecb9b4e885ec67413f8c","size":1507,"data":"","first_seen":"2025-11-25T12:21:30.433689Z","last_seen":"2026-04-03T18:30:23.412766Z","times_seen":219,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/wow.min.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"164b265e6089f412b7927848018ae6a1","sha1":"1717e6b487126c5c3e992d47dba4c6c10f4529bc","sha256":"81c4cb0bc57b5cce1816bd704f7a2b12ec2b143c6a067402644d4a139b273350","sha512":"956bbda2e4f3069c72d8dbc003d04d02a6026428beb9b9c8b0b78eb1dcce9b73b6f619b5558a4eec9c6d681eaec6ebb45e4ecd504a77ef9ad69b9b95373a3270","ssdeep":"192:7mEE6yAmu6qUxbU5C9nrr1GkEPIAeJ3KO4poIR:iEE/Amu6qUxVBxGkAI///IR","tlshash":"58f1bba5374a70718a9b6176c92f0202a532256e74d4c8ec747cddd4aeb4a29336bf3c","size":8157,"data":"","first_seen":"2023-03-07T01:42:37Z","last_seen":"2026-04-04T02:13:16.436562Z","times_seen":2302,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/main.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b1672937fc40ef9785476386be80bda2","sha1":"b3c3b5ca7c2a12565d7d202b7ea0665183398801","sha256":"5c0827044b000fded666695053c8b8a4aff4b9e6b5fc23e8f765078931e28f79","sha512":"9f055f74cadbf1249942742d0e3211e75aea724e2ef1b33aa235949042c79f60eedfb84d9cb11b2a95b558204570463368f2bcb80e94d2ac9398dc1c44abd5b4","ssdeep":"","tlshash":"a971f22d52b96031017fa06ee79f67c53975004b5142d4123c6d9f992fa0fb115f4bca","size":3510,"data":"","first_seen":"2025-06-10T17:13:57.765119Z","last_seen":"2026-04-04T01:35:44.560711Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"b33ba254223e7602c6c8ef57b452d423","sha1":"777d8c02b0237b8f9517fa24716d94ea44d7c97b","sha256":"42b8a7f610bb485523265d0c18c0e03b5dd4ae6e1b01454da11687beaa138ecc","sha512":"dc46b7e4b01dacd334294fc6706a9e4aff25e62b183ed1809b6c0a158379b0bb89f200d1446e1d2d9ada24f161797042fe7d808c8b72ac4183ffd5c464c390a6","ssdeep":"","tlshash":"83114c8701716024751b600dad8b960606a58133fc4abd857bfe52594f8fe1f65b33da","size":974,"data":"","first_seen":"2025-06-10T17:13:57.788201Z","last_seen":"2026-04-04T01:35:44.589251Z","times_seen":34,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/tj.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5d3d830acdaadeaff7de7ce0822c3d11","sha1":"1a09f51cb91558fde445ed7ed306693b30e0856e","sha256":"0c8716986951d50457d9d3c517f90b78ee0c0cbc43cb5ca3ed011d46ee79ed80","sha512":"60463dcf797c663d452aebe90d84eee917719b1265949a79945e0f3a35c18bdefa73e9a11ccb13f38f64a9f42521b76ce4b2189bb065b14a1780479d153b1d77","ssdeep":"","tlshash":"39e0c0e0359274ca430ab8d0043bd00ae2fb56497caf51f4f908710e795578c529f659","size":362,"data":"","first_seen":"2024-09-04T08:43:24Z","last_seen":"2026-04-03T18:30:23.331777Z","times_seen":389,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/count-up.min.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7fb85d861a9d259c6012acb578221e09","sha1":"ccdd8aa6a7f57dd66abd10f19f2dbc55e02c9e7b","sha256":"2d2d03dfd4c745c512317d01f462f762437cd0abd3476400e2723164e731d2b7","sha512":"3722dd181c62fd8c201a88f28c5541d2fbef990ed2e66c632d7f0af82428987cc17356e9eb17ff19e0e948ec9336c9d1adafcc6b18778a7a5ade0af8de917e2f","ssdeep":"","tlshash":"cc3111657533dca90e2201d9b10b19509662963e00eb485cbff2c8c46de3c0d9d0ab7d","size":1621,"data":"","first_seen":"2023-03-07T15:01:49Z","last_seen":"2026-04-04T01:35:44.583034Z","times_seen":88,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/bootstrap.min.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2aa3c63a2d8b20e00b03d74e1fdcdb61","sha1":"be3fe98a267e61f474a7d265697633d3a056409e","sha256":"234637632bb4c986788d73ea7a97084ef9bcb55a52745b3cb8e9f6cbeea290ca","sha512":"8b4cb9966178ce39c9b717f65c945469687e5736a3b158b82e511628b3c57838f7e88aee4ac7bbaf7853484818b918d96659d7c98be0aa90f45e75320469bc74","ssdeep":"768:wVgB79Mr3uDTVayu8Of8rm7MT5ZFcHUbw8gpQCYewiTlAx17j0FhlG8KktWyh6O:wQYY28meG+zgA8OO","tlshash":"0b53924ab254787206cf7475817f060fb33a6899a446813cb96ad8de1b7cc897173fb8","size":61772,"data":"","first_seen":"2023-03-08T08:18:24Z","last_seen":"2026-04-04T01:35:44.562435Z","times_seen":190,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/tiny-slider.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9a15fe924e0c32a7a3f442406147b981","sha1":"ded1e40389053f4df865d837a8b5942fbc06b216","sha256":"ad73299f4179f8228823e24f2b254b80694f7906d535cafb283da6e33dadd0d8","sha512":"6a90700e1106e1df2f3fd76c03d214e3e027d8a8bcf775989a7f324cc18da8c3e6569317e3b7a870f4dc06b985fe89381db9a7035a19e6ed70e196be453f1d3a","ssdeep":"768:VbsyNMH0JXmZ5lW2E9nUbTJuyynhdHbtv:R9NMH0Y5l+RUJuyQntv","tlshash":"f9e20ad97220713282d721ea12ef820a73365928dd038e849439fdd83dfd569626fd6e","size":31911,"data":"","first_seen":"2023-03-07T15:01:49Z","last_seen":"2026-04-04T01:35:44.581342Z","times_seen":224,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/glightbox.min.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f1c6320483ed2ea08bd134dd7677d395","sha1":"443be7989be8d06a2b89852561cf9d55147cb2bd","sha256":"f20640b91ad814f8e36fc22e49adec01e6e22b5797569c1e6ed21cf4733e4c7b","sha512":"837996951397652605234d2057bd1864286c95fc2a8478de86ee6ea8207f1d98d8bd9decc93441ad7693a159cdbf265bb395aea6d636db9e0ae3202e42efd318","ssdeep":"768:j6f+pzn1TR/ZIMUbAN6+VQny3UOPEIOf2IvIYf0X+F5GYxbnZzw+XeNgq91Nk/wp:HfN6s3UMEwa5GqbnZzw+XeNgG1Nk/w5D","tlshash":"7413f809b286747604db617aa03f970bb2b621092902d09cf47edcd66db8d9e3167ff1","size":44919,"data":"","first_seen":"2023-03-08T02:17:38Z","last_seen":"2026-04-04T01:35:44.583819Z","times_seen":203,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"deab99731237b52d1b60dd7d144a15c0","sha1":"1cd0ca53fbd8c8943a02250ab2e4e47a66e420da","sha256":"e1bfbe54fd1f16ed88120eae9549e8cf7d708eb595d8c787930215b22b4497c2","sha512":"74c463682de765e7ed115ad8a626e05ea8789078398e3a568decf38561451b33980fac4ba37c18b4189969ff51680cbe536cbcc99b7a1b3daa3b67ed11d28548","ssdeep":"","tlshash":"48b012422e0891406a0418840431f5cc30748829bd84d9124049411004616d80842d00","size":87,"data":"","first_seen":"2024-04-04T05:50:24Z","last_seen":"2026-04-03T18:30:23.411977Z","times_seen":730,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"0c62e4b2ef2dd122138f49484f5df37e","sha1":"ff69377d20545562b648b7607e40251bcb0a004f","sha256":"97e41672c8ac279bcf8d69500df45bf1b8650ecc272a99d9bcb34872c99edc56","sha512":"86c681a67693b3e00ff96b85ed22213d83750667670e248ae8e60a8e582e6c05bb650446a2feef2103d7c214ae2dcdaf5f6968fa0a100efa2996337571d24417","ssdeep":"","tlshash":"8ea00257ad09d5949a00acc84436f5cc6021994e7dd8dd6789b852155d626ed0852940","size":64,"data":"","first_seen":"2024-04-04T05:50:24Z","last_seen":"2026-04-03T18:30:23.413487Z","times_seen":729,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"camctm.com/tj.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.864Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /tj.js HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 362\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\netag: \"6953548e-16a\"\r\nexpires: Wed, 31 Dec 2025 23:47:02 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":362,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (361)","md5":"5d3d830acdaadeaff7de7ce0822c3d11","sha1":"1a09f51cb91558fde445ed7ed306693b30e0856e","sha256":"0c8716986951d50457d9d3c517f90b78ee0c0cbc43cb5ca3ed011d46ee79ed80","sha512":"60463dcf797c663d452aebe90d84eee917719b1265949a79945e0f3a35c18bdefa73e9a11ccb13f38f64a9f42521b76ce4b2189bb065b14a1780479d153b1d77","ssdeep":"","tlshash":"39e0c0e0359274ca430ab8d0043bd00ae2fb56497caf51f4f908710e795578c529f659","first_seen":"2024-09-04T08:43:24Z","last_seen":"2026-04-03T18:30:23.331777Z","times_seen":389,"resource_available":true,"data":null}},"time_used":303,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":303,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/images/thumbnail.jpg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.868Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /images/thumbnail.jpg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:26:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953547e-335a\"\r\nexpires: Fri, 30 Jan 2026 11:47:02 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13146,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x360, components 3","md5":"242054f72d395d0977a478cbf4f4c670","sha1":"068af113d954d5c9ed654614f3bdf4a880e8f72c","sha256":"b5d2cde64008ccff1240ca3c991fcf06a5510db9d59772cb63c86d9c39d26a97","sha512":"ca85ce09c59fb03c8961a3d4d5b3ac8ff2491e3646a23fff8e914c935dc119123297afbb4f00ead6eeb466a6108a6e05c0582a93770b3564c184209434ac7755","ssdeep":"384:Vs3Wd9gkhTGlFfRMaB/88A6GTR2CZNhPFkJuh:G3Wf1GltD88A66jZFH","tlshash":"f942bfa857cd1b41eeda573a9d9c3a202f269d01f7025d8bdcc15ab0718e23056dd3e8","first_seen":"2025-04-04T10:01:11.451144Z","last_seen":"2026-04-01T06:15:58.22657Z","times_seen":221,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oudngmslhifnsf.gdmgcyy.com/tj.js","fqdn":"oudngmslhifnsf.gdmgcyy.com","domain":"gdmgcyy.com","tld":"com"},"ip":{"addr":"206.119.188.34","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:03.372Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oudngmslhifnsf.gdmgcyy.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Dec 2025 06:39:18 GMT","end":"Wed, 11 Mar 2026 06:39:17 GMT"},"fingerprint":{"sha1":"84:4B:0B:7A:0A:D0:42:4C:42:71:F9:E1:85:CC:DD:07:F9:BA:C0:D7","sha256":"11:41:A5:14:00:68:D7:F8:23:DF:F1:C7:18:0C:48:6B:48:89:72:3F:4A:54:4B:2E:B2:5B:F9:3A:4E:E5:22:D4"}}},"request":{"raw":"GET /tj.js HTTP/1.1\r\nHost: oudngmslhifnsf.gdmgcyy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.21.4.3\r\nDate: Wed, 31 Dec 2025 11:47:04 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Tue, 25 Nov 2025 02:47:15 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"692518b3-60a\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty:1.21.4.3","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":1546,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1546), with no line terminators","md5":"75744fb2ef623aad85ddbffa4cf8d621","sha1":"f4b47226e8c7acbb1aed3b53e1e41ab5edd01973","sha256":"3aa8a8bf8c2853aa2eb294e9303ae7aff22aa1d076dd91e1ddbc13b888fa91a8","sha512":"c51b00c3235de1998281f2bc4e9df5883254da82233265b6ed7dd497e1ac776feb5c0172656e4447a8fe67ec675e226ade7b159422af333fdfc12e8cc1825b54","ssdeep":"","tlshash":"77316578374b14a23337f612144b541c62b5d3854b6f08e0e3a576997de6948d04bf7e","first_seen":"2025-11-25T12:21:30.366924Z","last_seen":"2026-04-03T18:30:23.366728Z","times_seen":219,"resource_available":true,"data":null}},"time_used":1872,"timings":{"blocked":807,"dns":40,"connect":254,"send":0,"wait":255,"receive":1,"ssl":512},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:04.534Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://camctm.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 30 Dec 2025 23:36:38 GMT\r\nexpires: Wed, 30 Dec 2026 23:36:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 43826\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-04T05:40:35.575378Z","times_seen":132888,"resource_available":false,"data":null}},"time_used":157,"timings":{"blocked":71,"dns":3,"connect":7,"send":0,"wait":9,"receive":10,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:04.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://camctm.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 30 Dec 2025 23:36:38 GMT\r\nexpires: Wed, 30 Dec 2026 23:36:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 43826\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-04T05:40:35.575378Z","times_seen":132888,"resource_available":false,"data":null}},"time_used":118,"timings":{"blocked":59,"dns":0,"connect":0,"send":0,"wait":15,"receive":8,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/testi2.jpg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/testi2.jpg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-26c4\"\r\nexpires: Fri, 30 Jan 2026 11:47:03 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9924,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 162x162, components 3","md5":"02f6571c5658fd4cacf9114971f79694","sha1":"5c5f6d223f46450495972d5e3ee80c6ae702647b","sha256":"e5260ac4bcb027ec63d91e043df063e4f26a8edaacfd727a17b31723cfce79df","sha512":"7456d0bd1b9a81404fac1dc0b5f7bf5764eb7922391b12052c00ef382f39d5fd064013b5587e13ab203f119eb6cf93829ab9d290d49a24fc9c7c0968163b3a6c","ssdeep":"192:u7kssNddbSvdgri0PPRuVpMwhLz4XiNLuHdFTyF/sRcM:TPNTevdgDPpOpDLqiJuHdFTyF/QcM","tlshash":"cb22bfd50a3a6441fafee53ea192d892dad09a3a5fdfbdaf45e009b4c30bb5203c0450","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.571957Z","times_seen":36,"resource_available":false,"data":null}},"time_used":447,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":447,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:04.539Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://camctm.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 30 Dec 2025 23:36:38 GMT\r\nexpires: Wed, 30 Dec 2026 23:36:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 43826\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-04T05:40:35.575378Z","times_seen":132888,"resource_available":false,"data":null}},"time_used":346,"timings":{"blocked":174,"dns":6,"connect":10,"send":0,"wait":8,"receive":3,"ssl":138},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/css/bootstrap.min.css","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.853Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/css/bootstrap.min.css HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-3220d\"\r\nexpires: Wed, 31 Dec 2025 23:47:02 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205325,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (562)","md5":"65d269c2b140aabe0b3394c688d1e62c","sha1":"f900de71b52fec337530088ca65cd4713197231c","sha256":"8c65e4ae4406f98ee03fa02cb65bc46f5a467524276657a8cf11ed876599c1de","sha512":"99e95f63148b29e11c9aa9f19360e91cfe62af866f01e8aecc6d81fa170ea03bb02fefdeb72e30a56023f45589dbd30c38a99cd17570e1cb1d32491ea35e27c7","ssdeep":"1536:wCnpb1FYhxIWqb7MpBhGUtF6WMQVQJCI8stszleSQmuw:w9hxCtszleSQmuw","tlshash":"ca14304aecf21959184b816c69ee6bb5b33c4083d31edd79bd8e3354cf492918d62f88","first_seen":"2023-04-11T12:14:16Z","last_seen":"2026-04-04T01:35:44.560173Z","times_seen":53,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/testi1.jpg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/testi1.jpg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-2910\"\r\nexpires: Fri, 30 Jan 2026 11:47:03 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10512,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 162x162, components 3","md5":"8150195592ebf23bdd65affced7b71c4","sha1":"c841445429ef98954b61e9e23d18ecd781579bbb","sha256":"519b285d9770fc1d2ae128c2b6e656758bd285ee30501d70bcaa1e2b343bed6e","sha512":"aa443aaae2674804ecb30294623c5a6b9d8a3e107e326a0ab453930348c43e42576a1d9b58707a48cbb8b9ba331e13382785f12cf587c2dfed4bdd7e3b55c829","ssdeep":"192:blLUYw7LNO+tIDKNMs/ihPz/Wl0/Xzuyy6OkcEwRclC/cwOwEVPd2pyPLve8OJTK:btU7O+L2sCPz+liqylRcvd/c5LVfP1eK","tlshash":"e222afaf1de4fcc28b5acd1a0c3cb6c1ad9287184540ef29637077848bc1658527777e","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.586414Z","times_seen":36,"resource_available":false,"data":null}},"time_used":447,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":447,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/count-up.min.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.892Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/js/count-up.min.js HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-655\"\r\nexpires: Wed, 31 Dec 2025 23:47:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1621,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1621), with no line terminators","md5":"7fb85d861a9d259c6012acb578221e09","sha1":"ccdd8aa6a7f57dd66abd10f19f2dbc55e02c9e7b","sha256":"2d2d03dfd4c745c512317d01f462f762437cd0abd3476400e2723164e731d2b7","sha512":"3722dd181c62fd8c201a88f28c5541d2fbef990ed2e66c632d7f0af82428987cc17356e9eb17ff19e0e948ec9336c9d1adafcc6b18778a7a5ade0af8de917e2f","ssdeep":"","tlshash":"cc3111657533dca90e2201d9b10b19509662963e00eb485cbff2c8c46de3c0d9d0ab7d","first_seen":"2023-03-07T15:01:49Z","last_seen":"2026-04-04T01:35:44.583034Z","times_seen":88,"resource_available":true,"data":null}},"time_used":440,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":440,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/favicon.ico","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:04.865Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:04 GMT\r\ncontent-type: text/html\r\ncontent-length: 138\r\netag: \"6953547a-8a\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-04-04T05:45:52.398444Z","times_seen":244049,"resource_available":true,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/bootstrap.min.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/js/bootstrap.min.js HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-f14c\"\r\nexpires: Wed, 31 Dec 2025 23:47:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":61772,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (61484)","md5":"2aa3c63a2d8b20e00b03d74e1fdcdb61","sha1":"be3fe98a267e61f474a7d265697633d3a056409e","sha256":"234637632bb4c986788d73ea7a97084ef9bcb55a52745b3cb8e9f6cbeea290ca","sha512":"8b4cb9966178ce39c9b717f65c945469687e5736a3b158b82e511628b3c57838f7e88aee4ac7bbaf7853484818b918d96659d7c98be0aa90f45e75320469bc74","ssdeep":"768:wVgB79Mr3uDTVayu8Of8rm7MT5ZFcHUbw8gpQCYewiTlAx17j0FhlG8KktWyh6O:wQYY28meG+zgA8OO","tlshash":"0b53924ab254787206cf7475817f060fb33a6899a446813cb96ad8de1b7cc897173fb8","first_seen":"2023-03-08T08:18:24Z","last_seen":"2026-04-04T01:35:44.562435Z","times_seen":190,"resource_available":true,"data":null}},"time_used":443,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":443,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/404.html","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:04.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /404.html HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:04 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 30 Dec 2025 04:26:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953547a-8a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":138,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-04-04T05:45:52.398444Z","times_seen":244049,"resource_available":true,"data":null}},"time_used":153,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":153,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/css/LineIcons.2.0.css","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.855Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/css/LineIcons.2.0.css HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-6e64\"\r\nexpires: Wed, 31 Dec 2025 23:47:02 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28260,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"9bdd836bfef4e60ac3b5c337ded27292","sha1":"6c8041b87228dac6ea6c5b7a54e506c894840a34","sha256":"56d09c4cd80f372c855706df481c12ff5d22e25cab78db087cc92b283f1d107b","sha512":"218bdc1700f2a14bebd69352c5e2f03c9066482680dfed4bcd358675d7a4f868603db7e88b12f5b6f0c552680def612097596d0f6d69a58fa21db1609634586d","ssdeep":"192:fq1XhYDGyqlxTBsdXK9EYEBPJljOET5TEVpfeAfbMJVxp5OyohTrfj4fGUxH7n/E:wlsU0jSET5TE/9/IlxH7nZUt","tlshash":"83c222e4d9ff0cd09b0dd0dd2247a620eb1cb2b5a8074c1dd7a2798e67e261464dabdc","first_seen":"2023-04-17T09:05:25Z","last_seen":"2026-04-04T01:35:44.561248Z","times_seen":546,"resource_available":false,"data":null}},"time_used":157,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/app-ss2.png","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/app-ss2.png HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-a986\"\r\nexpires: Fri, 30 Jan 2026 11:47:03 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43398,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 585 x 766, 8-bit colormap, non-interlaced","md5":"ec68db1bffdc254114ac2405509e26fc","sha1":"3a5a38bd4c66576be953e008f5493704c733636a","sha256":"2d0b6ca8ef1333774a83074f4f6113c1f3de0f32573865ddc1f400e2e0ef71b3","sha512":"6d54f0b59ce33db1a9fcb7ec1a9893cbcb09a33667ff0969a69709fe5fe7f1868b2d4138f5cb7e0aeb402219c36fc01452def6b9fa90726b2520809c92f23ad2","ssdeep":"768:O+H67WmUBh3uZ4NnUEg/ze2S8JPG/qI6MHghBhRD3yJ5VCXAAFWPKAp:xa9Gh++JUEsS8JPG9mtiHVqJ0Km","tlshash":"b713f2d45fd65d0e32c635adf08d562b32709e1aeb0c932966f2b03943b8380d67362d","first_seen":"2023-11-18T00:10:12Z","last_seen":"2026-04-04T01:35:44.577702Z","times_seen":34,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/css/tiny-slider.css","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/css/tiny-slider.css HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-830\"\r\nexpires: Wed, 31 Dec 2025 23:47:02 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2096,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2096), with no line terminators","md5":"d9cd03c98ddd36d21fe610520214798c","sha1":"be446fe22d58de2ba7275ad586f76f7e66191bfc","sha256":"083ff92b0fec9e507d15550936c3a714688d5706c0b6f5c89883a31fe6ea74ad","sha512":"a6f171f89423c92a68cd444c6038ee33587a09720b8c60956c7393d63f85713dc590de3a06f0fc2a953fc6370a1e58231215fec59db6d78d9004bef03cd4fc81","ssdeep":"","tlshash":"dd41792993603644d9e3d7107af89b298538fd95fb334cde264ebb024743a5a5412a89","first_seen":"2023-04-09T19:25:54Z","last_seen":"2026-04-04T01:35:44.557164Z","times_seen":220,"resource_available":false,"data":null}},"time_used":305,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":305,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/css/main.css","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/css/main.css HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-104c9\"\r\nexpires: Wed, 31 Dec 2025 23:47:02 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":66761,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"4bdde20764980a95e7a520369ebc5374","sha1":"922f2165cacc7e59720e1a59286670bd69174726","sha256":"aa27eed5985357b354a45e337b6fe8546b58e6f380d47dcf76d973fbc214a38e","sha512":"1fc5e299e5ffd88dba04da33597319d9233f6608e265b2462613469b479ff32de57cf92e400ee12d78c9bf62a77a74077264b15dd5b3cc9e3cdf27e304c96f55","ssdeep":"1536:FIrLrMzqYpfYnBZ9FdxtVPWQqYpfYnBZ9FdxtVPWD4XHINqpSSZFEH+tlCeZP9qH:Dy","tlshash":"356397a3aa5a312cb02b853ae4c175943329d013f21b5bfbfd537965cbc62d611a2f0d","first_seen":"2025-06-10T17:13:57.763104Z","last_seen":"2026-04-04T01:35:44.575477Z","times_seen":34,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":303,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/graygrids-logo.svg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/graygrids-logo.svg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-2987\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10631,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"673f43c45005a7e05924e518603f1575","sha1":"a3cf18dba8bddc413077bafea056f4fa7a4215ee","sha256":"15ae25d7afd437eff84d1aef69fcbe6a14cdf4fac30320351d5db5774826d252","sha512":"8946bdd1b65e050279f358a1d37335d7b2851188d10dbb52af6e8d82f26b68fbe2d6fe671506ba5987007c9eb0781252caa1d14087a480f7316c6b36dc3ce6ed","ssdeep":"192:QwH9uOylwAOMMiSsjgCJSTR70mWhgfsv7bowTwxxsHn8rq6g0I:QwdPsOkjSrogfsD0wkxx/qv0I","tlshash":"0922d8c723a0e7c5524ecac5af37e9b8021fb0edaa7650c489ef5b08d6479d5bd08d90","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.561894Z","times_seen":36,"resource_available":false,"data":null}},"time_used":443,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":443,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/team1.jpg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/team1.jpg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-337b\"\r\nexpires: Fri, 30 Jan 2026 11:47:03 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13179,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 350x230, components 3","md5":"147a672992a6bdd760abe6afb920212d","sha1":"88b583142b867b6e6fe7bbb5226b587f9d18874c","sha256":"b06a3dfc53d8fa5760128c9d4bde32dbe159618b6a3ad48b2c358a9dc6d1dfab","sha512":"286c3705296cf4f1ab9de21dc01c0fd35424e4e49a8aa249296b8037ebadd947e7e604f70583baef1697188afaa22a3e987477c5a7846de97e245a7019b75d4f","ssdeep":"192:1YagHZT3/FkyjFLCrXlQGQ1GD9mTjr/bQ00daqRTTvx+dTn1ZnIE7AbkD+WU8:Gag5zFBjFTGMXr31qRvJsxZIE8gi6","tlshash":"d342af153361884aff0fe4711a895e65f20ae81e9b633d71a94025285fb42f25a7817d","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.579113Z","times_seen":35,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":450,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:04.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://camctm.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 30 Dec 2025 23:36:38 GMT\r\nexpires: Wed, 30 Dec 2026 23:36:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 43826\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-04T05:40:35.575378Z","times_seen":132888,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":61,"dns":0,"connect":21,"send":0,"wait":12,"receive":9,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/css/animate.css","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.857Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/css/animate.css HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-107b2\"\r\nexpires: Wed, 31 Dec 2025 23:47:02 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":67506,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"af7c798a8eda35e1e341847435aba45f","sha1":"0045d6a35b9dc29160ccc221993af4a339a97cd8","sha256":"8e3e83d2280f349af997bc14f4bf3912fc67d61396da38a32d5e0a7313c75065","sha512":"52af6637c3bed56053e28bf7c9f0d2e82451c1403d66004f816ef5bd53bac5ecbb9e4c18970c4ebdae3dbd2922c42e2aed7a4c4205adb7eda941f3847188073b","ssdeep":"192:swf2T/awfDZUiduG+MONjnbimZbHMxymDSVbyPiVEzfukrWL7XU+qLmfRvraNY4N:+yffHf7SpS/fjfM","tlshash":"d663f96929e1114466370a15c7df9f78263ce5a31826ecfab3d2588bcf41fac23c9617","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.57463Z","times_seen":37,"resource_available":false,"data":null}},"time_used":306,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":306,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800;900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:03.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Inter:wght@100;200;300;400;500;600;700;800;900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 31 Dec 2025 11:47:03 GMT\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":22743,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"03d386d3d51356518f1c932bd7d1f021","sha1":"f20bdaa14bb1dba0ae6b28e1c455976bcc6e0081","sha256":"e833d17f31411e640714d4c41bd3d264b7c2b48b4740ce7ea6d7988f50e58d69","sha512":"dcbd99af933cbe40c84ba846643ac9e9e5b070e391a04d2d608a0f89f470b31aea8bee06ba7048fb2e7140eaeb75ce1c990d32444736469826bee4c96ffb2dc5","ssdeep":"192:WpNmp9pKpO3tp3pxYp5NnWjO3GAxRKNA1cO3lnxirNNIxO34OxDENOPCO3/Nx8NP:WLmXoKtZIB1OKYXuM0p2+g7GQK","tlshash":"d5a28992002ba400ab971dc233cf7f3aaece10856085d1b96ffd0dc59cead66436876d","first_seen":"2025-09-10T18:54:49.359958Z","last_seen":"2026-04-04T05:12:42.103049Z","times_seen":5106,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":90,"dns":0,"connect":20,"send":0,"wait":34,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/logo-footer.png","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/logo-footer.png HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-91f\"\r\nexpires: Fri, 30 Jan 2026 11:47:03 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2335,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 129 x 101, 8-bit/color RGBA, non-interlaced","md5":"10ebd5c00963abb46d38286385b1b546","sha1":"1f8fec740a079447205b8cfb400936108a426aee","sha256":"71c18b09eb7baefd67ca4f6049a287e5d279c745b64d8cbb4e9278ed3f01b157","sha512":"a2da942437d39858df17ffe345c0b260b4cf11e07e467eed09cd8b61096adba94b1454bb9f28c5b907304e95bb92e93a51043f0b2c8949a4a116d09c4c65b067","ssdeep":"","tlshash":"ff4139d86bef073dc9af0db7bc02e996d60ed410c0a019ba8b84ca21c12885e07d4e36","first_seen":"2025-02-04T13:50:31.258556Z","last_seen":"2026-04-04T01:35:44.578554Z","times_seen":70,"resource_available":false,"data":null}},"time_used":443,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":443,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/fonts/LineIcons.woff2","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:04.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/fonts/LineIcons.woff2 HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/skin/css/LineIcons.2.0.css\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:04 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 51676\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\netag: \"6953548e-c9dc\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":51676,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 51676, version 1.0","md5":"ab4f93708f366ab8c6576d60e1646dbd","sha1":"099c8552ddc2cfb05159333577c1821d2c6d4919","sha256":"22d65627d2483a04af29571b0637043746d2536c84a977860bc3ece769cf3418","sha512":"922a15cc852de48f4c1f6456d1c35bd3c37d434d6071c7ce9513176cf10ecfe85c484cfe06e7258c75ae028ea31116e96ea9449a75403d8af4d81b142299419b","ssdeep":"1536:300E1+oUoXBAlRcofcklQagQN4zBiKgNT:k0q+JoXBY+S6QOBRgNT","tlshash":"5933f12c3416b2d2567850afb84e8afa4c5ef576ecc257ad98110650cd833c9fe7d08a","first_seen":"2023-04-30T20:48:07Z","last_seen":"2026-04-04T01:35:44.58436Z","times_seen":482,"resource_available":false,"data":null}},"time_used":304,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":152,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:04.547Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://camctm.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 30 Dec 2025 23:36:38 GMT\r\nexpires: Wed, 30 Dec 2026 23:36:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 43826\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-04T05:40:35.575378Z","times_seen":132888,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":109,"dns":0,"connect":0,"send":0,"wait":8,"receive":2,"ssl":99},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/wow.min.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/js/wow.min.js HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-1fdd\"\r\nexpires: Wed, 31 Dec 2025 23:47:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8157,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8099), with CRLF line terminators","md5":"164b265e6089f412b7927848018ae6a1","sha1":"1717e6b487126c5c3e992d47dba4c6c10f4529bc","sha256":"81c4cb0bc57b5cce1816bd704f7a2b12ec2b143c6a067402644d4a139b273350","sha512":"956bbda2e4f3069c72d8dbc003d04d02a6026428beb9b9c8b0b78eb1dcce9b73b6f619b5558a4eec9c6d681eaec6ebb45e4ecd504a77ef9ad69b9b95373a3270","ssdeep":"192:7mEE6yAmu6qUxbU5C9nrr1GkEPIAeJ3KO4poIR:iEE/Amu6qUxVBxGkAI///IR","tlshash":"58f1bba5374a70718a9b6176c92f0202a532256e74d4c8ec747cddd4aeb4a29336bf3c","first_seen":"2023-03-07T01:42:37Z","last_seen":"2026-04-04T02:13:16.436562Z","times_seen":2302,"resource_available":true,"data":null}},"time_used":442,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":442,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/css/glightbox.min.css","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.861Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/css/glightbox.min.css HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-363c\"\r\nexpires: Wed, 31 Dec 2025 23:47:02 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13884,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (13884), with no line terminators","md5":"d93b9325b36618fef73308137a8431b8","sha1":"d70974b1ad1afdb4d227b5299309f1e3a404ca74","sha256":"ed4864fd009907c6bc1f2a41b77b7dd26871ea22f34bf299470a9b3f887eff8e","sha512":"a1027b2d0b74211e5fc587b261de8598e53580c6180b77c6b861fca6eba0c0b667c41c8390c6985427500e602b5f81391ee93ac4906b09803bf25ef19bef6b55","ssdeep":"96:/YUoW2dCjwDBwSDlPlgXDW8qD2LzyPi3AFkW6LpjxTc4Ak3:/RoA87riq8quzbvd9c4n","tlshash":"d9521512579032144097861a2accd7b80b6dc533aa225fffb7d1ea91c7c3a8b15b2797","first_seen":"2023-04-09T19:25:54Z","last_seen":"2026-04-04T01:35:44.565389Z","times_seen":236,"resource_available":false,"data":null}},"time_used":304,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":304,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/team2.jpg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/team2.jpg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-47a0\"\r\nexpires: Fri, 30 Jan 2026 11:47:03 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18336,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 350x230, components 3","md5":"a4b7209cf0a3c1ff9905649bd6388cf9","sha1":"b325b05814a10d9cc7e59d347c287105d5ac7e5f","sha256":"de026e676e3b13fd738d4133ecd9f10e139c7b924621957d09b9438e99d508dc","sha512":"bde0db9832e66cdc33fbb1b4702df8d186be61a913a5d81474ea9192d4a68c767f6f7278b0922400bf8c0d010b7dafa211e58016beb4ed6d814e9fd4d10a40ab","ssdeep":"384:qd9eHMQRi+2qbq2qboQhzcbQDnx7LZYpYrU/PwOjJpNP9t:c9Tk2E3qb3hLl7rINf9t","tlshash":"f382d06f16bbf7d5e4695c76a480533af377893b828d733ab75074162301ae24e10134","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.570082Z","times_seen":35,"resource_available":false,"data":null}},"time_used":449,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":449,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/brand3.svg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.880Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/brand3.svg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-15c6\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5574,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"180e4356eca62f10dc0c0f3a1091a697","sha1":"f8f6caa6b2c1817ca2f3aab6c6db9980b05fa252","sha256":"d053718e3e0f795e335605a22c6887a2dea33d3daab365879992ca7d1f19baaa","sha512":"1e7407c0b8149e9d4c61517067a7aa9769581fe4e42b2b0f6d5df21f2a66c2c71c0bb4916305de9afffb72c9119d43417fa548acc956f518b46b02d524f4a733","ssdeep":"96:KvOZve/EvRKMwi8s8rUvVVwEoN7nS5TY87eSZs7lvvTkSEr7eSZTZ/jLJBbAyHRq:1LKhi8s8rUvVSEoBnStY8eSZMlTJEPej","tlshash":"7cb1ef3d8528e7bb89e6d2fdca5ab478a00c60cdd177c6049b999b5011fb9ebf11c093","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.568169Z","times_seen":36,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":446,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/lineicons-logo.svg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/lineicons-logo.svg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-1825\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6181,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3148f8538098607bad7fe7e063cbf360","sha1":"74d52deedc84b8e9c1367616d05ebbbfc37aa79a","sha256":"9552e3742ed23362edde0ba23236d1c61f075b37ecc2d649d05926fff89f2d11","sha512":"6cc1af9745058bd4ad3fdc827baf4dea108eeffa9861cf3d5da8f82eb737ee4d1ad8dade53d184e14196b4702b0e65d07c7df45a2b43be14c43fa27aacd0729b","ssdeep":"96:w8wou2Q3g0XFPftyUvPKSxoxP5QGg0sHdQYJmoPK1K/j+qcWpr7:xwoutKxm9QYJmz38r7","tlshash":"c2d1fefd7a6ce2bc53db8e528f26a05c231d84b5753b9eb1894cdd340563ab0e18bc94","first_seen":"2023-11-18T00:10:12Z","last_seen":"2026-04-04T01:35:44.582484Z","times_seen":34,"resource_available":false,"data":null}},"time_used":445,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":445,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/glightbox.min.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.891Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/js/glightbox.min.js HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-af77\"\r\nexpires: Wed, 31 Dec 2025 23:47:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":44919,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (44919), with no line terminators","md5":"f1c6320483ed2ea08bd134dd7677d395","sha1":"443be7989be8d06a2b89852561cf9d55147cb2bd","sha256":"f20640b91ad814f8e36fc22e49adec01e6e22b5797569c1e6ed21cf4733e4c7b","sha512":"837996951397652605234d2057bd1864286c95fc2a8478de86ee6ea8207f1d98d8bd9decc93441ad7693a159cdbf265bb395aea6d636db9e0ae3202e42efd318","ssdeep":"768:j6f+pzn1TR/ZIMUbAN6+VQny3UOPEIOf2IvIYf0X+F5GYxbnZzw+XeNgq91Nk/wp:HfN6s3UMEwa5GqbnZzw+XeNgG1Nk/w5D","tlshash":"7413f809b286747604db617aa03f970bb2b621092902d09cf47edcd66db8d9e3167ff1","first_seen":"2023-03-08T02:17:38Z","last_seen":"2026-04-04T01:35:44.583819Z","times_seen":203,"resource_available":true,"data":null}},"time_used":441,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":441,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/main.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/js/main.js HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-db6\"\r\nexpires: Wed, 31 Dec 2025 23:47:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3510,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"b1672937fc40ef9785476386be80bda2","sha1":"b3c3b5ca7c2a12565d7d202b7ea0665183398801","sha256":"5c0827044b000fded666695053c8b8a4aff4b9e6b5fc23e8f765078931e28f79","sha512":"9f055f74cadbf1249942742d0e3211e75aea724e2ef1b33aa235949042c79f60eedfb84d9cb11b2a95b558204570463368f2bcb80e94d2ac9398dc1c44abd5b4","ssdeep":"","tlshash":"a971f22d52b96031017fa06ee79f67c53975004b5142d4123c6d9f992fa0fb115f4bca","first_seen":"2025-06-10T17:13:57.765119Z","last_seen":"2026-04-04T01:35:44.560711Z","times_seen":32,"resource_available":true,"data":null}},"time_used":440,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":440,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-31T11:47:01.746Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; path=/\nserver_name_session=5e2b1428f9abad9da465349907b423f7; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Lightbox","description":"Lightbox is small javascript library used to overlay images on top of the current page.","website":"https://lokeshdhakar.com/projects/lightbox2/","common_platform_enumeration":"cpe:2.3:a:lightbox_photo_gallery_project:lightbox_photo_gallery:*:*:*:*:*:*:*:*","icon":"Lightbox.png","categories":["JavaScript libraries"]},{"name":"Tiny Slider","description":"Tiny Slider is a vanilla javascript slider for all purposes.","website":"https://github.com/ganlanyuan/tiny-slider","common_platform_enumeration":"","icon":"default.svg","categories":["JavaScript libraries"]}],"data":{"size":69856,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2388), with CRLF, LF line terminators","md5":"61a866ff6356cc0f55a9956681c440be","sha1":"24cf9ea53e8c2cdc8ece288786ca34d59477fdf8","sha256":"8b8acb1a2145fa48cf3364644b5f30133d4fb56cc288eb3d1422ac8a2a69c6a7","sha512":"4ee2c9c965b9ed650396943f4297a6ec5a1bd4abda8fbf697a51804296e7b4ce770c16416beb364c01411f04626982ae7ba0139d5b66fa85e74866b23f1146e3","ssdeep":"1536:1z0pOHs4U6E6U5xjylSDhUMeMDRed89VXHjZ/7c5v:XKCl","tlshash":"f76363d160b0297f056a82d5f8734f5bed96e01fca5924643ebc6a891fa6f318c13f84","first_seen":"2025-12-31T11:47:29.679711Z","last_seen":"2025-12-31T11:47:29.679711Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1342,"timings":{"blocked":519,"dns":207,"connect":151,"send":0,"wait":304,"receive":0,"ssl":159},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/brand2.svg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/brand2.svg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-838\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2104,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"779c7fa54b0725a97da424b30c6d23d3","sha1":"12646ab9a00173b25f5a913fbda97477c34134f1","sha256":"9a2fa246008c59ba9a675722fdce042a8953713ee0557dba919c5f1b76cb66f5","sha512":"fbf5573dda2a9de73daa58cda67bfbd43385146629cf08c8ebe924809bfa808ecbd8398279ec5996a121742b0b2175825068588fc97bf36bcdd982c5ec3922dd","ssdeep":"","tlshash":"9f415736d61ee63bd66f87bccf61547950ce10f960e4c169e0f042b4a8b46caba8cd64","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.571045Z","times_seen":36,"resource_available":false,"data":null}},"time_used":448,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":448,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/phone.png","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/phone.png HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-1a0eb\"\r\nexpires: Fri, 30 Jan 2026 11:47:02 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":106731,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 794 x 643, 8-bit/color RGBA, non-interlaced","md5":"3b234811b50ee1d10213d2671e2644fe","sha1":"4a8281ff914b46c8d28b9b3cf9bdb40bb64b09df","sha256":"49eb9b4bf699e23178547edb75aac36608c865e4c82fb14b16a014665a60284d","sha512":"49316afe95c63cf4f4502893939a1f603ac1f5542bd7ed6587f39c7aaed34e334a1a0a5e01981cbca4ccefe044bb4fed01383823f9e05ac6dd8d2a1906682f4c","ssdeep":"3072:b25051LmuX+v2vzNheO6SwPDuAe00Z/ZTr7:S+rLmT2vzW3KXXr7","tlshash":"78a3022706cb8fa5c59935369ac6b25b4303c495d73f0e3c3e4ad50ad049a3abb6a137","first_seen":"2025-06-10T17:13:57.781359Z","last_seen":"2026-04-04T01:35:44.576713Z","times_seen":34,"resource_available":false,"data":null}},"time_used":302,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/pagebulb-logo.svg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/pagebulb-logo.svg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-13ba\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5050,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2209d5e1e26ce855932772ed69eab112","sha1":"74df60efa3852abc1cd3e08690ba570c889e2824","sha256":"342567c504721e6d1ce583a17bf6d93149bc735c66dcdd24086755dbc06fe0fc","sha512":"dbcdd8cab4bb461383cdfa5c98c459412cbf0891782fede6c83bdc1ee4c076a3a5240906ddb38d247cf1489d847caba363f9259862e01ce2bfd2ac7e13000646","ssdeep":"96:WPzQXVSirvXpYZLO3UkH36RwWhcXFpnCXBQ7Ioo7VeF3fiHbYP6RhpwqDE:9Xrv6kUkH36XX4IX7kRKE6yqo","tlshash":"e0a142f9ab6c61ed83c74ff1ef2a0064571d50f13aa6ada19c0d4eb15467d8ce24bd40","first_seen":"2023-11-18T00:10:12Z","last_seen":"2026-04-04T01:35:44.569108Z","times_seen":34,"resource_available":false,"data":null}},"time_used":443,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":443,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/logo-white.png","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/logo-white.png HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:02 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-91f\"\r\nexpires: Fri, 30 Jan 2026 11:47:02 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2335,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 129 x 101, 8-bit/color RGBA, non-interlaced","md5":"10ebd5c00963abb46d38286385b1b546","sha1":"1f8fec740a079447205b8cfb400936108a426aee","sha256":"71c18b09eb7baefd67ca4f6049a287e5d279c745b64d8cbb4e9278ed3f01b157","sha512":"a2da942437d39858df17ffe345c0b260b4cf11e07e467eed09cd8b61096adba94b1454bb9f28c5b907304e95bb92e93a51043f0b2c8949a4a116d09c4c65b067","ssdeep":"","tlshash":"ff4139d86bef073dc9af0db7bc02e996d60ed410c0a019ba8b84ca21c12885e07d4e36","first_seen":"2025-02-04T13:50:31.258556Z","last_seen":"2026-04-04T01:35:44.578554Z","times_seen":70,"resource_available":false,"data":null}},"time_used":302,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":302,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/team3.jpg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/team3.jpg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-61a9\"\r\nexpires: Fri, 30 Jan 2026 11:47:03 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25001,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 350x230, components 3","md5":"60361d47ce6586de643af822d433de46","sha1":"0b8009392df249b177cf17e01e9f9633b25a9ed5","sha256":"c1ebdb4c2fa114ec8e99946ad00d64afcb089333384e9310c81ec1d9e2e55ec6","sha512":"2238ccfeaeb74b15a26e750dab2591f6701e3663b3c2ee0a7f2e3123f47d09b41ffdfc57eb805731147681da0270ae71a24508c50606fb48a7aefb3e9a4e124d","ssdeep":"384:VO2rhgcLhD6AaVh3HEOi7+mwVdZTf0eMwnu6fGS+1GnLBBZHcCD5jBwTvY5JkasL:TlLaVh3kOi7b4Xu6fZvZ8UugiYTgGk","tlshash":"3eb2d13a9d84fe3dd7dee13333a85019a21cce052b10d26b091a46275bde9d16fc6d39","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.572911Z","times_seen":35,"resource_available":false,"data":null}},"time_used":449,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":449,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/brand1.svg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.878Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/brand1.svg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-2987\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10631,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"673f43c45005a7e05924e518603f1575","sha1":"a3cf18dba8bddc413077bafea056f4fa7a4215ee","sha256":"15ae25d7afd437eff84d1aef69fcbe6a14cdf4fac30320351d5db5774826d252","sha512":"8946bdd1b65e050279f358a1d37335d7b2851188d10dbb52af6e8d82f26b68fbe2d6fe671506ba5987007c9eb0781252caa1d14087a480f7316c6b36dc3ce6ed","ssdeep":"192:QwH9uOylwAOMMiSsjgCJSTR70mWhgfsv7bowTwxxsHn8rq6g0I:QwdPsOkjSrogfsD0wkxx/qv0I","tlshash":"0922d8c723a0e7c5524ecac5af37e9b8021fb0edaa7650c489ef5b08d6479d5bd08d90","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.561894Z","times_seen":36,"resource_available":false,"data":null}},"time_used":447,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":447,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/js/tiny-slider.js","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.890Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/js/tiny-slider.js HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-7ca7\"\r\nexpires: Wed, 31 Dec 2025 23:47:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31911,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (31911), with no line terminators","md5":"9a15fe924e0c32a7a3f442406147b981","sha1":"ded1e40389053f4df865d837a8b5942fbc06b216","sha256":"ad73299f4179f8228823e24f2b254b80694f7906d535cafb283da6e33dadd0d8","sha512":"6a90700e1106e1df2f3fd76c03d214e3e027d8a8bcf775989a7f324cc18da8c3e6569317e3b7a870f4dc06b985fe89381db9a7035a19e6ed70e196be453f1d3a","ssdeep":"768:VbsyNMH0JXmZ5lW2E9nUbTJuyynhdHbtv:R9NMH0Y5l+RUJuyQntv","tlshash":"f9e20ad97220713282d721ea12ef820a73365928dd038e849439fdd83dfd569626fd6e","first_seen":"2023-03-07T15:01:49Z","last_seen":"2026-04-04T01:35:44.581342Z","times_seen":224,"resource_available":true,"data":null}},"time_used":442,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":442,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/testi-patern.svg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.875Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/testi-patern.svg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-e93a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":59706,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"144ad8bc306a4b91f0dff9e1415ea520","sha1":"0430258da6f08520357933863c4bba7ea97b9402","sha256":"1ce061e425c7e83988c6e041c4a645f189692099e8e5d748185c99481913382f","sha512":"9d40b4544d4afd692dd05fa08a07c7fe1ba1afe55391f73259902145c4bf6723b72a53cf7f7c0f493673c2c36ecc9c0731bfb0b11a1549746b3f6ac3bb4fcd07","ssdeep":"768:nfFfRckfG95fFfRckfG9sfFfRckfG9CfFfRckfG9wfFfRckfG9ufFfRckfG9EfFs:HC319fJcUuNj7FnQLpEO2syXB","tlshash":"ab434d7c4396e9cd2905eb51fe7122d3daafe2c91ced93d10036c9546fe29c9a30e582","first_seen":"2023-11-18T00:10:12Z","last_seen":"2026-04-04T01:35:44.564489Z","times_seen":34,"resource_available":false,"data":null}},"time_used":448,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":448,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"camctm.com/skin/images/testi3.jpg","fqdn":"camctm.com","domain":"camctm.com","tld":"com"},"ip":{"addr":"156.239.182.6","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://camctm.com/","date":"2025-12-31T11:47:02.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.camctm.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 31 Dec 2025 06:26:48 GMT","end":"Tue, 31 Mar 2026 06:26:47 GMT"},"fingerprint":{"sha1":"08:25:1D:86:3F:B5:A5:5B:33:3E:80:35:44:15:CC:13:B0:DA:7B:25","sha256":"09:39:D3:27:95:66:36:C3:2E:16:F5:76:60:71:1D:96:BE:83:D1:11:16:A2:0E:2A:DE:9B:B3:2E:42:B6:B0:43"}}},"request":{"raw":"GET /skin/images/testi3.jpg HTTP/1.1\r\nHost: camctm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://camctm.com/\r\nCookie: PHPSESSID=vv98ov92aq6bjkc3dmh4447g6g; server_name_session=5e2b1428f9abad9da465349907b423f7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 31 Dec 2025 11:47:03 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 30 Dec 2025 04:26:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6953548e-1f57\"\r\nexpires: Fri, 30 Jan 2026 11:47:03 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8023,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 162x162, components 3","md5":"08c9c21b8603866367287bf5b08589cd","sha1":"722ed3ccfbbe5c555ab9efed485626dd52eff97f","sha256":"a9816a6c2411e62b4637ed9ea81d1698f4f3e7990da838623006fd8970f05c0b","sha512":"b01ce56378750ad205cb73edc58e36deea66a3bf2fa38d321cc8ecbfe7b3b4b0654531d834b87903aa272d196505aaa5110f799392feceae220732f9be084b72","ssdeep":"192:CKpwjjI3lyEbCB/+AlPA8xKO+mVBhFSWK6zrcNqh:CKpwHI3ldzA5/xKIVBhFRK6z5","tlshash":"53f17dfa65dac717c4be4c2f47ff17321f88691b287a1e5ac8619aa6f3301707142d26","first_seen":"2023-11-07T20:22:10Z","last_seen":"2026-04-04T01:35:44.580062Z","times_seen":36,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":446,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-31","alert":"Sinkholed","trigger":"camctm.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}