{"report_id":"e57ec3df-3f43-4e75-bbb3-6fb4de4200c9","version":6,"status":"done","tags":[],"date":"2025-12-22T10:30:15Z","url":{"schema":"http","addr":"klamathdreamhome.com/","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":0,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"klamathdreamhome.com/","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"title":"KlamathDreamHome","dom":{"size":22831,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8832)","md5":"454e18b0c5ecf731f1d7e4da3d4e2f30","sha1":"d2ac54f7eb8ef0eb48565821fbcc77b4e83bf835","sha256":"539e3be23f49957c9de76f25466256f9561b9e2284df8b8c52067b669aa67794","sha512":"6c68d7b8980e5002d83ccd161049d4d51ccacf2a64f7500d7b266262f8437d7242cc422ceee71f0136c98d88bd47c119ec1f8f4f76ca4e6d5f3644a45e29f3fc","ssdeep":"384:9bP4F/5H2/e2r/ZdSZUaAskWm/b/bg/bj/bIKZb2xsAlPZ6Nx5mO1M0Wk8CZ2TvW:huHqZdypJmTgTjTPUj6P5HKbHWo0sCb","tlshash":"50a2a672d1a900767b5ec7ac80a1b31ceda8f525de06a76570fd71688b94dfb00b760c","dom_hash":"domhashe6ece5940887732568363f852ca73f0e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"klamathdreamhome.com/","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":0,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-26T10:30:15Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"klamathdreamhome.com","ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"domain_registered":"2013-04-08","domain_rank":0,"first_seen":"2025-12-22T10:30:15.982247Z","last_seen":"2025-12-22T10:30:15.982247Z","alert_count":12,"request_count":12,"received_data":2677802,"sent_data":5861,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-includes/js/wp-emoji-loader.min.js","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"264671fe02d17a6da81de62b266d40a0","sha1":"5d16eeaa7f44926028118d1a6271d850f28c62d9","sha256":"2ea1113b9227f6f58ce251b0f6b669f5ef6ec5e72ad851e301f39529d0c8688a","sha512":"22adff5be0a4d7d1432d50cfaab91e6a06b052a6903c5b5f1e07ff837d9d1d1e449ffce113cd7cee62878d567b529e3a737e0f3d7c3ea8ed005bf2b6ad5f9883","ssdeep":"","tlshash":"3c518696e77a38dbb2f900f2697a0d47eb614436d6c8d438c9aea3141cb5893c274b46","size":3114,"data":"","first_seen":"2025-12-22T10:30:18.393112Z","last_seen":"2025-12-22T10:30:18.393112Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/jquery.js?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ddb84c1587287b2df08966081ef063bf","sha1":"9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f","sha256":"88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd","sha512":"0640605a22f437f10521b2d96064e06e4b0a1b96d2e8fb709d6bd593781c72ff8a86d2bfe3090bc4244687e91e94a897c7b132e237d369b2e0dc01083c2ec434","ssdeep":"1536:k5RKUpVgklsdbuLP/l+0fGzA8gmtasgx/c9Rzzi4yff8qeLvHHEjam7rSnmBn9gn:Ee8FbGzA81+xRRi1Z3","tlshash":"0a93e7d9b2d6716387b731bc50af510bb13698aa784c8c50f068d8e4be74a48907bf7d","size":93868,"data":"","first_seen":"2023-03-07T01:03:13Z","last_seen":"2026-04-03T17:22:58.719304Z","times_seen":15274,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/script.js?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3d88c873ca366848dc5c501de81c77c6","sha1":"9602de07940dcbdb9c72cf3d8debfa8554dbffeb","sha256":"4723f37e0265f8739e051e30e3b4baaeb0fae83b2d61c4fbef7c181fd4d71b92","sha512":"e99f83043b52d66678ada51c897c7ed406649085848cd06aae7f7b4292586acaf3f480f7cbfa97698720a66191bf26fe12862c154811889b3ffb6a87afd815e4","ssdeep":"384:86lmuG9rt6UlOC7IoXSon+wZIJOvR9H3qMkEQ9s5cszqtXXyMdOMJk9EhN40:3oMCbion+wVzqttVJk9KN40","tlshash":"37135e5da91220aa883773bddf6f810cf7ba54234146d2247dac95401fb18a852faffc","size":41520,"data":"","first_seen":"2025-12-22T10:30:18.375046Z","last_seen":"2025-12-22T10:30:18.375046Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/script.responsive.js?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ff546d3293e02a4c0cdb213de1b4a6e3","sha1":"c567d6ffcbdbac1fe36c8a2b4e354c5420c04c49","sha256":"103e3ce6fd7abe62a18ce782bd38873ad4bdcdabb29253df833a69d12dfb8c8a","sha512":"07ed8a936f5245d1d15cdd12854d156b9bae18d652ccf6e851ef456f25f6940e6a64c38b9f5b2018bcd8104374012601fedcac0472f34abff4b42d3739539815","ssdeep":"384:jHJ/+uKkRvyPixUYxHOrinMkgdYcii4bNq:d/+uKkvyPixU0HOrinVgdYDi4bk","tlshash":"5842234d9a1122a5d7363678ea2b5d18f79a043b338bc150bcce51526f7066c12b2fea","size":12443,"data":"","first_seen":"2025-12-22T10:30:18.372145Z","last_seen":"2025-12-22T10:30:18.372145Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-includes/js/wp-emoji-release.min.js?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","size":22762,"data":"","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-04-03T17:31:30.873523Z","times_seen":130469,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-includes/js/wp-emoji-release.min.js?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-includes/js/wp-emoji-release.min.js?ver=6.9 HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 03 Dec 2025 10:08:34 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 5375\r\ncontent-type: text/javascript\r\ndate: Mon, 22 Dec 2025 10:29:55 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":22762,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (19823)","md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-04-03T17:31:30.873523Z","times_seen":130469,"resource_available":true,"data":null}},"time_used":2364,"timings":{"blocked":928,"dns":1,"connect":164,"send":1268,"wait":167,"receive":0,"ssl":174},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/favicon.ico","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:54.277Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/favicon.ico HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 274\r\ncontent-type: image/x-icon\r\ndate: Mon, 22 Dec 2025 10:29:55 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"30e4eef1c4958a56a8977b474cf452a6","sha1":"62c99979dcbd700631de005c1e97c71ffedbf836","sha256":"9d42d82f186823ea2ea45e9603e2bb1a94fad6c923b56d0fbf0051634ea131bc","sha512":"8fa696e1ed98acb7522e7c0c599e36b65554a74bb85f893cc400446c2245996c2c8cc722772b81ba6eb7f101f96e1a61fe291b5aaf18e7c29cb60ada7ee29c34","ssdeep":"","tlshash":"4121dff4ee1cefb9d64c4afd5340f5f7820d022e12611bbd0e583a322ee31b01409124","first_seen":"2023-11-03T22:20:23Z","last_seen":"2026-03-27T14:17:57.029479Z","times_seen":16,"resource_available":false,"data":null}},"time_used":933,"timings":{"blocked":0,"dns":0,"connect":0,"send":767,"wait":166,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/script.responsive.js?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/script.responsive.js?ver=6.9 HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 2577\r\ncontent-type: text/javascript\r\ndate: Mon, 22 Dec 2025 10:29:53 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":12443,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"ff546d3293e02a4c0cdb213de1b4a6e3","sha1":"c567d6ffcbdbac1fe36c8a2b4e354c5420c04c49","sha256":"103e3ce6fd7abe62a18ce782bd38873ad4bdcdabb29253df833a69d12dfb8c8a","sha512":"07ed8a936f5245d1d15cdd12854d156b9bae18d652ccf6e851ef456f25f6940e6a64c38b9f5b2018bcd8104374012601fedcac0472f34abff4b42d3739539815","ssdeep":"384:jHJ/+uKkRvyPixUYxHOrinMkgdYcii4bNq:d/+uKkvyPixU0HOrinVgdYDi4bk","tlshash":"5842234d9a1122a5d7363678ea2b5d18f79a043b338bc150bcce51526f7066c12b2fea","first_seen":"2025-12-22T10:30:18.372145Z","last_seen":"2025-12-22T10:30:18.372145Z","times_seen":1,"resource_available":true,"data":null}},"time_used":157,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/script.js?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/script.js?ver=6.9 HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 9673\r\ncontent-type: text/javascript\r\ndate: Mon, 22 Dec 2025 10:29:53 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":41520,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"3d88c873ca366848dc5c501de81c77c6","sha1":"9602de07940dcbdb9c72cf3d8debfa8554dbffeb","sha256":"4723f37e0265f8739e051e30e3b4baaeb0fae83b2d61c4fbef7c181fd4d71b92","sha512":"e99f83043b52d66678ada51c897c7ed406649085848cd06aae7f7b4292586acaf3f480f7cbfa97698720a66191bf26fe12862c154811889b3ffb6a87afd815e4","ssdeep":"384:86lmuG9rt6UlOC7IoXSon+wZIJOvR9H3qMkEQ9s5cszqtXXyMdOMJk9EhN40:3oMCbion+wVzqttVJk9KN40","tlshash":"37135e5da91220aa883773bddf6f810cf7ba54234146d2247dac95401fb18a852faffc","first_seen":"2025-12-22T10:30:18.375046Z","last_seen":"2025-12-22T10:30:18.375046Z","times_seen":1,"resource_available":true,"data":null}},"time_used":309,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":309,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/images/pageglare.png","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.701Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/images/pageglare.png HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/wp-content/themes/nunes_home/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\ncontent-length: 2385879\r\ncontent-type: image/png\r\ndate: Mon, 22 Dec 2025 10:29:53 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2385879,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1900 x 1000, 8-bit/color RGBA, non-interlaced","md5":"69e89a3cb2b814f9ed4b8d96b1f31045","sha1":"bdaf1eea668e5df569e67ff434a5bdd30080ce19","sha256":"35d8414c36627745675c66b4032302b2e7f6145fe45dda5870b6dd75f90b2d73","sha512":"435810c0c44ea59f2510fd9c5101db6ae68d52c0f8ab1c06d948cd51721b35e0b7bf2ec7645d2eb1fe00a178a96ff897eb1eed943c484253cb5372f0dd56d411","ssdeep":"24576:ghQdm852Cr2yTJGmzA8VRYlibMqtWupzPBD7bscBOdFZNDf:gSd9f5GmzIs9MupDBD7bvEdFL","tlshash":"85252399c32e64719c3707b02494ee0a0cfa779523a77090a7472ae468def5dda233dd","first_seen":"2025-12-22T10:30:18.377614Z","last_seen":"2025-12-22T10:30:18.377614Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1002,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":843,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/images/header.png","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.705Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/images/header.png HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/wp-content/themes/nunes_home/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\ncontent-length: 4195\r\ncontent-type: image/png\r\ndate: Mon, 22 Dec 2025 10:29:53 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":4195,"size_decoded":0,"mime_type":"image/png","magic":"data","md5":"f4f076f3c9ecfa81c8eb59f59d93ba75","sha1":"e482182c30d2910bf400ed733ff1d43edb7a65f2","sha256":"c537b2318ae8144dfb192a273dd1fb12f72300e4b0cd330f69b5ab04c12727ad","sha512":"f804d41ee7312397c8838ba3b0014e495ddd2a2570e6fbd52b34db29ac45e6a6709661ecc08294501435089d6d0e0cfd149936869c0104d94809ecaa4fcfde13","ssdeep":"6:rtD5Sgi73Uv/lhPilb2MK+G9MkPFQOetl:r15TiAv/7a4MiDPFQOetl","tlshash":"d6818caba8502b68cca608b19f2288808b6328db6912280146a9e1c8c24db887018a18","first_seen":"2025-12-22T10:30:18.380125Z","last_seen":"2025-12-22T10:30:18.380125Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1003,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1003,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/images/menuseparator.png","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/images/menuseparator.png HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/wp-content/themes/nunes_home/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T17:31:03.373685Z","times_seen":13297281,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-22T10:29:51.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlink: \u003chttps://klamathdreamhome.com/wp-json/\u003e; rel=\"https://api.w.org/\"\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 6016\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Mon, 22 Dec 2025 10:29:52 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":22577,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (8832), with CRLF, LF line terminators","md5":"a930f633fe492914eaad36ac58ffd8ad","sha1":"059688b6be9d1044c6ca7cc651b6e46aa7b96e2d","sha256":"c329a643b6c9a5848ca792b8ac35b39158b035a5e2df3d5c6179171e1cd558a8","sha512":"ec1ad029a9b550a67423e200ebc3ed9a51878ecc4943229bf5237f245ba4b136a3e6a2581d8b9a25324a71c5c1baaa39e90cca6f114da5c616d70070f6bbcdb2","ssdeep":"384:VbhPm/kq2/0Or/ZdSZUaAskWkp4brbg/bj/bIhKbeAaPZvZx5mO1M0vk8CZ2Tvba:ZZqsZdypJaUHgTjTPlavr5HPbHWo0sCd","tlshash":"eea2a572e1a900767f5e87ac81a1732ceda8f525de06a76570fd31688b94df700b760c","first_seen":"2025-12-22T10:30:18.383871Z","last_seen":"2025-12-22T10:30:18.383871Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1492,"timings":{"blocked":418,"dns":103,"connect":153,"send":0,"wait":656,"receive":0,"ssl":158},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/style.css","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/style.css HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 8201\r\ncontent-type: text/css\r\ndate: Mon, 22 Dec 2025 10:29:53 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":56031,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (301), with CRLF line terminators","md5":"9a034f57173b1242ab029033e5d6078d","sha1":"3663610585c127c93f957aa692a1357bd6369fc6","sha256":"ab6bab6a08745325267dacac2442881eb2b0c1b53cfa3dd6cbddfa7a83bd6a60","sha512":"96fa98806d2f1d8f659aedf4505af91831cfd0c9f69ec50498732b0057d520072b1fe2666956a87def74a1363f399ba497b5cb4ea4389735f4ed48b0a8386c74","ssdeep":"384:LNnFFUXtnsIyXtvaKUyhnF2/4Jlf7epRrBhtNZhj+CmcjbU92FP+:LY4JlT+xDy2bU90m","tlshash":"d84385bc968551b16b37db4063223652ee5880228a4e09f0f7d06625dff6fdc61b2f8d","first_seen":"2025-12-22T10:30:18.386204Z","last_seen":"2025-12-22T10:30:18.386204Z","times_seen":1,"resource_available":false,"data":null}},"time_used":160,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/style.responsive.css?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/style.responsive.css?ver=6.9 HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 1473\r\ncontent-type: text/css\r\ndate: Mon, 22 Dec 2025 10:29:53 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":7803,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"2a457a33c77698aa3d9f8e1bd2b68bd2","sha1":"1b6f6b7a8a4cbe732b917fa532dfb110d7ac18d7","sha256":"55442528c2d6a0f1b46ea516e7c3b91d2b6bf8e4ec042e1a6158b19f52bb2f17","sha512":"457d0cd0e3316044e81aefe1b8fa34b75f94d36448ba57fbbfd6bf03251aa99400ea701ae0813c76ddd4729f9b4b3d49bd5b5c72244a0321cc9afe62bc93567c","ssdeep":"192:TFY1swkw3UsFAhT28hZLgmDty7wKh63LeW5Et:rpq","tlshash":"89f1ac769e99907747337748cb172b79da2802242b0d88b5b84232281f75bce15a3fc7","first_seen":"2025-12-22T10:30:18.38837Z","last_seen":"2025-12-22T10:30:18.38837Z","times_seen":1,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/jquery.js?ver=6.9","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/jquery.js?ver=6.9 HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 33140\r\ncontent-type: text/javascript\r\ndate: Mon, 22 Dec 2025 10:29:53 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":93868,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32769)","md5":"ddb84c1587287b2df08966081ef063bf","sha1":"9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f","sha256":"88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd","sha512":"0640605a22f437f10521b2d96064e06e4b0a1b96d2e8fb709d6bd593781c72ff8a86d2bfe3090bc4244687e91e94a897c7b132e237d369b2e0dc01083c2ec434","ssdeep":"1536:k5RKUpVgklsdbuLP/l+0fGzA8gmtasgx/c9Rzzi4yff8qeLvHHEjam7rSnmBn9gn:Ee8FbGzA81+xRRi1Z3","tlshash":"0a93e7d9b2d6716387b731bc50af510bb13698aa784c8c50f068d8e4be74a48907bf7d","first_seen":"2023-03-07T01:03:13Z","last_seen":"2026-04-03T17:22:58.719304Z","times_seen":15274,"resource_available":true,"data":null}},"time_used":464,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":358,"receive":106,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"klamathdreamhome.com/wp-content/themes/nunes_home/images/page.png","fqdn":"klamathdreamhome.com","domain":"klamathdreamhome.com","tld":"com"},"ip":{"addr":"216.194.168.49","port":443,"asn":22611,"as":"INMOTION","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://klamathdreamhome.com/","date":"2025-12-22T10:29:53.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.klamathdreamhome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 05:24:33 GMT","end":"Mon, 02 Mar 2026 05:24:32 GMT"},"fingerprint":{"sha1":"DA:2A:25:7B:57:29:63:F0:2F:00:A2:67:6F:8E:90:8D:A0:36:1B:87","sha256":"2F:4B:AA:05:99:1C:54:7B:05:C6:24:B3:71:F6:BE:D0:FA:54:02:34:04:80:F1:70:63:C2:1C:EF:D1:01:1D:91"}}},"request":{"raw":"GET /wp-content/themes/nunes_home/images/page.png HTTP/1.1\r\nHost: klamathdreamhome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://klamathdreamhome.com/wp-content/themes/nunes_home/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 20 Jan 2022 23:27:13 GMT\r\naccept-ranges: bytes\r\ncontent-length: 26806\r\ncontent-type: image/png\r\ndate: Mon, 22 Dec 2025 10:29:53 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":26806,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 142 x 142, 8-bit/color RGBA, non-interlaced","md5":"f556350e23ed19c190ca9a6c1002504a","sha1":"db0c54709d5a5504c21e07439fb34a36fe6b338b","sha256":"43326b360a7561e6fcc79379a397894705f0888ac4e193e60b335b0519f6e53f","sha512":"eeedf6c217bb40f417b7c064b362c8331c1fef71b5361febb809503093bcc139217c9cb8b87eaea570b7053115ca3b53bdad2c216187fe25cc5c76a8ad4dff28","ssdeep":"768:Lst2jQC85+d9uVpxHDSX6OlF7qtjmgrewUT6:LT0x5gUppZYFw5a6","tlshash":"36c2e1916340d56bbb9a56fc039aff44cb5f4118478964fea38bbc352a9233c3d48894","first_seen":"2025-12-22T10:30:18.391348Z","last_seen":"2025-12-22T10:30:18.391348Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1005,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":158,"receive":847,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-22","alert":"Sinkholed","trigger":"klamathdreamhome.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}