{"report_id":"ecedab42-1049-4179-9ab3-0c7e15bb7ff3","version":6,"status":"done","tags":[],"date":"2026-04-13T15:39:46Z","url":{"schema":"http","addr":"xelvora-portal.com","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"172.67.141.58","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"xelvora-portal.com/#/pages/other/empty","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"title":"ORTEX","dom":{"size":17509,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (6816)","md5":"45cc5cda9b0ab2a906ff2d5865f5b064","sha1":"a84e143481718c2880e9b6e96e48459543c336c9","sha256":"59b17ea01020b9baa84f24bc42903b6f61abb748d04210b84a404fb8f16a02ae","sha512":"062e28d0b089ed2e3e3ce3f739fcb1ab6f259fb25233f82533ce2d7294ceef726d9415f98799a506038ddc70f2a0fee2b3070a508582ea1fe86e0e2636ef0e16","ssdeep":"384:y+sjC+2j9jBUy+a0uBsuxMaGG5JFtcsaz8satvsa8CsaGpsaavTrrxRco/7:teCd6aztmYJFtcsaz8satvsa8CsaGps9","tlshash":"987275313106282ba23b45c1b551c72c35139317899349e9ffde2bb69fc9cea4a76b84","dom_hash":"domhash1c33c1b711684c9043cb75f838b4b0da","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"xelvora-portal.com","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"172.67.141.58","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-18T15:39:46Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"comextradehub.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"xelvora-portal.com","ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":39,"request_count":13,"received_data":1242140,"sent_data":6661,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"comextradehub.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-05-24","domain_rank":0,"first_seen":"2026-03-14T18:35:14.837515Z","last_seen":"2026-04-13T15:38:59.837057Z","alert_count":1,"request_count":1,"received_data":948,"sent_data":561,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"111.231.169.247","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-04-08T22:12:50.414611Z","alert_count":0,"request_count":1,"received_data":578,"sent_data":449,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"xelvora-portal.com/","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"93368157fb131b56a45d6f60f8b40342","sha1":"ea2a25edb7b00c3e0a06650f02fded5bd87dfa20","sha256":"c48d4859bc082aa591168f7d7230bef438ecc2b3074e707c83864e11ec1a891f","sha512":"366c90d022f7fd6718d76460de51a154cf6cf8bf8e3aefa2e0e736cbba24ec53506485331abd3c3c2a7e6ae00c9a3b957a9aa675ecdd389afca7863ad8365908","ssdeep":"","tlshash":"c8e068c260a6294c02208016304ac1031bb608729ec149613c4c67a58fb9f4bc46e859","size":352,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-04-14T21:21:53.269403Z","times_seen":3499,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/js/chunk-vendors.d38ae58a.js","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"218735c939ab60ea7ddfd28122e873ed","sha1":"ee6a9eb8e42cfbf2230e0893ebfdb221fb6707d0","sha256":"453c4ea3053491393da9d49980684eb7b7ab68f4143e901d44ff4b1262c718ee","sha512":"b8221ebb06ecb515fac4bad7030535039aa9989da7b8300ba16f51a251449bf98d7cd9e8a48d7f2e45fda2a276b1cd9223e6b77e530dce64128daf7dcf4dd84d","ssdeep":"6144:16tC/tBp3fkN+94KFwXtwTf328b3L7Nv0NTlfbEvm/dO+Qh8JOvQzbe9WUiuER:11jd5wdwTfh7V0tl3ObvQzHUq","tlshash":"7005f78df282b0b606e760b5403f220bb2376959b40ac4d8f675e4d4ad7894e6237f7d","size":835602,"data":"","first_seen":"2026-03-14T18:35:19.664446Z","last_seen":"2026-04-13T15:43:39.245301Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/js/index.61614fb9.js","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6f320881ae5147260900a5541a67da9c","sha1":"f6955d22edca3fdc5d05e14325cd88263d1e0757","sha256":"155ba9f2d040fad3bfaed8e0c772cd70b48587e36f7e0acc71b80f797e188fdc","sha512":"661b564b76251cf8857cbd4b506ac6c3358e9ee50ab29adf008976f0cb05a1f5aed141267b585c7a2bbb86e90aed32865d8a8a3bb03b1d756c626834451a1c18","ssdeep":"3072:7VY4ZorMOtrH9HdXROJN7U0rw/jyuhG45GYNHjqj:7nOtrH9HdMrKbJLI","tlshash":"6c148e9d71dba7fe00977152995f980520603f06e899b4a393daf2a80f9d6cec713f60","size":201004,"data":"","first_seen":"2026-04-04T19:23:11.206959Z","last_seen":"2026-04-13T15:39:51.961595Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/js/pages-other-empty.198a97b6.js","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"973c5ec9f0218cab85aec41a5561ee4c","sha1":"36ebe3e74746fdae24c908e6662272c57f1ae744","sha256":"068c25295da3d39daabc7e209356d5bf059bd340a71d81c0445f7740dd1a64df","sha512":"f77ad721266f123597a80b01ac59c07ffa28f352db280daa195f9e51055ab4357a79db19f42021ba70391d075f32510502ab323f292cd593bf4e4274ef572a1e","ssdeep":"","tlshash":"d661b715b1c7ec8b085658c4262f8165a4333d3d6059f891cbf1dfd91df8a9f0326e58","size":3273,"data":"","first_seen":"2026-03-14T18:35:19.667233Z","last_seen":"2026-04-13T15:39:51.960332Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/js/pages-login.a4b5eb97.js","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c66cfa23e57ae0cd5f966fc16a0a0c6","sha1":"cc22f940c7284c6cb486635bf3a1fbc0e416c9d6","sha256":"20258ea7af9adab02b5c840cfd726e15742c3332795b1fa7f5ea8eac0c6479a6","sha512":"f7aa41d14fe58257935082dc459aa2cc980c23c42a9983650fcd2103918f7ab11469e94b4d09d661990bd806f56bde0edafa623aa10dfc25dfec58806b75ac70","ssdeep":"1536:RmI/DrmGLpT0PtNPU9ArHMJkGEZMnryUWsoul4M:N/jWG0Mnr4M","tlshash":"31833ac8b289709463b73594057f788b7076353a510989cbf660eade9cacace403ed7d","size":82307,"data":"","first_seen":"2026-03-14T18:35:19.670853Z","last_seen":"2026-04-13T15:39:51.955465Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-04-15T09:56:08.655204Z","times_seen":14543,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"xelvora-portal.com/static/img/svg/icon_market.svg","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.894Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/img/svg/icon_market.svg HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nage: 53\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69cb1e32-27d\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f7qB2a5GvUeq967PJstsT2ahwwdRX2We8ZPKbeHY7JoBc1ihSaQUIhlHThgwpvuwV2%2FJNyzAgc5h3uCjDs9VWU9p2SjLlLvsMfSUIPiPU7J3IASNf7%2FFVITTB2SnreRaN3Zda4k%3D\"}]}\r\ncf-ray: 9ebb903ecff323eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":637,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0854c8cbcd9bb2cce30d026266c77bac","sha1":"bd98513e424906e91ee8cdd1a3e0330a84c625e6","sha256":"39466386a593c19beb0a9372e3160c06fa17febfd84ee665a043609e7977f390","sha512":"b5814fab90a2148cd9813e37ed32ff34f288ffdaa7d027bf80372e11acee0d35c578b3d05ed6b0a310359948f1015866352156cdbab4fdf7cb8fc50ae3aa022c","ssdeep":"","tlshash":"edf0c2eaab480d3cbb738b34f724327590b272138b4c2158c9363977265a54c7a3f9c8","first_seen":"2025-06-22T10:40:26.695148Z","last_seen":"2026-04-13T16:33:31.914153Z","times_seen":54,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/js/chunk-vendors.d38ae58a.js","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/js/chunk-vendors.d38ae58a.js HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-cc012\"\r\nexpires: Tue, 14 Apr 2026 03:38:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 54\r\npriority: u=3,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WExNfjHfO2R2DLiZhXPGbRMO0FvpRnMuFTewibBb0sHWXY1qwvTlyEYtH7krfPkBXvoIUjWQs47zSfYLFQlbwY5MehvJ6lYDRrB0ImcM68vZr5OHL4dXfma0K3hWfleC2irbYWo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903c2f5a23eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":835602,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (29875)","md5":"218735c939ab60ea7ddfd28122e873ed","sha1":"ee6a9eb8e42cfbf2230e0893ebfdb221fb6707d0","sha256":"453c4ea3053491393da9d49980684eb7b7ab68f4143e901d44ff4b1262c718ee","sha512":"b8221ebb06ecb515fac4bad7030535039aa9989da7b8300ba16f51a251449bf98d7cd9e8a48d7f2e45fda2a276b1cd9223e6b77e530dce64128daf7dcf4dd84d","ssdeep":"6144:16tC/tBp3fkN+94KFwXtwTf328b3L7Nv0NTlfbEvm/dO+Qh8JOvQzbe9WUiuER:11jd5wdwTfh7V0tl3ObvQzHUq","tlshash":"7005f78df282b0b606e760b5403f220bb2376959b40ac4d8f675e4d4ad7894e6237f7d","first_seen":"2026-03-14T18:35:19.664446Z","last_seen":"2026-04-13T15:43:39.245301Z","times_seen":17,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"comextradehub.com/ws","fqdn":"comextradehub.com","domain":"comextradehub.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"comextradehub.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 00:00:23 GMT","end":"Sun, 14 Jun 2026 00:57:44 GMT"},"fingerprint":{"sha1":"C6:84:36:98:EE:42:13:7C:FF:11:F6:FE:24:E8:DB:2B:AD:55:C8:62","sha256":"E0:01:09:D3:4F:CC:CE:2E:2C:32:AE:8A:8C:19:22:42:7E:DF:E6:21:DC:7F:6A:C9:AB:39:B4:E7:F6:B1:09:72"}}},"request":{"raw":"GET /ws HTTP/1.1\r\nHost: comextradehub.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://xelvora-portal.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: urW2+99AQez0Uq5bk277gg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Mon, 13 Apr 2026 15:39:26 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Version: 13\r\nSec-WebSocket-Accept: phfmKH7Yb1mND0C6G/FRhx5GG9s=\r\nSet-Cookie: server_name_session=929ef97e16cef95966a3afe1fe4a11d4; Max-Age=86400; httponly; path=/\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=IHqzNHkhJ9VK8X3NFNr8TfkXyP9Mupt5SkDXcH8m2NY55yL0fRr0ojqg5%2BS9nb%2BJrFqQCFf6PqOLrXH1jwOtr49hKB1u3kNzdn07nNHi%2FrWi4711%2B%2FDa%2FPHtuZMKvlN%2F7rUWjg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9ebb903eed0123eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=543\u0026min_rtt=512\u0026rtt_var=158\u0026sent=5\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=3130\u0026recv_bytes=1164\u0026delivery_rate=6862559\u0026cwnd=53\u0026unsent_bytes=0\u0026cid=a762f9fb5061bbea\u0026ts=363\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-15T10:54:38.462436Z","times_seen":13780357,"resource_available":true,"data":null}},"time_used":424,"timings":{"blocked":-1,"dns":28,"connect":27,"send":0,"wait":346,"receive":1,"ssl":48},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"comextradehub.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/img/svg/icon_strategy.svg","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.896Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/img/svg/icon_strategy.svg HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-a7a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 53\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=luIHAYXC3Z%2FohuNbwIGAaSVAcMH%2FwYJTSLlRtpLwKRveLf0xaa7BV9XOuOq6poy1fkRitBk6Qxp2ySQqa%2FgoSSkgucpI1zExYXJ2Fn8gEZuugqi4T9C1ziWc1DOstmV%2Fts7ktpM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903edff523eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2682,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a77c689dbeaaca629e58dd31b6bf9312","sha1":"ce499209c8e6062f0d0c57fc825d554708b9affc","sha256":"ac4ec25fde7152c7da4440bbdfab441cea966b9f25629590a9516cb8a89d1203","sha512":"54492a3c6da4287a6af9127df8c96d1195a0d27b534e3f7e88fc979101de4353c51bff0eecde99909afa423f9596b2a2664a08c778f5419369f407506f8b7ce5","ssdeep":"","tlshash":"b2517cd657889afcf13177acdb11b230317b247b3a2af706852225b1a90619c9dbf8c4","first_seen":"2025-06-22T10:40:26.73605Z","last_seen":"2026-04-13T16:33:31.920834Z","times_seen":54,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/img/svg/loan1.svg","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.901Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/img/svg/loan1.svg HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-450\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 53\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mT53qkkcZn1gxTEEHZ6n5mWxpXxz%2FSUUslDVsQlUH0KQxf1T2VajYSqI47kkaC282%2Bi9UHwlmCEof2ZDVhFGXyLNHtQoLdx3BbE%2FU7KZa6FuYQrDOH4bBUjdZQGkdsZ3gHgrVOI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903edff823eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1104,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f630510914bfde2a67342d60854decad","sha1":"4a111f1e3c63c8b8720b9ca37eb96a672076fdeb","sha256":"1b9a52731101d62150c6957b1184e27021653be32701db407709a40028f924e8","sha512":"48396c9eb1ad8e75689f1f8d53847e56d06f0142d98315db6016ed6a58dfe73b5c1e83186f10860f44bdf0bd93a41b34c5d5244266f66503becc84cc2ba8d780","ssdeep":"","tlshash":"4811328b9b086d7cb7628b70eb167630752b31338b0e6240c5722a33b92615ce53f9c8","first_seen":"2025-10-21T13:52:00.317914Z","last_seen":"2026-04-13T16:33:31.923395Z","times_seen":31,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/favicon.ico","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7ezwpc1shpvg%2FShe29IJJAV2dess32ULEJuvYoLv9d731dwGfH%2B8b1oxTo0RfG17n3kNqxn9%2Bq%2Bvih3v3hNudidI9UpM48%2Bn1Nly7Dp7Y2AyZ%2FTDheiWMmvu0sdF8I7D3iwwbto%3D\"}]}\r\nage: 53\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\ncf-ray: 9ebb903f581e23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-15T10:57:27.482565Z","times_seen":488198,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/img/wallet.svg","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/img/wallet.svg HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-17b9\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 53\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=D68FOcu1DiXTu8OgUmImaS1sTOnfqI0OX6PjLQbC%2FQfBpfqXQjf1A10Uw%2FAuY8t6IGhu3RfsWIvSdLNicgOR51bF%2BXCYNRzCnn00h2%2F%2F4Z%2BFHuddJqnluoAOMLUkleDS96UeWFM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903f682223eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6073,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"133aeaeec9927fd4c79b761c9a9ece45","sha1":"eddfe13974ecef507ff537917590fbb917d5a93c","sha256":"4c2c33554135a0cc3350aad487e20edc0f559e25ceb5ac10695f263de88c7218","sha512":"06f89e23016ac8812ff6343c0a7b1de3907b0e0d5ddc723d9b9230590367c609ff4be7721449c30a9781eb2530adf67574f81543ec9551ed246f809d9f604168","ssdeep":"48:5+HfkXG39xLYiUSXGMkhtb6W/wzkoQLpH5NnNF/Rkz6rw476dEXAoCnR6pE5iYev:GW5NwILxzgo+5icK9z","tlshash":"3fc15b8e67880ebcbb728a7ce3093375502a45d76a497254cd33213a115a35dbe7fec8","first_seen":"2025-07-13T10:39:08.750413Z","last_seen":"2026-04-13T15:42:51.612098Z","times_seen":40,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/index.ed4a2d2b.css","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/index.ed4a2d2b.css HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-1794e\"\r\nexpires: Tue, 14 Apr 2026 03:38:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 54\r\npriority: u=2,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gkBWrR0o41Ftj5hPuFMsbeM2rJq2sraLWSO7UtlGav6e%2B1WPPpLS9DQRrTcajm0ak7RRR3iGdYEcnlxWaibMsQFvzIjiX3kQKgPVl%2BgDfmc2ORqfDvnFXJEmdqQdUZZJaHKVJ00%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903c2f5823eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":96590,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d2c05a28c7f2113821d909b7b5b918a3","sha1":"ccac94311f6ac6f580b64f47f7705318f1d226a3","sha256":"695bdbeea38a126c139158967cdd4f3a435e9936b9dff5b002e5f20a10fc7907","sha512":"3b96fbd1a89be8ae0b7479705cd4a2958ffe7f2f3f57ec23f407ad51ed8b447b9960728d77502e8fd8b2b19bf0971682030117559df250ea11c9bc1802364c3c","ssdeep":"1536:qlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nrhlvbc:hApuK7hmVrS1Wu3iG41nrPI","tlshash":"4493f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2025-10-16T12:28:28.877032Z","last_seen":"2026-04-14T21:21:53.268231Z","times_seen":987,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/js/index.61614fb9.js","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/js/index.61614fb9.js HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-3112c\"\r\nexpires: Tue, 14 Apr 2026 03:38:30 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 54\r\npriority: u=3,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lRLH9J1KW0b1V8bWq2qtI%2B8ZqCdQXvWwHBZ0qyLD%2FEtP4WwD4K1KGDq43Pvy4mhg%2FvNLP5xNOTWIszHMTeSMwzJ8zGUCO0KaS86n2BDKgcmxceqn8w9DRMysF%2FqQh6it7DSNnmU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903c2f5b23eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":201004,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (48950), with no line terminators","md5":"6d1850d2dd745d0cf5098e8f89f2a0b9","sha1":"a59e2625f216897cdda375a99dcd6284fb73da12","sha256":"33eabfaf288ed5602ccb0bf26f3d4da8a26b11cbc857bd820b69b8463db2d434","sha512":"c42a5ae2efcdc1168e5a409b53ab9a7e21d094882bd65f9a14ea263d4716b15f9bb55dbd340120a5cd85a45e905fecc914953925d496974b06aa44c1ac6f80e5","ssdeep":"3072:7VY4ZorMOtrH9HdXROJN7U0rwol7+2w8SsACP4HRh49NkdXPOgMmCMNz7:7nOtrH9HdMrHwssL","tlshash":"f224390eb2c7d3b942da65f52d1ba2026170eec6e9de7047439af0e43f6f99c4321661","first_seen":"2026-04-13T15:39:51.953443Z","last_seen":"2026-04-13T15:39:51.953443Z","times_seen":1,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"111.231.169.247","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:28.559Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Apr 2026 15:39:29 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Mon, 13 Apr 2026 16:09:29 GMT\r\ncache-control: max-age=1800\r\nset-cookie: __uni__uid=rBEQUmndDjGST6hZA5K/Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-04-15T09:56:08.626623Z","times_seen":14813,"resource_available":false,"data":null}},"time_used":1447,"timings":{"blocked":586,"dns":1,"connect":275,"send":0,"wait":275,"receive":0,"ssl":306},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-13T15:39:25.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sCwdBG77UGplc9oB638kJcQrN1uKoJDSRhiXXI1G0cCpPRnO0ZEpYTIZ2b9U%2FDGqeFKKDG15z0YjwHF9Oyyfa1tQIr%2Fu97uXglhcMmYJWk%2F7LZ4Jhz6Oqmu3MxCzZEuGy3uD%2Fkc%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9ebb903a4af1b4fd-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":779,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (500)","md5":"5fe0ea7dbe3912797ad3b98b5fd98302","sha1":"c051c95348ce8051d1359caf381763984da7409e","sha256":"99b7eea568d3a8a0e9c5dd83e564a21553a29e17147713493e6ea806bf851a36","sha512":"9d21231419e3fc3c67043a9b18f8f5e9b83235471d64d0c1bd625f1ed578147ae707efbf27b317bfbcb88c0deaa72f3b1a8e5b3bf347043f2a584ad25abb931f","ssdeep":"","tlshash":"3e01f1c21c50e44c0720855160b6d61e89d64ab5ad51d9607ccc2afc4be0b8dce3f810","first_seen":"2026-04-04T19:23:11.216403Z","last_seen":"2026-04-13T15:39:51.954941Z","times_seen":7,"resource_available":true,"data":null}},"time_used":174,"timings":{"blocked":23,"dns":1,"connect":1,"send":0,"wait":128,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/js/pages-login.a4b5eb97.js","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/js/pages-login.a4b5eb97.js HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-14183\"\r\nexpires: Tue, 14 Apr 2026 03:38:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 53\r\npriority: u=3,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qXmTwe4SFwC5lPpik%2BrL2EWNCkRo0gLYNJnXMMTBU0ajr1uo3TQ2Ksc2LlNw9%2F7V3DaMDxUx5ehhHPW3G1VBoVU33ZTpD8770LnMQ8ylQTrNK7KdEdH08MYvHMr1S2hvopNEKZ0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903ebfef23eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":82307,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (38196)","md5":"2c66cfa23e57ae0cd5f966fc16a0a0c6","sha1":"cc22f940c7284c6cb486635bf3a1fbc0e416c9d6","sha256":"20258ea7af9adab02b5c840cfd726e15742c3332795b1fa7f5ea8eac0c6479a6","sha512":"f7aa41d14fe58257935082dc459aa2cc980c23c42a9983650fcd2103918f7ab11469e94b4d09d661990bd806f56bde0edafa623aa10dfc25dfec58806b75ac70","ssdeep":"1536:RmI/DrmGLpT0PtNPU9ArHMJkGEZMnryUWsoul4M:N/jWG0Mnr4M","tlshash":"31833ac8b289709463b73594057f788b7076353a510989cbf660eade9cacace403ed7d","first_seen":"2026-03-14T18:35:19.670853Z","last_seen":"2026-04-13T15:39:51.955465Z","times_seen":8,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/img/svg/icon_home1.svg","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/img/svg/icon_home1.svg HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: br\r\nage: 53\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69cb1e32-3a3\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AmzxM8zTjuI0%2FEP9oUqoVIeYXZrjiOVf6vI7uEhbco5rxrBKVyPYHj8MTJ24zUE3pZsGx5nBrcAyAIbT6NKfG7ntUPXatluIENuv1yg5ZGK0DHmkNj%2BwEHlDgwaspXqRK4VAhlE%3D\"}]}\r\ncf-ray: 9ebb903ecff223eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":931,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3d89b3c65b3b8de0ab02378026906c1a","sha1":"a172b3634b1c883c1d22d41f8746c4fde605e7f2","sha256":"19f3cfcc2a9727c72a3d1242d97933fdd6c58d339533b5a6b6c2047c5ee769af","sha512":"1078266cb30df68632310431795af4c3a28107c1c148af5ffc9f2483fa3870cfb0a46ce3572a4501e1bd2f3361182e778c5e57eb4b563164fa790f2d7afc80b3","ssdeep":"","tlshash":"7911259e97080c3cb6234b60d7463771b1370e632a09f764d83232316a11a0db47f9e8","first_seen":"2025-06-22T10:40:26.740997Z","last_seen":"2026-04-13T16:33:31.921509Z","times_seen":51,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/img/svg/icon_account.svg","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.913Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/img/svg/icon_account.svg HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-43e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 53\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=k%2Fh6iKCLYl11L2KtnbmrQ1VGEr4LxxHfrhHLR7dArzW2Mbot%2FQgsBgSYj%2BB79qFr5K1sGb1MMYpaxh6mj2RSIVyJGgUu695RIhrfc3P41DxJUUjuJzT0Yhh48ZW14mb2%2FiA0QDA%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903eeffc23eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1086,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2694870b6edfbd5f34c3f0d8bb4c306b","sha1":"053e4cc8443effe6fc5ee5ec67e5fedae92778a0","sha256":"e76e7ef6a7cb3a9eb7afa7ea01edae6816d143b52ba89463be628d973f33fc61","sha512":"ce482963a56cd2b202ebe8abfe960a37f053a4ca92a0053c0b7d96217d67dfa81b8ef535d8a11acd118ebb0ba9a822faf58780334f006a4242556aafafa057ba","ssdeep":"","tlshash":"911129dd57089d3cba324734f72176b0a12b32435f6d6264c93a28732219a4d797fdd8","first_seen":"2025-06-22T10:40:26.719187Z","last_seen":"2026-04-13T16:33:31.91478Z","times_seen":54,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xelvora-portal.com/static/js/pages-other-empty.198a97b6.js","fqdn":"xelvora-portal.com","domain":"xelvora-portal.com","tld":"com"},"ip":{"addr":"104.21.62.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://xelvora-portal.com/","date":"2026-04-13T15:39:25.934Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xelvora-portal.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 05:13:25 GMT","end":"Thu, 11 Jun 2026 05:13:24 GMT"},"fingerprint":{"sha1":"DD:D2:12:BD:E1:8C:DD:8F:80:82:E7:F6:C8:82:A5:54:42:32:1D:13","sha256":"C3:39:8E:23:DC:74:D0:F5:BC:27:8D:67:E6:24:C1:55:03:65:91:84:3E:BA:4E:5E:72:2F:B6:E2:B3:EA:D5:EC"}}},"request":{"raw":"GET /static/js/pages-other-empty.198a97b6.js HTTP/1.1\r\nHost: xelvora-portal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xelvora-portal.com/\r\nCookie: server_name_session=dafcaa6226fc8606f4afb21d8c7b7497\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 15:39:25 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 31 Mar 2026 01:06:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69cb1e32-cc9\"\r\nexpires: Tue, 14 Apr 2026 03:38:32 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 53\r\npriority: u=3,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F%2B3HBHbzFf7V9CSI7DpTw%2FoFdZVn%2BJrP6NanGF3onlD061ik8FPveOkE0wuoqjKp27AbjDBWElexcybOMjHHgv04Kj1u%2BLUbMYIIr9MNwpb%2FZEdtTO2YE2YalaW9Kf3fntcbXxM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ebb903f181023eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3273,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2725), with no line terminators","md5":"973c5ec9f0218cab85aec41a5561ee4c","sha1":"36ebe3e74746fdae24c908e6662272c57f1ae744","sha256":"068c25295da3d39daabc7e209356d5bf059bd340a71d81c0445f7740dd1a64df","sha512":"f77ad721266f123597a80b01ac59c07ffa28f352db280daa195f9e51055ab4357a79db19f42021ba70391d075f32510502ab323f292cd593bf4e4274ef572a1e","ssdeep":"","tlshash":"d661b715b1c7ec8b085658c4262f8165a4333d3d6059f891cbf1dfd91df8a9f0326e58","first_seen":"2026-03-14T18:35:19.667233Z","last_seen":"2026-04-13T15:39:51.960332Z","times_seen":8,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"xelvora-portal.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"xelvora-portal.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}