{"report_id":"f6b3843b-95a0-4b29-ad76-e5d7bc264a8f","version":6,"status":"done","tags":[],"date":"2025-12-14T00:35:31Z","url":{"schema":"http","addr":"magab2.com","fqdn":"magab2.com","domain":"magab2.com","tld":"com"},"ip":{"addr":"65.9.46.35","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.maga6n.com/pages/pc/login/index?redirect=%252Fpages%252Findex%252Findex","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"title":"Magazine Luiza","dom":{"size":134898,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19244)","md5":"a2c09cc1a2e9624210cb82c5c5de8b3a","sha1":"9b478af3a4caca9ccfc5c21529caf5bb26038433","sha256":"0d76569580ca3c10ff552e0daeeb1d38cfa245352942bc5c0c160cd3ecc3d3ca","sha512":"b5ace8f7f0f1df664c055feadf597abb0b14b3e97b10818f364a753e5ad8fba651a8e185fecf0aea7a4003e77db987d6f008bd601535f9abd6270c0fcd18572a","ssdeep":"1536:SsoGs0JA9CWJh3I4O7lySyzNx1tFQyzNxwUL+/8xLW3HjeQTSGSf5wSikihiYiks:SLX0JA9Coh3IXQThCTN/QMYCPpG","tlshash":"0dd3f9207429206ab53fc0b57165fa0f0710b173c34a6b98f5df65899fcb9a3267239e","dom_hash":"domhash7d26869b93358763b536bac6bb62e2fd","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"magab2.com","fqdn":"magab2.com","domain":"magab2.com","tld":"com"},"ip":{"addr":"65.9.46.35","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-18T00:35:31Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":18}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-13","alert":"Phishing Block","trigger":"api.innmagalu.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"magab2.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.google.no","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2001-02-26","domain_rank":92680,"first_seen":"2012-06-26T23:22:08Z","last_seen":"2025-12-07T22:19:21.122082Z","alert_count":0,"request_count":1,"received_data":580,"sent_data":792,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.maga6n.com","ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2025-12-10","domain_rank":0,"first_seen":"2025-12-13T04:45:09.921315Z","last_seen":"2025-12-13T04:45:09.921315Z","alert_count":90,"request_count":13,"received_data":1990247,"sent_data":6600,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-12-07T22:16:37.28363Z","alert_count":0,"request_count":1,"received_data":437473,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-07T22:13:56.807982Z","alert_count":0,"request_count":2,"received_data":17368,"sent_data":1072,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-07T22:17:02.440237Z","alert_count":0,"request_count":1,"received_data":15122,"sent_data":507,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api.innmagalu.com","ip":{"addr":"56.126.38.71","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2025-12-02","domain_rank":0,"first_seen":"2025-12-04T03:28:32.775396Z","last_seen":"2025-12-11T12:42:34.08563Z","alert_count":35,"request_count":7,"received_data":21412,"sent_data":3336,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"region1.analytics.google.com","ip":{"addr":"216.239.32.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22257,"first_seen":"2022-03-17T11:26:33Z","last_seen":"2025-12-07T22:21:54.576585Z","alert_count":0,"request_count":2,"received_data":1676,"sent_data":2249,"comment":"","tags":null,"fingerprints":null},{"fqdn":"magab2.com","ip":{"addr":"65.9.46.119","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2025-12-10","domain_rank":0,"first_seen":"2025-12-13T04:45:09.924431Z","last_seen":"2025-12-13T04:45:09.924431Z","alert_count":6,"request_count":1,"received_data":8869,"sent_data":479,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-pc-Home-index~pages-pc-address-index~pages-pc-blindBox-index~pages-pc-classifiedProducts-index~2c6f8859.ea6be068.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7f3e1dff49652a90a05aa116f5a8a47d","sha1":"4a4ee66efd62ced2433ba1fa664b1ac37d95d2ca","sha256":"5cd1d552d04a5d8f2f2284b9bad43c4f83507e8684a6c26dd21b116b1824ad03","sha512":"5c6187e2078c219f68611f16459b2abc92ea15a5d5b4af88ca60ecd5b18815ce12ee51590a7d1eabfe3b847d2d214244c1ca561c9df89132c4afaabf9c6a43ac","ssdeep":"384:wBv5ZZDWNA8aYNndwvXmtz7rGlkmw+YWeSDvORymuIux:wNjZDWNbaun2vXmlr1SDvyym1ux","tlshash":"20e28eb6759b351e44bfc924b9efb1292f39285f282b1914d13f75ca0a59b1c10623cf","size":32452,"data":"","first_seen":"2025-10-28T01:40:28.366989Z","last_seen":"2025-12-14T00:35:39.89694Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/index.d8541ccd.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ad462280bb839033c4d4d160c49a86a2","sha1":"1d14e8409e38d50e619e51a1b768f839027784a5","sha256":"5c0de874824f83b0739d6322206d991f59ad4790d86dd530427a59f6a14db313","sha512":"a19b3cc24ded7023e142d18220c248efe8db8307b4cb9ff334561ef856ef8baa406776c08708bf780d4925bed4754f566c767f4fd68d6010f3c44176ccdde0d8","ssdeep":"6144:6FTtbvQQoLdSxW2gJfB0JA9C4h3InTfs6AZwX:63vAmWTJ5M","tlshash":"d3842a89f599626e51777062311ff9072a323de1840ce485f7ba85885fcfa4a933a73c","size":405277,"data":"","first_seen":"2025-12-03T01:21:44.8723Z","last_seen":"2025-12-14T00:35:39.900887Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/chunk-vendors.4edf9605.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f939f98fea1bddd982f83e1a46468fa0","sha1":"97d014f3f89a4e4ca783fc354364e890a01ea3dd","sha256":"330a807797247095968a80b7d3df5ffec05f17b93ef1903dfaec72c63751329d","sha512":"72048e7620fce8eee2602a71c02139bf00b85ebf59138161639ff42703097932456a9df413733a5e83a9b3cbdc632457e10ad2ecfc9ff72f35ceb4dbeab684cb","ssdeep":"12288:wRZgR8eSXt7cDJo0WVM4HGwilZgzMQajS5RREcU6ylOOvbJeU:4gRm7KW7M4HGwifgzMnm9EcU6ylOOvj","tlshash":"7c45198cb295b46946d760e0403f120bb237686db40ad4edf769e4e66dbd84d212bf38","size":1232186,"data":"","first_seen":"2025-10-28T01:40:28.398243Z","last_seen":"2025-12-14T00:35:39.912944Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-index-index.3baed0f6.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9594703f6f6cc5c52e7af648eafb3d1b","sha1":"1b0246de271a9c3d20bae0f414dbdd06790923c9","sha256":"0c95e186e84ef24eb65dae0afeaca6686eb234930fdae9269de5a10ff22402ee","sha512":"92b3071790974e42e2f68fed93c8a04462d3c6669005e16b060a2df0c0b1f706018868a10401f05d95dd6d86416ead0dc57c92ea6040560a1867506593b7a63f","ssdeep":"","tlshash":"1221dd8eb1c2f018839b71a8113f215d683b745c1919a492deb091c22af15ce5263ebe","size":1253,"data":"","first_seen":"2025-10-28T01:40:28.392461Z","last_seen":"2025-12-14T00:35:39.907105Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-6GDR027JWN","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d882e416d0b690aac356da357420b376","sha1":"7c22d256edf9064d678e6da57e038d81b9dea6c1","sha256":"493a043a0edf97fa65def97e8e8b46584a5f51d8689d37f127dabeaedd4d2802","sha512":"277586daa94d53a0d5943e02e49f8510307e789dddb24428ce1cd61ccdb6fede3e8f59875f2ec80ebe5642f2147ec68f7769ff39d1dc1196ed50fa39513e0c92","ssdeep":"6144:LBIe7ma2bulKY/1u99xHDmHYmyBFzvnsyRO6jJWoNPad4FpC1pY:WC8bu7/1mbrnsy39WbMpL","tlshash":"ad941ace73c674269396e078503f118ba57b29e2b45cc896f189cce41e74a9a4237f7c","size":436869,"data":"","first_seen":"2025-12-14T00:35:39.904769Z","last_seen":"2025-12-14T00:35:39.904769Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-mobile-address-details~pages-mobile-deposit-index~pages-mobile-login-index~pages-mobile-withdr~aa6a801e.f016b043.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d4d7b8a0e9619947a2ef922090170eb8","sha1":"4f604126b82551b024346842f337a0b51d53cbd8","sha256":"049ef9ed20045d66695e9484b98ae564f3b3e837d12cfe2945ac5023f4878fed","sha512":"4e7f573e5b4a07716e7e3a16ead4ff4a2d08ccc072bd94dfb54565a0a2146b74514b57c2b5e008c2fe76b8e2d3e3cf2dda6d38dd5c4536cdfeae0dcd45edc0c1","ssdeep":"192:L9SFA7y+qs6wQ6fhEdgpIwh/6cttKF0EkNMMmqFl04DhKIaxCWjPweGsWtwaeksE:OB+qs6wQehE6KgMMmil04w1i+M","tlshash":"df520b24b1c4f8a34e97e075719bb60b12123291d9155a44f7f6a0e25e9becd6332f3c","size":13674,"data":"","first_seen":"2025-10-28T01:40:28.374789Z","last_seen":"2025-12-14T00:35:39.902535Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-mobile-address-details~pages-mobile-checkouts-index~pages-mobile-checkoutsResult-index~pages-m~eab5cf55.eba795d2.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b21d6f58132f9a221a2fdadc882661e3","sha1":"ae6ef908c2d30e9ddec37ae9ae80e0f32221c553","sha256":"471eb6cb6a1087e75e8055232109b27962eb04d5684ba2faafe81620201acf1d","sha512":"60f242da2627f732f3577ae8658f17452050617575b944a1c3f9a3b948586dc62006a054f393a4d810bed5002d0fd09ad15bc2c5b35dfd6adb883fbdd116956c","ssdeep":"384:MInr0F4I8byuREPkdUMztZsn332WAEPknl0WQLqrLJOLtBiNb+Kn2L4MoDx4LfSB:jQfBBMZZs332WhkmWph0EVB2L40Fq","tlshash":"4bf2098c71e7f16946473178102fb00bb22b3d68954d7442f3a8d8d2fe6995ea133b7a","size":35680,"data":"","first_seen":"2025-10-28T01:40:28.372817Z","last_seen":"2025-12-14T00:35:39.900079Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"eb2a943cb0d827c978a4cf56bc7ca421","sha1":"7c236314080c6a7edfa28bb3d7da439ef4d7c90b","sha256":"c9948a5953e90339fc7ebaf2430663dba1e3c769ff343198e9edcaa190eb643b","sha512":"580577b12885f7196330c0bab59d1373f6eaafd6df025268b102f8de1503e2d8f3d67c16286708cffbe9ba9c49be5a121dad843bc08a25cd1a39a0c8e5fb663f","ssdeep":"","tlshash":"9ae0d88360b7294c02208156704ac5075fa60877dfd649613c8d67a58ff9f5bc56a869","size":386,"data":"","first_seen":"2025-03-09T06:58:10.15529Z","last_seen":"2025-12-14T00:35:39.913582Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"dcf0c112df3c8f882e1ace5ab76fa40d","sha1":"8967ff91532c3fc0d6f4e017d661e11d38a0a712","sha256":"a4870e5411a9908ef5b5a6e1f12fed732f6c059fc667011f05995c9be073f687","sha512":"cd3da1977cfbefdc3c925d6a766e2f965872fa150b0521a396d9e1bf59d8df862c65d65afc7c83e4ba9899911cc789bc594e9623e49be2104fe63c7ab8866c54","ssdeep":"","tlshash":"aed05e9912678d7096e32a8a8f2fa4027055a3036481ec213e4da3045f24f1fa755a94","size":264,"data":"","first_seen":"2025-10-28T01:40:28.396337Z","last_seen":"2025-12-14T00:35:39.914192Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"f28e435d98996fad16fc039bb85d28e6","sha1":"bdd0cd96f112b17f95e330593cf15d60a0fc23a5","sha256":"ff030928273b8b5479e612a8a11857fc3db3fda13093b5abfe5731bd8f6abe59","sha512":"77cad1b2b5ed70dd4e82d3ad47df508f300e5c1904e6c383032c66f5cfe8e1a69bbe19d5ae1ea095064e9f3a74e5eb827862c47f7ff327c1f0b340b8f5e71502","ssdeep":"","tlshash":"1d01265e59bb14b6a063b87f23cfbb812a33919354449e413e6ccb90df912338a55ac5","size":724,"data":"","first_seen":"2025-10-28T01:40:28.399748Z","last_seen":"2025-12-14T00:35:39.914819Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"65336c8f6ff43beb313dad9d724c0ea4","sha1":"020eb95f71fa23e0f7b2e37ea5d108f6cb914a39","sha256":"879313edea6f7bb6ae77f04302493b0ab0f7abf282a2d49cedb37c93daad5577","sha512":"33e8b68cf7a8f1712c6e493c6118d6ed3e119cadba31a2cf61d55c41973f7cead1fd099587d461f8b4831e0af4172f6669d35d1b8af6d4c1a33c33dcef205d0b","ssdeep":"","tlshash":"9561af69487326018477f9e76717200ab9a3a0971127ee86774dc7705fc216ad3a3fec","size":3429,"data":"","first_seen":"2025-10-28T01:40:28.401143Z","last_seen":"2025-12-14T00:35:39.915401Z","times_seen":27,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/vsclick.min.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"aabf0cd213255b6f30ddf569b64cd2b4","sha1":"fda2833dd376d1a6a4d4eda15ffcb8d09f2dd7ff","sha256":"07784be505e38e3b4c3e4f8134e22004555923b599fbc9c979f9277d22e6503d","sha512":"5c075ee2a8369bc654d7c08235a4cb415456cf26d4de8ae285ba75bebf83de54a6661e25513be5599a0ab2b6c6873cf47da1ff3dae32fc52f589c461f63ff509","ssdeep":"768:Qi8TluX1aAl58Ta6YxXL8mLhKaPtKfhlEWySRbrkWMfQ0FLrCy4qdN54:QPgX1v4alXLbEfcWySRbrXMody/dN54","tlshash":"1e530055b3dcb59d83c2f310c13fd80ae5bee8b9519a80bd669cd0a8687095cd339c9d","size":64126,"data":"","first_seen":"2025-10-28T01:40:28.385331Z","last_seen":"2025-12-14T00:35:39.907823Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-pc-login-index.0226fcc5.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0f760b513a09e0b58d7d4e39f76a3b99","sha1":"b84d321f6c1b61f7bbd6e8b40d63ef2009e065a5","sha256":"20ddb998bfaee2d3bd5cadf43e8f3756656a4ace62c996c053e1112f78136e82","sha512":"2b5e2feacd1d7523cb94c74be69c2a80d69ec57a4ce74a3126ea32e14cf00cc8855d87dac9284858e161f8d7566761e90dd4cddf5e5249596b4663d010c151b5","ssdeep":"384:MKKNKFiKKXl/SAUU5c9Dqfw59Bjj9BWuezlapjaQzL1Rc4Eg30Boz9z9Oyda/SAG:MKKNKQKKXl/SAUU69gELk4Eg30BozJ9B","tlshash":"5eb20a1161de183a243f66bc309e615d2c2ae533804f86a9f7f065d6d9adc9d323339d","size":23539,"data":"","first_seen":"2025-10-28T01:40:28.390148Z","last_seen":"2025-12-14T00:35:39.909077Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-04-04T11:43:16.044598Z","times_seen":14255,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"www.maga6n.com/","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-14T00:35:09.578Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:04 GMT\r\ncontent-encoding: gzip\r\ndate: Sun, 14 Dec 2025 00:35:09 GMT\r\netag: W/\"692ec678-20c4\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: kU-MJfo2_Y7dRfPC6WN97LLCJI3DXIJJ2oe42YU-ixDBGfhe59kLLg==\r\nage: 68295\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8388,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1508), with CRLF line terminators","md5":"a3fbbc9e0bc199fddf8cb0cc628d4c1e","sha1":"262bc5a56090d653066508acd72a40f0274302e6","sha256":"55f98cf9f3102ebc067a0e6cb44fcf113149baabd6b8ab21480662d17548f6d4","sha512":"6c7b018ee2004cc496c21e31a4883a26ab0d63bc5933630e24b27f3587728b0041c41b07325860a1906f0f56a4538dced4f7056f8707e1e80334a6c8e2315f71","ssdeep":"96:TREXb/T1ELuhHRGxwc52BFyqRH8+JFc7BJVhfr2uqQApKTqq3Qc1WYExUu:NEXb/BPHwh1mHwBJ1ApHAs","tlshash":"530284a74c2251064532a7b7eb2bf00def73a06351529ac27acc87644ff06958663fec","first_seen":"2025-12-03T01:21:44.89556Z","last_seen":"2025-12-14T00:35:39.892824Z","times_seen":19,"resource_available":false,"data":null}},"time_used":513,"timings":{"blocked":245,"dns":198,"connect":1,"send":0,"wait":23,"receive":0,"ssl":44},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Poppins:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:40:14 GMT","end":"Mon, 16 Feb 2026 08:40:13 GMT"},"fingerprint":{"sha1":"DF:9F:85:F6:4A:53:64:E2:D3:A4:9C:9B:0A:4D:88:F2:DD:8C:92:6C","sha256":"99:65:94:2E:11:0B:3A:F6:B6:E7:38:F9:58:D0:01:2A:B6:CA:D4:2D:38:BB:87:ED:72:23:CA:63:32:85:95:35"}}},"request":{"raw":"GET /css?family=Poppins:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 14 Dec 2025 00:35:10 GMT\r\ndate: Sun, 14 Dec 2025 00:35:10 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14436,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"8942c3e84363f9336f39825e411a3eb6","sha1":"72e5d14acad69227dd70f45d14a79916af182590","sha256":"fafaa1182966886d6639b39d258e640f4771a92a649637cd5fcd062d8fdeadfd","sha512":"7d06e5fc22f878dcbc685de0a55a28778c511afb5c9a55a1acb01afb0bf1f4a28af901211a82d6664eb59f51ec50543bbec5511a0679b119bb890affcfe9a3ba","ssdeep":"192:Hn6zn6mon6bOROmoOnN6AN6roN64E6gE6LoE6Yr6Fr6Eor6dC65C6ooC6OhHdPgq:HqWSUq+DnLami0A0BNi","tlshash":"d7527991087be114ab871cc122cf7d36ee0ea254b850e578abfd0cd8ad9bc654361b2d","first_seen":"2025-09-17T20:27:34.533528Z","last_seen":"2026-04-04T12:00:05.609852Z","times_seen":316,"resource_available":false,"data":null}},"time_used":386,"timings":{"blocked":177,"dns":1,"connect":7,"send":0,"wait":20,"receive":0,"ssl":178},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.innmagalu.com/api/goods/home?t=1765672510000\u0026lang=br","fqdn":"api.innmagalu.com","domain":"innmagalu.com","tld":"com"},"ip":{"addr":"56.126.38.71","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.innmagalu.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 06 Dec 2025 14:45:57 GMT","end":"Fri, 06 Mar 2026 14:45:56 GMT"},"fingerprint":{"sha1":"09:B0:DC:CE:8C:3E:F2:CB:B6:E8:43:01:DC:E6:A3:D4:D3:FC:56:14","sha256":"20:FB:64:B4:33:CC:0F:C2:22:69:77:93:34:D4:13:64:3A:C2:E3:3C:4D:09:9E:C0:68:86:96:EB:7D:84:DF:1D"}}},"request":{"raw":"GET /api/goods/home?t=1765672510000\u0026lang=br HTTP/1.1\r\nHost: api.innmagalu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: br\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 14 Dec 2025 00:35:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 1115\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: br\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6800,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4dcf789f36fc631844ad47c5134f1efc","sha1":"66298bf8d194609918c6ddf9dcd2573f3a02b9e4","sha256":"8affbecdf7534638fb5985dbcabb3998bca8efeb804b8ff0b8ed156ff9d60585","sha512":"bbcc6d1015d68f6f012fee0a71a4b3a482f3e42c680f11115c3ebcfb34b45d063d42bf0c52ca460e57a8822688ac9048d04a2de7ccf72647e516bece00e23893","ssdeep":"96:dao6aorIafanaZDLaDVamL8ax3amYCanWOaDVszaADLaDVamL8ax3amYCanWOaD6:h+rtIYpWhVsjIYpWhVssIYpWhVsg","tlshash":"82e11e8a1cc83cb7d37717e1944b6281e58f806b7ef9b71f50f58958c1d222a8636039","first_seen":"2025-12-03T01:21:44.874413Z","last_seen":"2025-12-14T00:35:39.89516Z","times_seen":19,"resource_available":false,"data":null}},"time_used":1186,"timings":{"blocked":458,"dns":18,"connect":216,"send":0,"wait":268,"receive":0,"ssl":221},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-13","alert":"Phishing Block","trigger":"api.innmagalu.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/img/networkAnomaly.59d0ebce.png","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/img/networkAnomaly.59d0ebce.png HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 59646\r\nage: 211645\r\nserver: nginx\r\ndate: Thu, 11 Dec 2025 13:47:45 GMT\r\nlast-modified: Tue, 02 Dec 2025 10:59:03 GMT\r\naccept-ranges: bytes\r\netag: \"692ec677-e8fe\"\r\nexpires: Sat, 10 Jan 2026 13:47:45 GMT\r\ncache-control: max-age=2592000\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: gEAJSHyrukpr_3iKtWqeUrrR9iwrg6AIKdM20bgn3w3pFYdwRAoeTQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":59646,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 492 x 482, 8-bit colormap, non-interlaced","md5":"59d0ebce0f1d8920336cb9485cf4669f","sha1":"67b592dc3a6316757334d625d81b102bfb8fbc24","sha256":"a2a3e46779ba8d1ab526f459a94a9ce090c4d9ee12e3db88f6ba76fc379c53d6","sha512":"c62187fce724a3b36f226906f6a9ce27c3aa58d961a097a287800661b4290ab447efe5be944109cd603376bce5f1c825c874688b51ed4ed066fedea1e8de07c6","ssdeep":"768:CAXuikAZGhlxT3LVY+0U27bstzHjrCrN4kmVyYG8dm5EPbh46nhMN1cMDcDgSmhZ:Crik1tu6TPUWk6yZIRxnhMN1cM4k8pa7","tlshash":"144302447b92a957f1758b164c55fadb2f373a834fa29491f613ea48d823192ef33803","first_seen":"2025-10-28T01:40:28.380825Z","last_seen":"2025-12-14T00:35:39.896096Z","times_seen":28,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-pc-Home-index~pages-pc-address-index~pages-pc-blindBox-index~pages-pc-classifiedProducts-index~2c6f8859.ea6be068.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.556Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/js/pages-pc-Home-index~pages-pc-address-index~pages-pc-blindBox-index~pages-pc-classifiedProducts-index~2c6f8859.ea6be068.js HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/pages/pc/login/index?redirect=%252Fpages%252Findex%252Findex\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 6346\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:03 GMT\r\ncontent-encoding: br\r\ndate: Sun, 14 Dec 2025 00:35:10 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 10:49:24 GMT\r\netag: W/\"692ec677-7ec4\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: ka-V-ot0qbKmxUNjIl4hmBnK8M9beaByXy6mLL9BLINiSOxn-_W6Tg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":32452,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32394), with no line terminators","md5":"7f3e1dff49652a90a05aa116f5a8a47d","sha1":"4a4ee66efd62ced2433ba1fa664b1ac37d95d2ca","sha256":"5cd1d552d04a5d8f2f2284b9bad43c4f83507e8684a6c26dd21b116b1824ad03","sha512":"5c6187e2078c219f68611f16459b2abc92ea15a5d5b4af88ca60ecd5b18815ce12ee51590a7d1eabfe3b847d2d214244c1ca561c9df89132c4afaabf9c6a43ac","ssdeep":"384:wBv5ZZDWNA8aYNndwvXmtz7rGlkmw+YWeSDvORymuIux:wNjZDWNbaun2vXmlr1SDvyym1ux","tlshash":"20e28eb6759b351e44bfc924b9efb1292f39285f282b1914d13f75ca0a59b1c10623cf","first_seen":"2025-10-28T01:40:28.366989Z","last_seen":"2025-12-14T00:35:39.89694Z","times_seen":28,"resource_available":true,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/bitbug_favicon.ico","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:11.320Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/bitbug_favicon.ico HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nCookie: _ga_6GDR027JWN=GS2.1.s1765672510$o1$g0$t1765672510$j60$l0$h717988038; _ga=GA1.1.1723285402.1765672511\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/x-icon\r\ncontent-length: 280\r\nage: 46963\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:04 GMT\r\naccept-ranges: bytes\r\ndate: Sat, 13 Dec 2025 11:32:28 GMT\r\netag: \"692ec678-118\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: 2kxhykKMIzdltHklT2XnGc0wDyn5kiptj0evUr7rP47upvkFbzqJPQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":280,"size_decoded":0,"mime_type":"image/x-icon","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 16x16, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"a25717272f11979ed9239963c228e26a","sha1":"7ed364c52ae81971ee8caaadea6e18a86ce51a5d","sha256":"bbb96a5143447d2a5bb6e9c10920bbc4136a4876ec045bc95ac9542b4ef1c03d","sha512":"13b657a4b887258edbe9b70759a3fc919d4a7819ccb5dd36e54558f3c644f4109dbecfa1c20682566f0b4ece61a9b7c780fbfc084aa07c49b5d3c42c67032872","ssdeep":"","tlshash":"7bd0eb399c5100b1b8032882d6028b8230dbc14850630a8c1afea5f293f68b84ac263c","first_seen":"2023-05-10T16:47:49Z","last_seen":"2025-12-14T00:35:39.897995Z","times_seen":50,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"api.innmagalu.com/mine.io","fqdn":"api.innmagalu.com","domain":"innmagalu.com","tld":"com"},"ip":{"addr":"56.126.38.71","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.496Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.innmagalu.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 06 Dec 2025 14:45:57 GMT","end":"Fri, 06 Mar 2026 14:45:56 GMT"},"fingerprint":{"sha1":"09:B0:DC:CE:8C:3E:F2:CB:B6:E8:43:01:DC:E6:A3:D4:D3:FC:56:14","sha256":"20:FB:64:B4:33:CC:0F:C2:22:69:77:93:34:D4:13:64:3A:C2:E3:3C:4D:09:9E:C0:68:86:96:EB:7D:84:DF:1D"}}},"request":{"raw":"GET /mine.io HTTP/1.1\r\nHost: api.innmagalu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://www.maga6n.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: XGTF8MUPHptn8nzfclxfBg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx\r\nDate: Sun, 14 Dec 2025 00:35:11 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-Websocket-Accept: XGteeGIsOjdEWhzjzHY0DI2IouM=\r\nSec-Websocket-Version: 13\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":1955,"timings":{"blocked":-1,"dns":650,"connect":865,"send":0,"wait":216,"receive":0,"ssl":876},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-13","alert":"Phishing Block","trigger":"api.innmagalu.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-mobile-address-details~pages-mobile-checkouts-index~pages-mobile-checkoutsResult-index~pages-m~eab5cf55.eba795d2.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/js/pages-mobile-address-details~pages-mobile-checkouts-index~pages-mobile-checkoutsResult-index~pages-m~eab5cf55.eba795d2.js HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/pages/pc/login/index?redirect=%252Fpages%252Findex%252Findex\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 29425\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:03 GMT\r\ncontent-encoding: br\r\ndate: Sun, 14 Dec 2025 00:35:10 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 04:24:45 GMT\r\netag: W/\"692ec677-8b60\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: lEX0QZaiV0sOicIMX6ziZ8oHIXTD0gc7QuW0XB12KN938s2oi_S5YA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":35680,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (35382), with no line terminators","md5":"b21d6f58132f9a221a2fdadc882661e3","sha1":"ae6ef908c2d30e9ddec37ae9ae80e0f32221c553","sha256":"471eb6cb6a1087e75e8055232109b27962eb04d5684ba2faafe81620201acf1d","sha512":"60f242da2627f732f3577ae8658f17452050617575b944a1c3f9a3b948586dc62006a054f393a4d810bed5002d0fd09ad15bc2c5b35dfd6adb883fbdd116956c","ssdeep":"384:MInr0F4I8byuREPkdUMztZsn332WAEPknl0WQLqrLJOLtBiNb+Kn2L4MoDx4LfSB:jQfBBMZZs332WhkmWph0EVB2L40Fq","tlshash":"4bf2098c71e7f16946473178102fb00bb22b3d68954d7442f3a8d8d2fe6995ea133b7a","first_seen":"2025-10-28T01:40:28.372817Z","last_seen":"2025-12-14T00:35:39.900079Z","times_seen":28,"resource_available":true,"data":null}},"time_used":66,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":66,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/index.d8541ccd.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/js/index.d8541ccd.js HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 35758\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:03 GMT\r\ncontent-encoding: br\r\ndate: Sat, 13 Dec 2025 14:39:12 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 02:39:12 GMT\r\netag: W/\"692ec677-62f1d\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: d1r-ajn8eUeKV50PN1nXeA2O7VAlxXI5rv2cB5mHqMbbrXdPiHk5Dg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":405277,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64722), with no line terminators","md5":"ad462280bb839033c4d4d160c49a86a2","sha1":"1d14e8409e38d50e619e51a1b768f839027784a5","sha256":"5c0de874824f83b0739d6322206d991f59ad4790d86dd530427a59f6a14db313","sha512":"a19b3cc24ded7023e142d18220c248efe8db8307b4cb9ff334561ef856ef8baa406776c08708bf780d4925bed4754f566c767f4fd68d6010f3c44176ccdde0d8","ssdeep":"6144:6FTtbvQQoLdSxW2gJfB0JA9C4h3InTfs6AZwX:63vAmWTJ5M","tlshash":"d3842a89f599626e51777062311ff9072a323de1840ce485f7ba85885fcfa4a933a73c","first_seen":"2025-12-03T01:21:44.8723Z","last_seen":"2025-12-14T00:35:39.900887Z","times_seen":19,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.innmagalu.com/api/blogger/get_banners?t=1765672510000\u0026lang=br","fqdn":"api.innmagalu.com","domain":"innmagalu.com","tld":"com"},"ip":{"addr":"56.126.38.71","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.innmagalu.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 06 Dec 2025 14:45:57 GMT","end":"Fri, 06 Mar 2026 14:45:56 GMT"},"fingerprint":{"sha1":"09:B0:DC:CE:8C:3E:F2:CB:B6:E8:43:01:DC:E6:A3:D4:D3:FC:56:14","sha256":"20:FB:64:B4:33:CC:0F:C2:22:69:77:93:34:D4:13:64:3A:C2:E3:3C:4D:09:9E:C0:68:86:96:EB:7D:84:DF:1D"}}},"request":{"raw":"GET /api/blogger/get_banners?t=1765672510000\u0026lang=br HTTP/1.1\r\nHost: api.innmagalu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: br\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 14 Dec 2025 00:35:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 455\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: br\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2269,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f448ba5e26eb18c74fb15620da03f75c","sha1":"075f7da914c4f4c286111c770601a27036741272","sha256":"5e973598f25cb98d99f0b0570bb3d75e45c634c2ff96ffbbc67a5df11216d260","sha512":"0ce23621d2d0616f8cccc13d54590595fa9ac224ae531f5f5024e7d9a5ca4844cf1a691dafa2b09ba7506a2e33f1a9af4353cc43e1029e7a347082b0cee95801","ssdeep":"","tlshash":"1a41fb512decb9abc29b13c11c8f1356c9eb60d3e569a74337e86c6490a90d305bf35e","first_seen":"2025-12-03T01:21:44.890429Z","last_seen":"2025-12-14T00:35:39.901619Z","times_seen":19,"resource_available":false,"data":null}},"time_used":1132,"timings":{"blocked":452,"dns":16,"connect":214,"send":0,"wait":226,"receive":0,"ssl":220},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-13","alert":"Phishing Block","trigger":"api.innmagalu.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.innmagalu.com/api/goods/home?t=1765672510000\u0026lang=br","fqdn":"api.innmagalu.com","domain":"innmagalu.com","tld":"com"},"ip":{"addr":"56.126.38.71","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.innmagalu.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 06 Dec 2025 14:45:57 GMT","end":"Fri, 06 Mar 2026 14:45:56 GMT"},"fingerprint":{"sha1":"09:B0:DC:CE:8C:3E:F2:CB:B6:E8:43:01:DC:E6:A3:D4:D3:FC:56:14","sha256":"20:FB:64:B4:33:CC:0F:C2:22:69:77:93:34:D4:13:64:3A:C2:E3:3C:4D:09:9E:C0:68:86:96:EB:7D:84:DF:1D"}}},"request":{"raw":"GET /api/goods/home?t=1765672510000\u0026lang=br HTTP/1.1\r\nHost: api.innmagalu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: br\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 14 Dec 2025 00:35:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 1115\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: br\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6800,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4dcf789f36fc631844ad47c5134f1efc","sha1":"66298bf8d194609918c6ddf9dcd2573f3a02b9e4","sha256":"8affbecdf7534638fb5985dbcabb3998bca8efeb804b8ff0b8ed156ff9d60585","sha512":"bbcc6d1015d68f6f012fee0a71a4b3a482f3e42c680f11115c3ebcfb34b45d063d42bf0c52ca460e57a8822688ac9048d04a2de7ccf72647e516bece00e23893","ssdeep":"96:dao6aorIafanaZDLaDVamL8ax3amYCanWOaDVszaADLaDVamL8ax3amYCanWOaD6:h+rtIYpWhVsjIYpWhVssIYpWhVsg","tlshash":"82e11e8a1cc83cb7d37717e1944b6281e58f806b7ef9b71f50f58958c1d222a8636039","first_seen":"2025-12-03T01:21:44.874413Z","last_seen":"2025-12-14T00:35:39.89516Z","times_seen":19,"resource_available":false,"data":null}},"time_used":1250,"timings":{"blocked":440,"dns":1,"connect":218,"send":0,"wait":366,"receive":0,"ssl":222},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-13","alert":"Phishing Block","trigger":"api.innmagalu.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-mobile-address-details~pages-mobile-deposit-index~pages-mobile-login-index~pages-mobile-withdr~aa6a801e.f016b043.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.560Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/js/pages-mobile-address-details~pages-mobile-deposit-index~pages-mobile-login-index~pages-mobile-withdr~aa6a801e.f016b043.js HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/pages/pc/login/index?redirect=%252Fpages%252Findex%252Findex\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 35754\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:03 GMT\r\ncontent-encoding: br\r\ndate: Sat, 13 Dec 2025 14:39:16 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 02:39:16 GMT\r\netag: W/\"692ec677-356a\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: FVb0twv-aqMY0QWiqD17SPPrXIqLDZNpnsGRQVtwZeIH2OmuaCEGzQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":13674,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (13666), with no line terminators","md5":"d4d7b8a0e9619947a2ef922090170eb8","sha1":"4f604126b82551b024346842f337a0b51d53cbd8","sha256":"049ef9ed20045d66695e9484b98ae564f3b3e837d12cfe2945ac5023f4878fed","sha512":"4e7f573e5b4a07716e7e3a16ead4ff4a2d08ccc072bd94dfb54565a0a2146b74514b57c2b5e008c2fe76b8e2d3e3cf2dda6d38dd5c4536cdfeae0dcd45edc0c1","ssdeep":"192:L9SFA7y+qs6wQ6fhEdgpIwh/6cttKF0EkNMMmqFl04DhKIaxCWjPweGsWtwaeksE:OB+qs6wQehE6KgMMmil04w1i+M","tlshash":"df520b24b1c4f8a34e97e075719bb60b12123291d9155a44f7f6a0e25e9becd6332f3c","first_seen":"2025-10-28T01:40:28.374789Z","last_seen":"2025-12-14T00:35:39.902535Z","times_seen":28,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/img/login_logo.3bb148a8.png","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/img/login_logo.3bb148a8.png HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/pages/pc/login/index?redirect=%252Fpages%252Findex%252Findex\r\nCookie: _ga_6GDR027JWN=GS2.1.s1765672510$o1$g0$t1765672510$j60$l0$h717988038; _ga=GA1.1.1723285402.1765672511\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncontent-length: 10452\r\nage: 223633\r\nserver: nginx\r\ndate: Thu, 11 Dec 2025 10:27:56 GMT\r\nlast-modified: Tue, 02 Dec 2025 10:59:03 GMT\r\naccept-ranges: bytes\r\netag: \"692ec677-28d4\"\r\nexpires: Sat, 10 Jan 2026 10:27:56 GMT\r\ncache-control: max-age=2592000\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: uiYwEixwbrLk-vh3nWDr3Vxhbpe88zGUAJAJVs4SeJ5P4_LO8j7PKw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10452,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 426 x 92, 8-bit/color RGBA, non-interlaced","md5":"3bb148a82e7e3d2f2de373c83f8c10c4","sha1":"224663cd267d926ea12e11c7f7bc44e2291bceab","sha256":"ca804dc0172caf60697f488f2c595da0857087353045946ac2671b72873f6f7a","sha512":"d9da8a03ef60fd9d7ee1a754f9fb45e05c104d05e8276ee6ff0ce0ee99eb2c25481f29192f49e523f101f19474429900d66840121d4aba704eb4d5a507df7e42","ssdeep":"192:MrHMw7R3DZFOVaBcpHSZhGy9TANozRSk8cUvr3Jh+RXINiRBmMsMf:MrHMGRTfsFHSZhGlnk8DD3JwXI4mMHf","tlshash":"2422bf15634e3ff5cb874678852259bf40da0c5f487a17836b0aa7fa4e779c0b2f5046","first_seen":"2025-10-28T01:40:28.377927Z","last_seen":"2025-12-14T00:35:39.903353Z","times_seen":28,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"region1.analytics.google.com/g/collect?v=2\u0026tid=G-6GDR027JWN\u0026gtm=45je5ca1v9209195821za200zd9209195821\u0026_p=1765672510303\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=syphamo\u0026dma=1\u0026cid=1723285402.1765672511\u0026ecid=717988038\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_eu=AEAAAAQ\u0026_s=2\u0026tag_exp=103116026~103200004~104527906~104528501~104684208~104684211~105391253~115583767~115938465~115938469~116184927~116184929~116217636~116217638~116251938~116251940~116744866\u0026sid=1765672510\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fwww.maga6n.com%2Fpages%2Fpc%2Flogin%2Findex%3Fredirect%3D%25252Fpages%25252Findex%25252Findex\u0026dt=Magazine%20Luiza\u0026en=scroll\u0026ep.debug_mode=false\u0026ep.site_name=www.maga6n.com\u0026epn.percent_scrolled=90\u0026tfd=6610","fqdn":"region1.analytics.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"216.239.32.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:15.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:38:53 GMT","end":"Mon, 16 Feb 2026 08:38:52 GMT"},"fingerprint":{"sha1":"14:1E:23:68:0E:D0:A1:C7:ED:6A:FE:20:1B:06:FE:F9:83:B2:99:F5","sha256":"61:AF:E1:FE:D1:A6:4C:C2:5B:60:60:94:B3:7F:5C:5D:34:BE:8E:AB:21:42:8A:97:07:E7:8A:B7:2C:91:5D:0D"}}},"request":{"raw":"POST /g/collect?v=2\u0026tid=G-6GDR027JWN\u0026gtm=45je5ca1v9209195821za200zd9209195821\u0026_p=1765672510303\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=syphamo\u0026dma=1\u0026cid=1723285402.1765672511\u0026ecid=717988038\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_eu=AEAAAAQ\u0026_s=2\u0026tag_exp=103116026~103200004~104527906~104528501~104684208~104684211~105391253~115583767~115938465~115938469~116184927~116184929~116217636~116217638~116251938~116251940~116744866\u0026sid=1765672510\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fwww.maga6n.com%2Fpages%2Fpc%2Flogin%2Findex%3Fredirect%3D%25252Fpages%25252Findex%25252Findex\u0026dt=Magazine%20Luiza\u0026en=scroll\u0026ep.debug_mode=false\u0026ep.site_name=www.maga6n.com\u0026epn.percent_scrolled=90\u0026tfd=6610 HTTP/1.1\r\nHost: region1.analytics.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.maga6n.com/\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 204 No Content\r\naccess-control-allow-origin: https://www.maga6n.com\r\ndate: Sun, 14 Dec 2025 00:35:15 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:170:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:170:0\r\nreport-to: {\"group\":\"ascnsrsggc:170:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:170:0\"}],}\r\nserver: Golfe2\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/index.2da1efab.css","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.062Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/index.2da1efab.css HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 7409\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:04 GMT\r\ncontent-encoding: br\r\ndate: Sun, 14 Dec 2025 00:35:10 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 10:31:40 GMT\r\netag: W/\"692ec678-178f9\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: a3uIBP8A5q2LAXEgRcrz8aGVmyYZbkhxr0J7KNw-pxumeu6TPspB_Q==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":96505,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"73ae6c583d02d78f81e3f18860a2899a","sha1":"07df9233fc11dddc34fbf519b891d40b2ac29c0f","sha256":"e97de9a247807f12d74101e9f736250b2410be4e1ed3d17ed875e4b08cf66c83","sha512":"da54ba9dbe06d8d763f3cfd64cf5babb54e761e3208c7a2f23e845290c48db8c115bb86c24262cd6c9a96ff2e51674c6d86439e1814baf2de7980f5c06349921","ssdeep":"1536:OlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nKhlvbc:VApuK7hmVrS1Wu3iG41nKPI","tlshash":"1893f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2024-01-02T00:07:11Z","last_seen":"2026-04-04T11:05:01.838645Z","times_seen":5461,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-6GDR027JWN","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.071Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:39:01 GMT","end":"Mon, 16 Feb 2026 08:39:00 GMT"},"fingerprint":{"sha1":"3B:8E:72:21:DE:8E:AD:CE:CE:A1:03:B1:1B:8A:49:82:BF:EF:A7:67","sha256":"9F:15:0E:45:14:D4:7B:C5:3D:5B:E6:28:DF:D6:82:06:67:87:30:6B:A0:EC:B4:CE:F6:F3:CB:98:F5:12:A1:78"}}},"request":{"raw":"GET /gtag/js?id=G-6GDR027JWN HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 14 Dec 2025 00:35:10 GMT\r\nexpires: Sun, 14 Dec 2025 00:35:10 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 143912\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":436869,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"d882e416d0b690aac356da357420b376","sha1":"7c22d256edf9064d678e6da57e038d81b9dea6c1","sha256":"493a043a0edf97fa65def97e8e8b46584a5f51d8689d37f127dabeaedd4d2802","sha512":"277586daa94d53a0d5943e02e49f8510307e789dddb24428ce1cd61ccdb6fede3e8f59875f2ec80ebe5642f2147ec68f7769ff39d1dc1196ed50fa39513e0c92","ssdeep":"6144:LBIe7ma2bulKY/1u99xHDmHYmyBFzvnsyRO6jJWoNPad4FpC1pY:WC8bu7/1mbrnsy39WbMpL","tlshash":"ad941ace73c674269396e078503f118ba57b29e2b45cc896f189cce41e74a9a4237f7c","first_seen":"2025-12-14T00:35:39.904769Z","last_seen":"2025-12-14T00:35:39.904769Z","times_seen":1,"resource_available":true,"data":null}},"time_used":478,"timings":{"blocked":179,"dns":0,"connect":14,"send":0,"wait":51,"receive":56,"ssl":175},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.innmagalu.com/api/config/info?t=1765672510000\u0026lang=br","fqdn":"api.innmagalu.com","domain":"innmagalu.com","tld":"com"},"ip":{"addr":"56.126.38.71","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.innmagalu.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 06 Dec 2025 14:45:57 GMT","end":"Fri, 06 Mar 2026 14:45:56 GMT"},"fingerprint":{"sha1":"09:B0:DC:CE:8C:3E:F2:CB:B6:E8:43:01:DC:E6:A3:D4:D3:FC:56:14","sha256":"20:FB:64:B4:33:CC:0F:C2:22:69:77:93:34:D4:13:64:3A:C2:E3:3C:4D:09:9E:C0:68:86:96:EB:7D:84:DF:1D"}}},"request":{"raw":"GET /api/config/info?t=1765672510000\u0026lang=br HTTP/1.1\r\nHost: api.innmagalu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: br\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 14 Dec 2025 00:35:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 64\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: br\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":60,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"ccfa0ae41ecadbbdf6b4b87b51b24be8","sha1":"65e50a1cfd983688b9d69b4cc0b53d41f5762e11","sha256":"3cdfd006c8002eb3d9da718a605384573eb4195ad476063609d7473aafbf483e","sha512":"24266e09040161ff153babf8e91167baceca4b9e98787c15166c37fc06a988868eca1a97db23c5a690ea3555dff8da837d06ee5e1b354f25cf02582f1d78d0d5","ssdeep":"","tlshash":"dda002619c1c8157e402d14a396a7f4095a821b6851c1359a86da924c53d9676442d1b","first_seen":"2025-10-28T01:40:28.363309Z","last_seen":"2025-12-14T00:35:39.90617Z","times_seen":27,"resource_available":false,"data":null}},"time_used":1138,"timings":{"blocked":461,"dns":19,"connect":217,"send":0,"wait":215,"receive":0,"ssl":219},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-13","alert":"Phishing Block","trigger":"api.innmagalu.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-index-index.3baed0f6.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.482Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/js/pages-index-index.3baed0f6.js HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 37268\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:03 GMT\r\ncontent-encoding: br\r\ndate: Sun, 14 Dec 2025 00:35:10 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 02:14:02 GMT\r\netag: W/\"692ec677-4e5\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: Wjyf6ggRw2yUxQR9O7px03gUBYP9TtWcu83vTDvVgJVixt5byJbBkg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1253,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1253), with no line terminators","md5":"9594703f6f6cc5c52e7af648eafb3d1b","sha1":"1b0246de271a9c3d20bae0f414dbdd06790923c9","sha256":"0c95e186e84ef24eb65dae0afeaca6686eb234930fdae9269de5a10ff22402ee","sha512":"92b3071790974e42e2f68fed93c8a04462d3c6669005e16b060a2df0c0b1f706018868a10401f05d95dd6d86416ead0dc57c92ea6040560a1867506593b7a63f","ssdeep":"","tlshash":"1221dd8eb1c2f018839b71a8113f215d683b745c1919a492deb091c22af15ce5263ebe","first_seen":"2025-10-28T01:40:28.392461Z","last_seen":"2025-12-14T00:35:39.907105Z","times_seen":15,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"magab2.com/","fqdn":"magab2.com","domain":"magab2.com","tld":"com"},"ip":{"addr":"65.9.46.119","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-14T00:35:09.341Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"magab2.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"B0:CA:6A:60:A2:D8:34:39:C8:7E:48:7F:0D:BD:9D:C7:02:F0:57:F4","sha256":"E7:77:CC:3F:C2:49:77:0C:BD:F5:56:62:A3:12:8D:F7:76:F9:35:DC:6D:18:1B:3C:DB:10:A4:B4:63:27:6A:36"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: magab2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: CloudFront\r\ndate: Sun, 14 Dec 2025 00:35:09 GMT\r\ncontent-length: 0\r\nlocation: https://www.maga6n.com/\r\nset-cookie: target_domain=www.maga6n.com; Max-Age=86400; Path=/; Domain=magab2.com\r\nx-cache: LambdaGeneratedResponse from cloudfront\r\nvia: 1.1 52d728b518bc6bfa3eb88710421b6f20.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN52-P1\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: UZTVbHInOtlAjfATMKEZD4brCWm3DtG3a4610Q4RlI6b8DUKctStFg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":8388,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":366,"timings":{"blocked":139,"dns":7,"connect":11,"send":0,"wait":88,"receive":0,"ssl":118},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"magab2.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"magab2.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/vsclick.min.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/js/vsclick.min.js HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 40713\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:04 GMT\r\ncontent-encoding: br\r\ndate: Sat, 13 Dec 2025 13:16:37 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 01:16:37 GMT\r\netag: W/\"692ec678-fa7e\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: g8nDlQSZ89SNbJPvcb7r9g66aFTDynGrfeYzWAqWhV4ZliFiXxUaHg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":64126,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"aabf0cd213255b6f30ddf569b64cd2b4","sha1":"fda2833dd376d1a6a4d4eda15ffcb8d09f2dd7ff","sha256":"07784be505e38e3b4c3e4f8134e22004555923b599fbc9c979f9277d22e6503d","sha512":"5c075ee2a8369bc654d7c08235a4cb415456cf26d4de8ae285ba75bebf83de54a6661e25513be5599a0ab2b6c6873cf47da1ff3dae32fc52f589c461f63ff509","ssdeep":"768:Qi8TluX1aAl58Ta6YxXL8mLhKaPtKfhlEWySRbrkWMfQ0FLrCy4qdN54:QPgX1v4alXLbEfcWySRbrXMody/dN54","tlshash":"1e530055b3dcb59d83c2f310c13fd80ae5bee8b9519a80bd669cd0a8687095cd339c9d","first_seen":"2025-10-28T01:40:28.385331Z","last_seen":"2025-12-14T00:35:39.907823Z","times_seen":28,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/chunk-vendors.4edf9605.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.073Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/js/chunk-vendors.4edf9605.js HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 12007\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:03 GMT\r\ncontent-encoding: gzip\r\ndate: Sun, 14 Dec 2025 00:35:10 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 09:15:03 GMT\r\netag: W/\"692ec677-12cd3a\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: pKPb3W4sx6TwUoMc9b70c8qXoENIdNG7E3oy131qYd5dhJPdyXUveg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1232186,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4e6d20164d2dd594d6adaa6d81313765","sha1":"ce8316235c755259ba47c603b0279b4bddec36e5","sha256":"f91254db08c585970eee870f4427ce1ef45f0a7bf09b00c2c8ee86ae3579143d","sha512":"e5c08a6a2a06c69c931b927e5846275263d77b9a37550556bf4200d92e305ddbf08d536b96818c08480f494803bef795ebfc76bf24cc830a68b3ad264c5eb870","ssdeep":"6144:eL20y6LHFSSlu0pIkjvA7VQCR8eSX6y7ncSchMWjoCfPWouMrh0vHGwdrfVydTXi:wRZgR8eSXt7cDJo0WVM4HGwilZgzME","tlshash":"ab251a8cb295b46947d760a0403f120bb23ba86d740ad4edf769e4e56dbd84d213bf38","first_seen":"2025-10-28T01:40:28.36123Z","last_seen":"2025-12-14T00:35:39.908428Z","times_seen":27,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.innmagalu.com/api/config/info?t=1765672510000\u0026lang=br","fqdn":"api.innmagalu.com","domain":"innmagalu.com","tld":"com"},"ip":{"addr":"56.126.38.71","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.549Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.innmagalu.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 06 Dec 2025 14:45:57 GMT","end":"Fri, 06 Mar 2026 14:45:56 GMT"},"fingerprint":{"sha1":"09:B0:DC:CE:8C:3E:F2:CB:B6:E8:43:01:DC:E6:A3:D4:D3:FC:56:14","sha256":"20:FB:64:B4:33:CC:0F:C2:22:69:77:93:34:D4:13:64:3A:C2:E3:3C:4D:09:9E:C0:68:86:96:EB:7D:84:DF:1D"}}},"request":{"raw":"GET /api/config/info?t=1765672510000\u0026lang=br HTTP/1.1\r\nHost: api.innmagalu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: br\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 14 Dec 2025 00:35:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 64\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: br\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":60,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"ccfa0ae41ecadbbdf6b4b87b51b24be8","sha1":"65e50a1cfd983688b9d69b4cc0b53d41f5762e11","sha256":"3cdfd006c8002eb3d9da718a605384573eb4195ad476063609d7473aafbf483e","sha512":"24266e09040161ff153babf8e91167baceca4b9e98787c15166c37fc06a988868eca1a97db23c5a690ea3555dff8da837d06ee5e1b354f25cf02582f1d78d0d5","ssdeep":"","tlshash":"dda002619c1c8157e402d14a396a7f4095a821b6851c1359a86da924c53d9676442d1b","first_seen":"2025-10-28T01:40:28.363309Z","last_seen":"2025-12-14T00:35:39.90617Z","times_seen":27,"resource_available":false,"data":null}},"time_used":1093,"timings":{"blocked":437,"dns":1,"connect":214,"send":0,"wait":215,"receive":0,"ssl":222},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-13","alert":"Phishing Block","trigger":"api.innmagalu.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.maga6n.com/static/js/pages-pc-login-index.0226fcc5.js","fqdn":"www.maga6n.com","domain":"maga6n.com","tld":"com"},"ip":{"addr":"54.240.174.5","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.561Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"maga6n.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 10 Dec 2025 00:00:00 GMT","end":"Fri, 08 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"DF:50:9F:4B:89:AF:EB:56:00:E4:CF:78:E1:31:EA:38:2F:A3:16:87","sha256":"B8:4A:69:10:4E:10:02:C2:EE:3E:16:42:A6:77:29:4C:D6:25:75:CC:A4:B5:F4:4F:78:F3:15:75:C6:F0:EB:4A"}}},"request":{"raw":"GET /static/js/pages-pc-login-index.0226fcc5.js HTTP/1.1\r\nHost: www.maga6n.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/pages/pc/login/index?redirect=%252Fpages%252Findex%252Findex\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 527\r\nserver: nginx\r\nlast-modified: Tue, 02 Dec 2025 10:59:04 GMT\r\ncontent-encoding: br\r\ndate: Sun, 14 Dec 2025 00:35:10 GMT\r\ncache-control: max-age=43200\r\nexpires: Sun, 14 Dec 2025 12:26:23 GMT\r\netag: W/\"692ec678-5bf3\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: 2YLKZL33FARjT4f57fTZnfvvmSIXgAsewpawe6Ob5g2tbPuDixq4bw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":23539,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (23329), with no line terminators","md5":"0f760b513a09e0b58d7d4e39f76a3b99","sha1":"b84d321f6c1b61f7bbd6e8b40d63ef2009e065a5","sha256":"20ddb998bfaee2d3bd5cadf43e8f3756656a4ace62c996c053e1112f78136e82","sha512":"2b5e2feacd1d7523cb94c74be69c2a80d69ec57a4ce74a3126ea32e14cf00cc8855d87dac9284858e161f8d7566761e90dd4cddf5e5249596b4663d010c151b5","ssdeep":"384:MKKNKFiKKXl/SAUU5c9Dqfw59Bjj9BWuezlapjaQzL1Rc4Eg30Boz9z9Oyda/SAG:MKKNKQKKXl/SAUU69gELk4Eg30BozJ9B","tlshash":"5eb20a1161de183a243f66bc309e615d2c2ae533804f86a9f7f065d6d9adc9d323339d","first_seen":"2025-10-28T01:40:28.390148Z","last_seen":"2025-12-14T00:35:39.909077Z","times_seen":28,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-14","alert":"Phishing Block","trigger":"www.maga6n.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"www.maga6n.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:40:20 GMT","end":"Mon, 16 Feb 2026 08:40:19 GMT"},"fingerprint":{"sha1":"6A:E1:8A:53:22:10:0A:EA:D5:8B:52:AB:88:89:E1:9C:72:AA:70:85","sha256":"F1:22:A3:0F:EE:FD:45:B1:E4:FA:14:E9:E4:1F:83:3A:81:45:61:0D:5D:82:48:E5:DB:D5:5F:95:60:4F:8F:DE"}}},"request":{"raw":"GET /s/poppins/v24/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7816\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 10 Dec 2025 00:02:35 GMT\r\nexpires: Thu, 10 Dec 2026 00:02:35 GMT\r\ncache-control: public, max-age=31536000\r\nage: 347555\r\nlast-modified: Mon, 15 Sep 2025 16:35:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7816,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7816, version 1.0","md5":"25b0e113ca7cce3770d542736db26368","sha1":"cb726212d5d525021752a1d8470a0fb593e0c49e","sha256":"9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526","sha512":"a0d331e62ab4727f49ca286a1ee7fb81cddc5bb9edf71ef84f4bd4fa1552069af1a82752011ba88fae80862d034135926b7e99d70e59d626d66d4ede90e94c30","ssdeep":"192:Agw5ksLwlyK8F2BXU96Fc575OI3+ga534SlEFwTG4ovej9be:Al5y8FSUMS5VOq1KISlvS4ov+4","tlshash":"a3f1af19d5de5a73f80032b45b6911ba7e42fa83bc68bbedf8046a10ad542cb467cc91","first_seen":"2023-04-05T13:48:05Z","last_seen":"2026-04-04T11:44:39.065784Z","times_seen":203675,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.no/ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-6GDR027JWN\u0026cid=1723285402.1765672511\u0026gtm=45je5ca1v9209195821za200zd9209195821\u0026aip=1\u0026dma=1\u0026dma_cps=syphamo\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026frm=0\u0026tag_exp=103116026~103200004~104527906~104528501~104684208~104684211~105391253~115583767~115938465~115938469~116184927~116184929~116217636~116217638~116251938~116251940~116744866\u0026z=136929411","fqdn":"www.google.no","domain":"google.no","tld":"no"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:11.318Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.no","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:42:12 GMT","end":"Mon, 16 Feb 2026 08:42:11 GMT"},"fingerprint":{"sha1":"55:81:F8:D0:38:E8:7E:60:2D:D3:52:A2:44:B0:EA:46:50:D1:5E:A8","sha256":"82:E8:4E:45:7F:A9:58:3C:3D:FC:19:84:C0:43:C6:F3:0C:08:FA:FA:A2:14:8B:8D:BE:56:A0:10:5E:D3:D8:2C"}}},"request":{"raw":"GET /ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-6GDR027JWN\u0026cid=1723285402.1765672511\u0026gtm=45je5ca1v9209195821za200zd9209195821\u0026aip=1\u0026dma=1\u0026dma_cps=syphamo\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026frm=0\u0026tag_exp=103116026~103200004~104527906~104528501~104684208~104684211~105391253~115583767~115938465~115938469~116184927~116184929~116217636~116217638~116251938~116251940~116744866\u0026z=136929411 HTTP/1.1\r\nHost: www.google.no\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\np3p: policyref=\"https://www.googleadservices.com/pagead/p3p.xml\", CP=\"NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC\"\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ndate: Sun, 14 Dec 2025 00:35:11 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-type: image/gif\r\nx-content-type-options: nosniff\r\nserver: cafe\r\ncontent-length: 42\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"d89746888da2d9510b64a9f031eaecd5","sha1":"d5fceb6532643d0d84ffe09c40c481ecdf59e15a","sha256":"ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629","sha512":"d5da26b5d496edb0221df1a4057a8b0285d15592a8f8dc7016a294df37ed335f3fde6a2252962e0df38b62847f8b771463a0124ef3f84299f262ed9d9d3cee4c","ssdeep":"","tlshash":"c4900023fa808000c3a8c2300a0b238a2b8c80200a28030b80ae208cec3a3a22c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-04-04T11:48:58.516157Z","times_seen":762863,"resource_available":true,"data":null}},"time_used":341,"timings":{"blocked":108,"dns":3,"connect":28,"send":0,"wait":120,"receive":0,"ssl":79},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.innmagalu.com/api/blogger/get_banners?t=1765672510000\u0026lang=br","fqdn":"api.innmagalu.com","domain":"innmagalu.com","tld":"com"},"ip":{"addr":"56.126.38.71","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.innmagalu.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 06 Dec 2025 14:45:57 GMT","end":"Fri, 06 Mar 2026 14:45:56 GMT"},"fingerprint":{"sha1":"09:B0:DC:CE:8C:3E:F2:CB:B6:E8:43:01:DC:E6:A3:D4:D3:FC:56:14","sha256":"20:FB:64:B4:33:CC:0F:C2:22:69:77:93:34:D4:13:64:3A:C2:E3:3C:4D:09:9E:C0:68:86:96:EB:7D:84:DF:1D"}}},"request":{"raw":"GET /api/blogger/get_banners?t=1765672510000\u0026lang=br HTTP/1.1\r\nHost: api.innmagalu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: br\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.maga6n.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 14 Dec 2025 00:35:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 455\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: br\r\ncache-control: no-cache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2269,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f448ba5e26eb18c74fb15620da03f75c","sha1":"075f7da914c4f4c286111c770601a27036741272","sha256":"5e973598f25cb98d99f0b0570bb3d75e45c634c2ff96ffbbc67a5df11216d260","sha512":"0ce23621d2d0616f8cccc13d54590595fa9ac224ae531f5f5024e7d9a5ca4844cf1a691dafa2b09ba7506a2e33f1a9af4353cc43e1029e7a347082b0cee95801","ssdeep":"","tlshash":"1a41fb512decb9abc29b13c11c8f1356c9eb60d3e569a74337e86c6490a90d305bf35e","first_seen":"2025-12-03T01:21:44.890429Z","last_seen":"2025-12-14T00:35:39.901619Z","times_seen":19,"resource_available":false,"data":null}},"time_used":664,"timings":{"blocked":-1,"dns":0,"connect":215,"send":0,"wait":224,"receive":0,"ssl":225},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-13","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-13","alert":"Phishing Block","trigger":"api.innmagalu.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-14","alert":"Sinkholed","trigger":"api.innmagalu.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"region1.analytics.google.com/g/collect?v=2\u0026tid=G-6GDR027JWN\u0026gtm=45je5ca1v9209195821za200zd9209195821\u0026_p=1765672510303\u0026_gaz=1\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=syphamo\u0026dma=1\u0026cid=1723285402.1765672511\u0026ecid=717988038\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_s=1\u0026tag_exp=103116026~103200004~104527906~104528501~104684208~104684211~105391253~115583767~115938465~115938469~116184927~116184929~116217636~116217638~116251938~116251940~116744866\u0026sid=1765672510\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fwww.maga6n.com%2Fpages%2Fpc%2Flogin%2Findex%3Fredirect%3D%25252Fpages%25252Findex%25252Findex\u0026dt=Magazine%20Luiza\u0026en=page_view\u0026_fv=1\u0026_nsi=1\u0026_ss=1\u0026_ee=1\u0026ep.debug_mode=false\u0026ep.site_name=www.maga6n.com\u0026tfd=1400","fqdn":"region1.analytics.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"216.239.32.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:11.316Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:38:53 GMT","end":"Mon, 16 Feb 2026 08:38:52 GMT"},"fingerprint":{"sha1":"14:1E:23:68:0E:D0:A1:C7:ED:6A:FE:20:1B:06:FE:F9:83:B2:99:F5","sha256":"61:AF:E1:FE:D1:A6:4C:C2:5B:60:60:94:B3:7F:5C:5D:34:BE:8E:AB:21:42:8A:97:07:E7:8A:B7:2C:91:5D:0D"}}},"request":{"raw":"POST /g/collect?v=2\u0026tid=G-6GDR027JWN\u0026gtm=45je5ca1v9209195821za200zd9209195821\u0026_p=1765672510303\u0026_gaz=1\u0026gcd=13l3l3l2l1l1\u0026npa=1\u0026dma_cps=syphamo\u0026dma=1\u0026cid=1723285402.1765672511\u0026ecid=717988038\u0026ul=en-us\u0026sr=1280x1024\u0026frm=0\u0026pscdl=noapi\u0026_s=1\u0026tag_exp=103116026~103200004~104527906~104528501~104684208~104684211~105391253~115583767~115938465~115938469~116184927~116184929~116217636~116217638~116251938~116251940~116744866\u0026sid=1765672510\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fwww.maga6n.com%2Fpages%2Fpc%2Flogin%2Findex%3Fredirect%3D%25252Fpages%25252Findex%25252Findex\u0026dt=Magazine%20Luiza\u0026en=page_view\u0026_fv=1\u0026_nsi=1\u0026_ss=1\u0026_ee=1\u0026ep.debug_mode=false\u0026ep.site_name=www.maga6n.com\u0026tfd=1400 HTTP/1.1\r\nHost: region1.analytics.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.maga6n.com/\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://www.maga6n.com\r\ndate: Sun, 14 Dec 2025 00:35:11 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:170:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:170:0\r\nreport-to: {\"group\":\"ascnsrsggc:170:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:170:0\"}],}\r\nserver: Golfe2\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":238,"timings":{"blocked":104,"dns":0,"connect":21,"send":0,"wait":30,"receive":0,"ssl":80},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.maga6n.com/","date":"2025-12-14T00:35:10.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 24 Nov 2025 08:40:20 GMT","end":"Mon, 16 Feb 2026 08:40:19 GMT"},"fingerprint":{"sha1":"6A:E1:8A:53:22:10:0A:EA:D5:8B:52:AB:88:89:E1:9C:72:AA:70:85","sha256":"F1:22:A3:0F:EE:FD:45:B1:E4:FA:14:E9:E4:1F:83:3A:81:45:61:0D:5D:82:48:E5:DB:D5:5F:95:60:4F:8F:DE"}}},"request":{"raw":"GET /s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.maga6n.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 10 Dec 2025 00:02:08 GMT\r\nexpires: Thu, 10 Dec 2026 00:02:08 GMT\r\ncache-control: public, max-age=31536000\r\nage: 347582\r\nlast-modified: Mon, 15 Sep 2025 16:34:42 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-04-04T11:42:47.323079Z","times_seen":295407,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":101,"dns":1,"connect":14,"send":0,"wait":15,"receive":1,"ssl":85},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}