{"report_id":"f6e2a472-7aed-439b-89a5-f7269458f265","version":6,"status":"done","tags":["suspicious","telegram_bot"],"date":"2026-02-16T13:39:06Z","url":{"schema":"http","addr":"base.assist-us.xyz","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"64.29.17.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"base.assist-us.xyz/","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"title":"Coinbase Support","dom":{"size":27204,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (27154), with no line terminators","md5":"a4ec2530f1c17ca6020c3d51ea67307e","sha1":"1d74640e2c86f542424058a918972e8f28404fac","sha256":"e8374eecf5475dd345082d31f77b7aa777ebd128adb4bc5ea174734da29b96f6","sha512":"7ef9e9257b1d144616454a80677ae6cada07e6b4b4b1e270375c93206512eeafe9d779120604e0e3e4eb7c0c37838f4a10b80a19cbcfe8ccce61886930dde9ca","ssdeep":"768:2fDMnuUFkGvJnL1rhOX2nkO01wJ/q2yFrsw:jFkGvJyO+","tlshash":"60c254322944dc2b5a6b4bae70b17f3950d9c26ac0b385e9e3edc4750bc2d368e725d1","dom_hash":"domhash50ad6fa00d9a8f7e903477012406528b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"base.assist-us.xyz","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"64.29.17.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-23T13:39:06Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-02-16","alert":"Detects file containing Telegram Bot API","trigger":"base.assist-us.xyz/_next/static/chunks/1122bbacafaafb62.js","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null},{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]},"summary":[{"fqdn":"base.assist-us.xyz","ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-02-15","domain_rank":0,"first_seen":"2026-02-16T13:39:06.756006Z","last_seen":"2026-02-16T13:39:06.756006Z","alert_count":50,"request_count":24,"received_data":723442,"sent_data":11061,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":[{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/1122bbacafaafb62.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"md5":"9e01f11122f11eefb119bdcab6524cc1","sha1":"fabfc5c4d065dc0554970ca37da1a7512f596ee9","sha256":"142205c66ddab53ab08340620c235e2c0125790ddc492d0b9fbf49cf90db9ac1","sha512":"3f62466b6c2eb3615800599707604295ec52d9994a0be66122b7f7b29a5ecb2aca1833219105178621c4bc4c11387044abf3f6f50b52b7ca64488e194f38ac9f","size":41528,"token":"5888330594:AAHDeBuU_fGop5VyXbdF-p3CFR0MPjrtGIo","is_revoked":false,"bot":{"token":"5888330594:AAHDeBuU_fGop5VyXbdF-p3CFR0MPjrtGIo","user_id":"5888330594","username":"Metameta1bot","first_name":"Metabot","last_name":"","chat":{"chat_id":"1223413825","title":"","type":"private","bot_is":"member","total_users":2,"active_members":null,"admins":null},"pending_messages":0}}],"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/1122bbacafaafb62.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e01f11122f11eefb119bdcab6524cc1","sha1":"fabfc5c4d065dc0554970ca37da1a7512f596ee9","sha256":"142205c66ddab53ab08340620c235e2c0125790ddc492d0b9fbf49cf90db9ac1","sha512":"3f62466b6c2eb3615800599707604295ec52d9994a0be66122b7f7b29a5ecb2aca1833219105178621c4bc4c11387044abf3f6f50b52b7ca64488e194f38ac9f","ssdeep":"768:9TU4ttV/YuqnumFHxLzf3fE9EM4pbrksymi22GDQ:9I4ttV/4FHxLzf3fEybAsfifN","tlshash":"4c131b057152aebc7aff42aaf06ce94ce12e5704c91e4979f6fe0c320b04695b657b8c","size":41528,"data":"","first_seen":"2026-02-14T16:40:29.664403Z","last_seen":"2026-02-16T13:42:44.578031Z","times_seen":5,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-02-16","alert":"Detects file containing Telegram Bot API","trigger":"base.assist-us.xyz/_next/static/chunks/1122bbacafaafb62.js","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/a0e9039376638b5f.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"230b8ab4e11e74f6e1373364e765bbef","sha1":"d15089437be7334848b4594dceabe4695d6b35d4","sha256":"9b0a62b083e931570c3ee0217faf2333c369379097d8cda1c50c17e8e6caf70a","sha512":"e057711874f1ef8fef4d32966940180fbd0974512be59aebd3f5d6bc7afaca0681242eb40f641822312956a15bd569a65be3b9a0ca344a12d79e976422b3567c","ssdeep":"3072:SeVnSSY2UeRaWcG8TP36kNAHTjWmN6yXtbIY:Se9SSY2UQrH3FrXtbIY","tlshash":"da240be83955f6626ab302a710af1803733c292b280d4d60a351fdddb57845eb17bf9e","size":224743,"data":"","first_seen":"2025-12-20T12:16:43.51264Z","last_seen":"2026-06-08T04:39:44.019544Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/0c6932420e96e619.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d3e37976c5f079b58b72380fd71b7fd0","sha1":"74ba24b185b9b91b2328a782bc0f17217e965075","sha256":"b569d2ab2b58e8c8dfc20b34491a7790ce41a348b5260bc5c69d129f28a1baf2","sha512":"737a3d44e764f92d0fc4641a1af89f2a90f2c7c27423ed3f37663cdd9be96c7d6924804ad40b618fc3cbeb2f872da3c47c09d45a6aa33ec4e20c6b6b3f9239ad","ssdeep":"","tlshash":"e25155ea31e1f468637a13d1413b1315b7781f5cd04ed0586298d87d3a38dd79462eae","size":2536,"data":"","first_seen":"2025-10-27T07:33:07.586068Z","last_seen":"2026-06-09T15:36:49.418453Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/turbopack-b7d85b3ec6f69e91.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a339a086f32bf58dd1e836ff8d1ff296","sha1":"e0209d3da683a85f7fe9e836a970c27a6e196d4d","sha256":"7a0946e2088804f66663087bbd2ff07e0f6cf555e6f6f679ba88f54e4aaac8b4","sha512":"74cdf75c7224ae2251f1dfe115a50b98226aa760c4532b67922ef20785c97de6c75d8570e90c28779b1cffbd9b768701806db2ce663b0910d7fc760c188ea617","ssdeep":"192:8sspVl08/EsUnUj5EGdoFNplHda6Mh60W9xocxkUk1MsiyLxO:VspVvXIblHA2VroQHyLxO","tlshash":"1722d8da37a6f077436f90e6907f4040f1794469145d582c93ace8fa38398ae49e3f67","size":10689,"data":"","first_seen":"2026-02-14T16:40:29.663326Z","last_seen":"2026-02-16T13:42:44.562389Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/3d7d43ca4e63e211.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a82ad65843e2a38b3365a2e3030c5a71","sha1":"294986c2adebf0e94c7506784cb783b5f41a6f18","sha256":"22d62c49d6ceec7431f00d8a1a626f51468e559ab8c595ebe99c4ed804c9e482","sha512":"ac797104a734b707a08391e2f691c560f85ed8e23bc8d07e0b093d0cc118ccecf025551d96b242e5c5e700e37a7f09393cc48a87518b9dfc427b2a38f62aca8a","ssdeep":"1536:Uo9JPRQNC7oRb6jh+nr0fOsffrPtzaSy7Wwy:l8CcYjqTsnR5yi","tlshash":"8fc3f8f935d1f4820bab44a6c03f0006f32d4d37149e64a0a3e5ddea756499de1b3faa","size":120403,"data":"","first_seen":"2026-01-01T08:23:11.61607Z","last_seen":"2026-06-12T06:52:36.974893Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1a6e1178e4bbf5730bd664a49dd3bc24","sha1":"17c3ae3273f9de6afbbdedf2e413dbb3a6722792","sha256":"3814cddd18b2095e01abb745a99e5ada90178e709c09879324c3b623f2d829ea","sha512":"cfb1aab0bf589e33fd12906f448ddbbf7163420a088de513b174304c9ba3a7abcd9b41c98bc4dd51edd0206c1fe4660db9857e3c6163d1bf50c670cefddee509","ssdeep":"","tlshash":"de9002b090c39c5890264186687100160b6c040c01080141132184d810115048e40d8e","size":43,"data":"","first_seen":"2023-03-13T01:07:12Z","last_seen":"2026-06-13T03:46:30.837125Z","times_seen":159947,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/4fd93823156e59e8.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7351fad689f717dba4fcea0d40eff6d6","sha1":"9a12b8db6938439100044a3fc29f0df5dd6bbfcc","sha256":"257c115de106bad3508a8585a8af10174353d7bea1820f5aed03e596b3a9e374","sha512":"5c8e5b101f156884d7406a0ec385f05e039fa4e19f8cd5199dd88c72785eaa2deeaf9d0ad19f02ed5c62934e2920658e1b6802625211bd56d7089a4b7e3952ca","ssdeep":"384:P35S75Bq9E0m1YmRDQ0cJ3tn79Fg/Ag8qWtOPSNsbU:P5S9BX0ZMOx6bU","tlshash":"bed2d8717395f9a352db85d9d02a0015f2290d3530ae24f0b395dcef368dc89a1fafa9","size":30885,"data":"","first_seen":"2025-12-23T15:59:32.783251Z","last_seen":"2026-06-12T06:52:36.978909Z","times_seen":160,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"26d920a065fec9883b89d9c6e08e555d","sha1":"6ed7ff8c74ae89584bc37f8874363dec6dc5bd81","sha256":"f90e14d9d435af73150cea6be6cc76de67d28f6cb84f8514ffac0a231d88333c","sha512":"f70a67df6b5ecffa10dcef5bdf3806573eb04dbf975ff536001bfaddd5254a88bf2c10439d5d52e1e419406978acc5144bb771f9ce787ebd13785a4d02823bae","ssdeep":"","tlshash":"6e31d357f90bfc966c31ce0f463f2f7288d4ea7690321289f68eca990252c220789985","size":1672,"data":"","first_seen":"2026-02-14T16:40:29.702288Z","last_seen":"2026-02-16T13:42:44.579622Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/dce1ee0e89ee93db.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a1d6431132265a3b2ad816112afea178","sha1":"456db92990db3dc67fa96bd7e6d9d47b077cea2e","sha256":"3c910a89207545a2a9cc643b8f48c03d8e132fdd50e1556efe8d48c2934e6af1","sha512":"d60b7ce4594d03bbffbf638fbfb3f690eec984f33da0d9a825d703fcacf526fdb6fdb97ba2d4bf0808419d9f994e255120223b6e931e906605f376de520a53d7","ssdeep":"384:k7/l+N/8JUoLgG4AYH9cseDowerMbKzLc1Jnnh4vyRwHOz4ihkDbqH8mlkfGNiZh:0lWNonn+HW9kDbqH8mieUZRYq+O","tlshash":"9e13a5b572d5faa2129340f0c43f1016f22d4c7521acb4b0a7e4ccdbb99458da6bafd9","size":41532,"data":"","first_seen":"2025-12-20T14:31:57.897502Z","last_seen":"2026-06-12T06:52:36.986346Z","times_seen":125,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_vercel/insights/script.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"23354ca95ba7fe8514091de0201cdb1c","sha1":"4da0eded24c0efac9952e508930cf3953a7cdc9a","sha256":"49804bca0c945ee8a62827b0ff82d5c7cfc33adc4bbd6c3e8c29d7c7022b5f66","sha512":"c178ad56fb6e73d24fe544e1e6467b084d2d7259c3baa74302a52453029058d609faae26a7df34be297ef109de70e8f24a61e2f19c1c2cbd22bfc3294a6b9ad2","ssdeep":"","tlshash":"245195d97860a0684ad681e5c53f5719b3be3ba2fc45401222865d9c3234e2ef373fa9","size":2501,"data":"","first_seen":"2025-12-11T18:36:18.497034Z","last_seen":"2026-03-12T21:02:41.030568Z","times_seen":2213,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"7335527d9a189730d96e321b0b98599b","sha1":"fd5b6fe6e6a7771a7884d5f68d077aa1f75a9862","sha256":"8523d6e1b657944fc14c22c2c547782801aaa8472be081886f9506fc3a98961c","sha512":"d63da80fac9722c53f576a144b489630e3cce62a446df9479b7f4c1321bcf3f90fe36ef5fe96456d9a3d8a9825b4c2d8976c3d7617fc16d55a77c0c4b62c1ed2","ssdeep":"","tlshash":"e961bc7d6405de4fec6e3d68023e9d3b10cd8a7b4391deb886d8ce140a424ba27d6dc0","size":3376,"data":"","first_seen":"2026-02-14T16:40:29.703325Z","last_seen":"2026-02-16T13:42:44.580408Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"da5ca578e6dd37a1672414a5b0b4dd44","sha1":"b6a05c32a595e7a26f9d8e8661b38a4b3a0620c6","sha256":"9f399d97e017765b0b3da1b907ea2eb825db9b6b8bfa89c3cc54535e178b92aa","sha512":"45a458d717d16a4ef14d5bbeac4f7ecc39a1695ee6e12fab2f68da734ebabeea5b2d0433f2fb3a1db04c1d730dda465db93abb3f9029472e250b68aaa2461360","ssdeep":"","tlshash":"c8c08090dc42cc1dc6660f262c7a5c3521dcc974074555479dd5d9281986b3149b5d8a","size":177,"data":"","first_seen":"2023-12-06T21:41:08Z","last_seen":"2026-06-13T01:09:46.796499Z","times_seen":2426,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ecf96d95f60b965a778ad9fef3d8426","sha1":"37ad47d82fac9d64de6223d330a535d186d2a27b","sha256":"08070ea297b9c45782f3f81b637699c0fda059ee8f03f2781d44053e36720179","sha512":"8e902caa8dd20bca4c45cfd8cd181ab9c0f7d7183dc51b0c87f4b9ffbadce4e80164064efed166585fc73184d853d74fe70a07b23f94c46ccb7520885cdfbc36","ssdeep":"","tlshash":"c5b01220e80bdc11d531c50f00297a3547a9e62b40305f81735a8588b013d071b05cc9","size":107,"data":"","first_seen":"2026-02-14T16:40:29.70514Z","last_seen":"2026-02-16T13:42:44.582017Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/12b1c28682b16bd5.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0e2b653755e3152e432dc43508eac16b","sha1":"e61a28823b7ffdd287eb095ca6f696583f3811ca","sha256":"a051bc2d6154448670ac2c9b1301c54f3ff1ee432963e2fd84eed3dcf0f885e6","sha512":"5b8aa5dfa1604e08c5d46b3d8bae6aaa23ac780f5554669884445480fa86154a492b5b602752d6c6e6b0bc524abaf65c6cc7dd20c6e735dafdd685d5183a805c","ssdeep":"384:dqvAkowlmX8jnl+vT3mrxKHHwyUaZgDdkzbEjBRxq:IvA7wEXwl+vT3mrxKHHwyUaZgDdkzbEM","tlshash":"7252b5a97199f0912ba374a5803f500bf23e2d75281d90b0a362d9e97cb449dd273f9b","size":13298,"data":"","first_seen":"2026-02-14T16:40:29.673686Z","last_seen":"2026-02-16T13:42:44.558749Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"b6907a204546f38bc29cab03090c0c71","sha1":"fca619d747db4ff17eca26abb95c7ab16842d157","sha256":"520669623f3ff7c8100a2aae93cee5b07f74a2252466fabe3190fe03ed8093a3","sha512":"bd0b1c19fbffe24b001ed07c81d4569131ea14fad7c5f6f87fdbcb03d2591dfd6713c343db279cb4ad54a247e445d4358490d53a4567989de4ddf37996b5f34f","ssdeep":"","tlshash":"34418073ed15ed08d7ca5e08283e3ca954ccc3e2b1e8957b938cdda84587a7459f2212","size":2090,"data":"","first_seen":"2026-02-14T16:40:29.70612Z","last_seen":"2026-02-16T13:42:44.583035Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"base.assist-us.xyz/_vercel/insights/script.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_vercel/insights/script.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 18323\r\ncache-control: public, max-age=2678400\r\ncontent-disposition: inline; filename=\"script.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ncross-origin-resource-policy: cross-origin\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"ad5b3db20fadccf093d1fa6bc2c73b98\"\r\nlast-modified: Mon, 16 Feb 2026 07:44:08 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1:arn1:arn1::hx2wm-1771249124362-ab5783813fef\r\ncontent-length: 1271\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2501,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2501), with no line terminators","md5":"23354ca95ba7fe8514091de0201cdb1c","sha1":"4da0eded24c0efac9952e508930cf3953a7cdc9a","sha256":"49804bca0c945ee8a62827b0ff82d5c7cfc33adc4bbd6c3e8c29d7c7022b5f66","sha512":"c178ad56fb6e73d24fe544e1e6467b084d2d7259c3baa74302a52453029058d609faae26a7df34be297ef109de70e8f24a61e2f19c1c2cbd22bfc3294a6b9ad2","ssdeep":"","tlshash":"245195d97860a0684ad681e5c53f5719b3be3ba2fc45401222865d9c3234e2ef373fa9","first_seen":"2025-12-11T18:36:18.497034Z","last_seen":"2026-03-12T21:02:41.030568Z","times_seen":2213,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/key-3.svg","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.092Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /key-3.svg HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 211031\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"key-3.svg\"\r\ncontent-type: image/svg+xml\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"7a0c0cb379f6f63291e1be03c270ef6e\"\r\nlast-modified: Sat, 14 Feb 2026 03:01:32 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /key-3.svg\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::hx2wm-1771249124081-585166fffd3a\r\ncontent-length: 636\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":636,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7a0c0cb379f6f63291e1be03c270ef6e","sha1":"95f7d2772f6d0efbd53626c37856414946721481","sha256":"4294baef3e10e052e5cce1ab02286e4b64d1dfe972cfc66d550405f5ddaf7dbd","sha512":"37035a3ddfa8813739fc5c12361db405a8b9adc8afac91b61eed5cb08d151eb4663064b78d57e811c168b9ef52d442fd65c408a4aedd740e103728599c2276e7","ssdeep":"","tlshash":"1df0dde11738248c64459fe4db4a31911a6fb8f530d086fb9698082133907aef842f71","first_seen":"2026-02-14T16:40:29.668308Z","last_seen":"2026-02-16T13:42:44.564716Z","times_seen":5,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/startToday-2.svg","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /startToday-2.svg HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12623\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"startToday-2.svg\"\r\ncontent-type: image/svg+xml\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"51f2077d0bd7ff421dc7ec5c1f934f51\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:21 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /startToday-2.svg\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::hx2wm-1771249124088-8e5a6e3b8415\r\ncontent-length: 596\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":596,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"51f2077d0bd7ff421dc7ec5c1f934f51","sha1":"145da6fa58779840e8f4e86b99b6ecb6a013eda9","sha256":"fc8c54a4e1e3176e069783a8eedb7d4c2d04ef9dc41598ba4de8d96c50eee949","sha512":"26ff4bfb7fd285865296ac696665e23d36044f737ec667e05166d0c5e7d20f4bc9dcbfb0018adbfed4b615fc01bad1f603389667cf474714d929795095bc4170","ssdeep":"","tlshash":"cef0f6d61f5d5dc868174bb49fac61c24327758f215c05fa318c2464a6853bfe493be1","first_seen":"2026-02-14T16:40:29.67112Z","last_seen":"2026-02-16T13:42:44.556801Z","times_seen":5,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/coinbaseOneRefreshed-3.svg","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /coinbaseOneRefreshed-3.svg HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12622\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"coinbaseOneRefreshed-3.svg\"\r\ncontent-encoding: br\r\ncontent-type: image/svg+xml\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"3e166d62bff9e82db182a1e8a70b14bd\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:21 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /coinbaseOneRefreshed-3.svg\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::t9bh9-1771249124088-e8cb0fc82435\r\ncontent-length: 569\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":1084,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3e166d62bff9e82db182a1e8a70b14bd","sha1":"dae8cab1004f2551c2fe43db116b8209c3bf8d77","sha256":"96418bc853eee6dbfbb0b974318f4ca04c1e7d7278374b3680bd4d94c56a50d5","sha512":"591ef5aa525e82eead4a8d378442464f688b549d36af957ef4b377b754ca0e2e6e7bf8bd11fdff03568d9ffb847f56ad2d3b79289bb0f96f8ea95e8009689d50","ssdeep":"","tlshash":"04111bdd82a089582ca34b38dbbc50d5211f78fc58dac6f6a3b89d2431c17cda099ae1","first_seen":"2026-02-14T16:40:29.660848Z","last_seen":"2026-02-16T13:42:44.570697Z","times_seen":5,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/8a80e7184ad3a13f.css","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.102Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/8a80e7184ad3a13f.css HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12630\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"8a80e7184ad3a13f.css\"\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"0261e7dd5c820bdae6309b3d4bd8971d\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:13 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/8a80e7184ad3a13f.css\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::qc5m4-1771249124088-63056763ae7f\r\ncontent-length: 663\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2200,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"CSV ASCII text","md5":"125447d233c37760bd6802d783ee2c0b","sha1":"aaf3829e337597ea5dc51c78e70f8b89037ab233","sha256":"a886fc5ec3ebbafcd8960b7a6610d99dc905d12d46b6b3cc8d3f04752232b11b","sha512":"d9f241981ba141eb43d3a34b9dc38b90292e7a3103780595d3b400a8a3efe0a6df3c24c3241a368919401c7ed98a33c6dda7afcef18ee612393fe19fad83cc67","ssdeep":"","tlshash":"c441c234442ea409d6e78c6330cf3ea3241564254bee2663993d1eb84eeb47f13e1724","first_seen":"2025-10-27T14:52:15.049814Z","last_seen":"2026-06-12T09:51:48.465024Z","times_seen":384,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/dce1ee0e89ee93db.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/dce1ee0e89ee93db.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12607\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"dce1ee0e89ee93db.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"2d4b944a417c72ea8a7db9d3928dca25\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:36 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/dce1ee0e89ee93db.js\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::t2khb-1771249124089-c1e324c0d1da\r\ncontent-length: 9432\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":41532,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (27793)","md5":"a1d6431132265a3b2ad816112afea178","sha1":"456db92990db3dc67fa96bd7e6d9d47b077cea2e","sha256":"3c910a89207545a2a9cc643b8f48c03d8e132fdd50e1556efe8d48c2934e6af1","sha512":"d60b7ce4594d03bbffbf638fbfb3f690eec984f33da0d9a825d703fcacf526fdb6fdb97ba2d4bf0808419d9f994e255120223b6e931e906605f376de520a53d7","ssdeep":"384:k7/l+N/8JUoLgG4AYH9cseDowerMbKzLc1Jnnh4vyRwHOz4ihkDbqH8mlkfGNiZh:0lWNonn+HW9kDbqH8mieUZRYq+O","tlshash":"9e13a5b572d5faa2129340f0c43f1016f22d4c7521acb4b0a7e4ccdbb99458da6bafd9","first_seen":"2025-12-20T14:31:57.897502Z","last_seen":"2026-06-12T06:52:36.986346Z","times_seen":125,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/3d7d43ca4e63e211.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/3d7d43ca4e63e211.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 239330\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"3d7d43ca4e63e211.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"b6d9e85844a139a633d3a2abc0a7a56b\"\r\nlast-modified: Fri, 13 Feb 2026 19:09:53 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/3d7d43ca4e63e211.js\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::qhrzm-1771249124090-7ed348f1509d\r\ncontent-length: 33563\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":120403,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a82ad65843e2a38b3365a2e3030c5a71","sha1":"294986c2adebf0e94c7506784cb783b5f41a6f18","sha256":"22d62c49d6ceec7431f00d8a1a626f51468e559ab8c595ebe99c4ed804c9e482","sha512":"ac797104a734b707a08391e2f691c560f85ed8e23bc8d07e0b093d0cc118ccecf025551d96b242e5c5e700e37a7f09393cc48a87518b9dfc427b2a38f62aca8a","ssdeep":"1536:Uo9JPRQNC7oRb6jh+nr0fOsffrPtzaSy7Wwy:l8CcYjqTsnR5yi","tlshash":"8fc3f8f935d1f4820bab44a6c03f0006f32d4d37149e64a0a3e5ddea756499de1b3faa","first_seen":"2026-01-01T08:23:11.61607Z","last_seen":"2026-06-12T06:52:36.974893Z","times_seen":10,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/a0e9039376638b5f.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.108Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/a0e9039376638b5f.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 239330\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"a0e9039376638b5f.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"1ec3a7de1c7d3f020a27c32ab55615a5\"\r\nlast-modified: Fri, 13 Feb 2026 19:09:53 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/a0e9039376638b5f.js\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::9klfd-1771249124094-f0ae7ecf42d6\r\ncontent-length: 71522\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":224743,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"230b8ab4e11e74f6e1373364e765bbef","sha1":"d15089437be7334848b4594dceabe4695d6b35d4","sha256":"9b0a62b083e931570c3ee0217faf2333c369379097d8cda1c50c17e8e6caf70a","sha512":"e057711874f1ef8fef4d32966940180fbd0974512be59aebd3f5d6bc7afaca0681242eb40f641822312956a15bd569a65be3b9a0ca344a12d79e976422b3567c","ssdeep":"3072:SeVnSSY2UeRaWcG8TP36kNAHTjWmN6yXtbIY:Se9SSY2UQrH3FrXtbIY","tlshash":"da240be83955f6626ab302a710af1803733c292b280d4d60a351fdddb57845eb17bf9e","first_seen":"2025-12-20T12:16:43.51264Z","last_seen":"2026-06-08T04:39:44.019544Z","times_seen":51,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/turbopack-b7d85b3ec6f69e91.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/turbopack-b7d85b3ec6f69e91.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 47149\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"turbopack-b7d85b3ec6f69e91.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"648b88bdb834d51678e4dd3e4ee25ddc\"\r\nlast-modified: Mon, 16 Feb 2026 00:32:54 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/turbopack-b7d85b3ec6f69e91.js\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::gqm4l-1771249124095-f9fcbaebfc1e\r\ncontent-length: 4410\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":10689,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (6411)","md5":"a339a086f32bf58dd1e836ff8d1ff296","sha1":"e0209d3da683a85f7fe9e836a970c27a6e196d4d","sha256":"7a0946e2088804f66663087bbd2ff07e0f6cf555e6f6f679ba88f54e4aaac8b4","sha512":"74cdf75c7224ae2251f1dfe115a50b98226aa760c4532b67922ef20785c97de6c75d8570e90c28779b1cffbd9b768701806db2ce663b0910d7fc760c188ea617","ssdeep":"192:8sspVl08/EsUnUj5EGdoFNplHda6Mh60W9xocxkUk1MsiyLxO:VspVvXIblHA2VroQHyLxO","tlshash":"1722d8da37a6f077436f90e6907f4040f1794469145d582c93ace8fa38398ae49e3f67","first_seen":"2026-02-14T16:40:29.663326Z","last_seen":"2026-02-16T13:42:44.562389Z","times_seen":5,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-16T13:38:43.722Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 61031\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:43 GMT\r\netag: W/\"455e9c72798f682ae44dfff7c22891aa\"\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch\r\nx-matched-path: /\r\nx-nextjs-prerender: 1\r\nx-nextjs-stale-time: 300\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::v2ffb-1771249123807-4ef8ab7ffe3e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27195,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (27145), with no line terminators","md5":"20ca9db1c9e58ded1033cf2e64bd2fb9","sha1":"25844e1da1be5a2cacac6631ce14c085d1631b72","sha256":"450432b42c0727fbb1302a5889e78505bf4e54eaacf6b10ede39fd83f4f0f985","sha512":"83ec138c8bfef18c4e3b6896adab02de2cfc17776041607cac0c21aa9e006e02c8b24ce8805f477e41fdc0515a85a5dfddc14304d76f8c76899e9196db354d78","ssdeep":"768:S8a96OVmkejnu1shxXXnkOi1wJ/q2yFrs8:lkejsOw","tlshash":"adc255222944dc2b5a6b4bbe70b17f3960d9c266c0b386a9e3ddc4750bc3d368e625d1","first_seen":"2026-02-14T16:40:29.667039Z","last_seen":"2026-02-16T13:42:44.574747Z","times_seen":5,"resource_available":false,"data":null}},"time_used":168,"timings":{"blocked":79,"dns":49,"connect":1,"send":0,"wait":10,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/media/797e433ab948586e-s.p.dbea232f.woff2","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/media/797e433ab948586e-s.p.dbea232f.woff2 HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://base.assist-us.xyz/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12630\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"797e433ab948586e-s.p.dbea232f.woff2\"\r\ncontent-type: font/woff2\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"da83d5f06d825c5ae65b7cca706cb312\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:13 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/media/797e433ab948586e-s.p.dbea232f.woff2\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::t9bh9-1771249124075-3fd5c3910fa5\r\ncontent-length: 31288\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":31288,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 31288, version 1.0","md5":"da83d5f06d825c5ae65b7cca706cb312","sha1":"3820bcdc2e187ff5332ab0d5dc8529f8e10fd574","sha256":"b7ac144b394cbd81052d6397ec0c33397977b1d7e9bc095e744e652a378c6fb3","sha512":"c8b02f1655b30d6fd6e0b3ee92280d175fb0410938a71f625354fe79e009fb2928ed55b45d0000db9e527a388e8f3eb42875c6965c80eb4b03046c50f49ed187","ssdeep":"768:N4C8ya3ZZij3h4s0iIfv/x/tV3167X/27IwwlsUxCkegAeyTrJD7/kX:Z8Pzf3JF67eqlsZXLTrJcX","tlshash":"47e2f1e7f5578489abb26e7102e105d5c5ed4aa105bfd1fb642c70660d3aa0e0fc0b27","first_seen":"2024-12-09T15:40:29.87187Z","last_seen":"2026-06-13T01:54:51.750609Z","times_seen":24151,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/browserTransaction-3.svg","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /browserTransaction-3.svg HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12626\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"browserTransaction-3.svg\"\r\ncontent-type: image/svg+xml\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"7889736aa138d644663a75b19c67b511\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:17 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /browserTransaction-3.svg\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::gqm4l-1771249124082-27282ef7d815\r\ncontent-length: 502\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":502,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7889736aa138d644663a75b19c67b511","sha1":"ef4dc8b288db9e9b9576818743408ff5ee82eccd","sha256":"07f0323589dc589c575b1b7fb1737956c23a79122740a065c52a4db3fdbd69a2","sha512":"2ded3cddbdcb86744f1726c53e2f6f5fa520a62eb423ab334b66d0bc89207a882fad27d4c1911a19c29415e9be6d5cb67bb9c621d9be0d8951fad6fed8975bd9","ssdeep":"","tlshash":"3cf059fa472c54c84c93c3b0df6d66c2322630ed60ac46f5306a1430a1c938fe4c3b01","first_seen":"2026-02-14T16:40:29.669919Z","last_seen":"2026-02-16T13:42:44.576458Z","times_seen":5,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/favicon.ico","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12557\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"favicon.ico\"\r\ncontent-encoding: br\r\ncontent-type: image/vnd.microsoft.icon\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"3f585137467dc3a252ed381493ab3944\"\r\nlast-modified: Mon, 16 Feb 2026 10:09:26 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /favicon.ico\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::l5hk6-1771249124252-250f42844d90\r\ncontent-length: 1047\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"3f585137467dc3a252ed381493ab3944","sha1":"17cecf52bb2fe1ba0d4ccbdee0537ea42d3013ec","sha256":"b0888615555dab71ed1fe09d0ff9a20937774d2286a7a8b5acbf21597888c299","sha512":"4cd15bf6d94b2232fb70b29a7733e85e574e1d959bb9b6d23f29afb004789147325340c784e0fafefbbc51483e3a74166a61bce8cb9d0339b14315c7fe7f765d","ssdeep":"48:tsd8ti0jGrSb09wBTzDTY4xj6EVygqb5ImnD0ZCin5zr:GSirSbrRMEVyjfnmnJ","tlshash":"3391f1e680d6c1a0c22c0af61ca8f9fd31ee8ea975d4263b4b28f04315733949466fd7","first_seen":"2026-02-14T16:40:29.665402Z","last_seen":"2026-02-16T13:42:44.56729Z","times_seen":5,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/4fd93823156e59e8.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/4fd93823156e59e8.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12605\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"4fd93823156e59e8.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"124de96c134fb6ecb7f3d046038b8409\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:38 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/4fd93823156e59e8.js\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::hx2wm-1771249124096-be803d22a594\r\ncontent-length: 7764\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":30885,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (30883), with no line terminators","md5":"7351fad689f717dba4fcea0d40eff6d6","sha1":"9a12b8db6938439100044a3fc29f0df5dd6bbfcc","sha256":"257c115de106bad3508a8585a8af10174353d7bea1820f5aed03e596b3a9e374","sha512":"5c8e5b101f156884d7406a0ec385f05e039fa4e19f8cd5199dd88c72785eaa2deeaf9d0ad19f02ed5c62934e2920658e1b6802625211bd56d7089a4b7e3952ca","ssdeep":"384:P35S75Bq9E0m1YmRDQ0cJ3tn79Fg/Ag8qWtOPSNsbU:P5S9BX0ZMOx6bU","tlshash":"bed2d8717395f9a352db85d9d02a0015f2290d3530ae24f0b395dcef368dc89a1fafa9","first_seen":"2025-12-23T15:59:32.783251Z","last_seen":"2026-06-12T06:52:36.978909Z","times_seen":160,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/0c6932420e96e619.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.116Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/0c6932420e96e619.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 211031\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"0c6932420e96e619.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"75291df0919493068c74befcbeaae50f\"\r\nlast-modified: Sat, 14 Feb 2026 03:01:32 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/0c6932420e96e619.js\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::qhrzm-1771249124098-48134d017c88\r\ncontent-length: 1289\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2536,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2536), with no line terminators","md5":"d3e37976c5f079b58b72380fd71b7fd0","sha1":"74ba24b185b9b91b2328a782bc0f17217e965075","sha256":"b569d2ab2b58e8c8dfc20b34491a7790ce41a348b5260bc5c69d129f28a1baf2","sha512":"737a3d44e764f92d0fc4641a1af89f2a90f2c7c27423ed3f37663cdd9be96c7d6924804ad40b618fc3cbeb2f872da3c47c09d45a6aa33ec4e20c6b6b3f9239ad","ssdeep":"","tlshash":"e25155ea31e1f468637a13d1413b1315b7781f5cd04ed0586298d87d3a38dd79462eae","first_seen":"2025-10-27T07:33:07.586068Z","last_seen":"2026-06-09T15:36:49.418453Z","times_seen":49,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/1122bbacafaafb62.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/1122bbacafaafb62.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12560\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"1122bbacafaafb62.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"8805e4766e51d2135751d0830d6e7ce8\"\r\nlast-modified: Mon, 16 Feb 2026 10:09:24 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/1122bbacafaafb62.js\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::t2khb-1771249124100-7454ed5bfcb4\r\ncontent-length: 13878\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":41528,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (37054)","md5":"9e01f11122f11eefb119bdcab6524cc1","sha1":"fabfc5c4d065dc0554970ca37da1a7512f596ee9","sha256":"142205c66ddab53ab08340620c235e2c0125790ddc492d0b9fbf49cf90db9ac1","sha512":"3f62466b6c2eb3615800599707604295ec52d9994a0be66122b7f7b29a5ecb2aca1833219105178621c4bc4c11387044abf3f6f50b52b7ca64488e194f38ac9f","ssdeep":"768:9TU4ttV/YuqnumFHxLzf3fE9EM4pbrksymi22GDQ:9I4ttV/4FHxLzf3fEybAsfifN","tlshash":"4c131b057152aebc7aff42aaf06ce94ce12e5704c91e4979f6fe0c320b04695b657b8c","first_seen":"2026-02-14T16:40:29.664403Z","last_seen":"2026-02-16T13:42:44.578031Z","times_seen":5,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-02-16","alert":"Detects file containing Telegram Bot API","trigger":"base.assist-us.xyz/_next/static/chunks/1122bbacafaafb62.js","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]}},{"url":{"schema":"https","addr":"base.assist-us.xyz/apple-touch-icon.png","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /apple-touch-icon.png HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"apple-touch-icon.png\"\r\ncontent-type: image/png\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"09e3f194ecfa88b17d263e6006859e82\"\r\nlast-modified: Mon, 16 Feb 2026 13:38:44 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /apple-touch-icon.png\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::qhrzm-1771249124252-81228020f0df\r\ncontent-length: 11141\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11141,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"09e3f194ecfa88b17d263e6006859e82","sha1":"ffefb4705a7fcb78b6d40677724812166572c9c3","sha256":"deece6b9b60670f38e85dbd7f8ff22686e4ad537c18f01256a2888550124347c","sha512":"d1da29563398327316ac7e74a52989fca17e509e62627cf7d358e52db6a8a1263ab06dd1b54ed1def4c417b25106ff7129e1fb38085903d4e80654ddf0800a00","ssdeep":"192:LSKsi+negt90t/U7YHINkzEJqMeHZi43kUHy70+w8zhDpmuQZhOVMYtwjfb34X6q:+KsMG2aYtzPHZhUUHchw8N1muQ7OVOXy","tlshash":"8a32cf5cc9978e12c9ff18b3784f609cc8147079edccf6acf545f999676338a2605990","first_seen":"2026-02-14T16:40:29.700528Z","last_seen":"2026-02-16T13:42:44.574003Z","times_seen":5,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":234,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/media/caa3a2e1cccd8315-s.p.853070df.woff2","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/media/caa3a2e1cccd8315-s.p.853070df.woff2 HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://base.assist-us.xyz/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12630\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"caa3a2e1cccd8315-s.p.853070df.woff2\"\r\ncontent-type: font/woff2\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"18bae71b1e1b2bb25321090a3b563103\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:13 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/media/caa3a2e1cccd8315-s.p.853070df.woff2\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::9klfd-1771249124076-a595a6172b83\r\ncontent-length: 28388\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":28388,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28388, version 1.0","md5":"18bae71b1e1b2bb25321090a3b563103","sha1":"a636827d1fb47f9fddf94d55ed8f25e85155d1ea","sha256":"a29f900a6d603e989449327956e7ac61ea3e6b26ca7426f64e7cccf2cd4aed37","sha512":"e6560e1f68d236883884afa1fa4c2de5ddd6c75e69ddf1057c97f525015aa4306a14fb56c1526141bf2067d24b2ca72ea78e0e518b2bcbaf162056ee4a2b327a","ssdeep":"768:KD+2Y2za0bgeumM+doeWITKGOgUT3CbeZq:KDFzfKJ+SHIGGOh3CbeZq","tlshash":"9dd2e1a0bb98461d35fe1ba096ed42bf4a1d7f4ded7c1a65093b2b80174d4df20d8c68","first_seen":"2025-09-14T11:55:19.751418Z","last_seen":"2026-06-13T01:54:51.765382Z","times_seen":22872,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/lock-3.svg","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /lock-3.svg HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 239330\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"lock-3.svg\"\r\ncontent-type: image/svg+xml\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"198d2176315fdfe9147be0de2750d2f3\"\r\nlast-modified: Fri, 13 Feb 2026 19:09:53 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /lock-3.svg\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::qhrzm-1771249124081-1015df19d3da\r\ncontent-length: 393\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":393,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"198d2176315fdfe9147be0de2750d2f3","sha1":"3705ab712b1e06f1bc7112f3288898a6966f5313","sha256":"635b97ea272c2ede68d80126994f2b1c6aa1ff3bc7da214c4becbc9474d956f8","sha512":"a35304be9dbd960caf036718405b244f8d858aae78bd1253e302be98fb220891eb10967b8d340b68c334800f0aa54c166d6d591fbff9fec8eca0573cc4fdd490","ssdeep":"","tlshash":"09e02bd86868a88c48168774afbc30d1210b74bc721d45ecb1401534b2617efe4c7b55","first_seen":"2026-02-14T16:40:29.678823Z","last_seen":"2026-02-16T13:42:44.555039Z","times_seen":5,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/addWallet-3.svg","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /addWallet-3.svg HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12607\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"addWallet-3.svg\"\r\ncontent-type: image/svg+xml\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"6837afa26d31cef3a6737069dcadadbb\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:36 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /addWallet-3.svg\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::gqm4l-1771249124090-d4659674f0c3\r\ncontent-length: 670\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":670,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6837afa26d31cef3a6737069dcadadbb","sha1":"152305e723e83e367aa29a844623eb9deaa695cf","sha256":"24a5fecc8adaf86328e8e8b1fbf25d1d59a8b7da8b24996f3c0e454acb938450","sha512":"e246fd9419ed60893f6b74376531ac83e9a6e66d2877a8021677265eece6a2796a1305162a67aed32165971661bddddf223c1f5a73874e9d7b200b31354ef69b","ssdeep":"","tlshash":"4f0126e1182c7ccc494707b88facb5c3136b65ec302c08fd719d2428a6503afe89be82","first_seen":"2026-02-14T16:40:29.681141Z","last_seen":"2026-02-16T13:42:44.565661Z","times_seen":5,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_vercel/insights/view","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.412Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"POST /_vercel/insights/view HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://base.assist-us.xyz/\r\nContent-Type: application/json\r\nContent-Length: 130\r\nOrigin: https://base.assist-us.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":130,"data":"{\"o\":\"https://base.assist-us.xyz/\",\"sv\":\"0.1.3\",\"sdkn\":\"@vercel/analytics/next\",\"sdkv\":\"1.3.1\",\"ts\":1771249124405,\"dp\":\"/\",\"r\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/plain; charset=utf-8\r\ncross-origin-resource-policy: cross-origin\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-ratelimit-limit: 1000\r\nx-ratelimit-remaining: 999\r\nx-ratelimit-reset: 60\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::qc5m4-1771249124415-13d5a1549202\r\ncontent-length: 2\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"e0aa021e21dddbd6d8cecec71e9cf564","sha1":"9ce3bd4224c8c1780db56b4125ecf3f24bf748b7","sha256":"565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3","sha512":"900110c951560eff857b440e89cc29f529416e0e3b3d7f0ad51651bfdbd8025b91768c5ed7db5352d1a5523354ce06ced2c42047e33a3e958a1bba5f742db874","ssdeep":"","tlshash":"c710000000000000000000030000000030000000000000000c000000c0000000000000","first_seen":"2023-03-09T09:04:49Z","last_seen":"2026-06-13T02:48:57.951978Z","times_seen":323520,"resource_available":true,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":66,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/delegate-3.svg","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /delegate-3.svg HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12626\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"delegate-3.svg\"\r\ncontent-type: image/svg+xml\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"8148105bfe996dc980d7789543db3269\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:17 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /delegate-3.svg\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::qc5m4-1771249124083-df2146d063e3\r\ncontent-length: 433\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":433,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8148105bfe996dc980d7789543db3269","sha1":"8a4c1d537e39a283ac3db2866c468e698ac72f59","sha256":"22335bd4d34eaadf61fc8a7ed35ec7b75b97f12d691b3ba8c8b6e7457fc3ef1b","sha512":"b53cddccb74cb29ca68720574ad7dc4f933829556393d2c36dab2f108ed4dda31ecf9d8d1ca56520b7b695f12dbe0bef0c39511adf08cb31ad4eef38fcb704aa","ssdeep":"","tlshash":"5de055d11a786848848683709afc31c2123638ec309809b8b9ec6124b3857ffe886a46","first_seen":"2025-08-11T16:16:36.167622Z","last_seen":"2026-04-24T10:09:21.833694Z","times_seen":37,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/99001ff5d6b867a1.css","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/99001ff5d6b867a1.css HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 12627\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"99001ff5d6b867a1.css\"\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"8a32a05411986dbba98725a6b4b8877d\"\r\nlast-modified: Mon, 16 Feb 2026 10:08:16 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/99001ff5d6b867a1.css\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::9klfd-1771249124088-4e64e1751a86\r\ncontent-length: 19075\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":112261,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"26bd843c3ceee6b80c897a930098eb0e","sha1":"c829748ec215a97ecaacbc452173dde8c3a6e4ff","sha256":"d63eea56b5e1cd1aaed74b986c4d4976e8a61985aca91efbd4eac9924634e12b","sha512":"af954b211b4d7dbf957c03b8113f9a458c1d4a60bc5cf51db86a1d974b7c4929addaa5fec9b2a9f05485ec91d0ecc04cb0f2c2de80cc1a5ffa54cf11224813f4","ssdeep":"3072:JHhE4bFuU4y4nQUvrfAgMno+WDAm+A9UBj8:JHhEc14yBUvrfAgMno+WDAm+A9UBj8","tlshash":"68b3e690b139e53ebc3764f9538cf89c811970c0dd6942edfe16a22246c7bf66ab7109","first_seen":"2026-02-14T16:40:29.682408Z","last_seen":"2026-02-16T13:42:44.571621Z","times_seen":5,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"base.assist-us.xyz/_next/static/chunks/12b1c28682b16bd5.js","fqdn":"base.assist-us.xyz","domain":"assist-us.xyz","tld":"xyz"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://base.assist-us.xyz/","date":"2026-02-16T13:38:44.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.assist-us.xyz","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Feb 2026 19:47:24 GMT","end":"Sat, 16 May 2026 19:47:23 GMT"},"fingerprint":{"sha1":"52:1E:95:A3:01:89:6E:5E:4C:E1:C1:44:1F:8D:DE:2B:AC:C8:3F:FD","sha256":"B6:49:19:DE:11:E8:D3:8F:91:05:F4:55:1A:82:E7:A9:E3:C4:6C:3D:42:3D:6A:E2:31:81:9B:BE:AA:3B:87:F8"}}},"request":{"raw":"GET /_next/static/chunks/12b1c28682b16bd5.js HTTP/1.1\r\nHost: base.assist-us.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://base.assist-us.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 211031\r\ncache-control: public,max-age=31536000,immutable\r\ncontent-disposition: inline; filename=\"12b1c28682b16bd5.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Mon, 16 Feb 2026 13:38:44 GMT\r\netag: \"d0aa3fd427e4a95006593f527b47b9cf\"\r\nlast-modified: Sat, 14 Feb 2026 03:01:32 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-matched-path: /_next/static/chunks/12b1c28682b16bd5.js\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::qhrzm-1771249124089-171e2abd39f1\r\ncontent-length: 5071\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":13298,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (13298), with no line terminators","md5":"0e2b653755e3152e432dc43508eac16b","sha1":"e61a28823b7ffdd287eb095ca6f696583f3811ca","sha256":"a051bc2d6154448670ac2c9b1301c54f3ff1ee432963e2fd84eed3dcf0f885e6","sha512":"5b8aa5dfa1604e08c5d46b3d8bae6aaa23ac780f5554669884445480fa86154a492b5b602752d6c6e6b0bc524abaf65c6cc7dd20c6e735dafdd685d5183a805c","ssdeep":"384:dqvAkowlmX8jnl+vT3mrxKHHwyUaZgDdkzbEjBRxq:IvA7wEXwl+vT3mrxKHHwyUaZgDdkzbEM","tlshash":"7252b5a97199f0912ba374a5803f500bf23e2d75281d90b0a362d9e97cb449dd273f9b","first_seen":"2026-02-14T16:40:29.673686Z","last_seen":"2026-02-16T13:42:44.558749Z","times_seen":5,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-16","alert":"Sinkholed","trigger":"base.assist-us.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}