{"report_id":"fecb38a7-92cb-41b4-98f3-6a393672a262","version":0,"status":"done","tags":[],"date":"2026-06-19T03:34:35Z","url":{"schema":"https","addr":"amlsolscan.xyz/","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"amlsolscan.xyz/","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"title":"Aml crypto checker - blockchain analysis tool AMLBot","dom":{"size":133834,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"f307ce9773b737f2f253f95de579a011","sha1":"0dc1819d60a973e3eacd8ed4fce2f4c092f8d20d","sha256":"3812c8b991b9be354a0aaeba48b3745ff52e2dfc2361b15db22e68853b9d133a","sha512":"37a757fe6cdb84f3cad6768a4f208d2599fdea06ea72329f440f92336b4f3058ae64eede8ae43e7ade688e6a62b2584d50f74e511098ee67bc8b375b22905db6","ssdeep":"1536:vES9ES2xZWb/eJwdhg3X+MAS4AxIosbOAWPCekNqxiBNP6/AwhUIFgIGFXY/L0Lr:8rS2xZWb/0w4Zg/8LGsrSrk9tvkjv","tlshash":"c1d3bf56ea610624f5bbc51db942272e3725c092af0bceb87fd8d14c8a8e6de31533c5","dom_hash":"domhash430c3580d7cc8e31f2ef1830ba937b97","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"amlsolscan.xyz/","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-24T03:34:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"amlsolscan.xyz","ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-06-05","domain_rank":0,"first_seen":"2026-06-19T03:34:05.465397Z","last_seen":"2026-06-19T03:34:05.465397Z","alert_count":40,"request_count":20,"received_data":1368094,"sent_data":10134,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"amlsolscan.xyz/","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b5cabf369e63b4788fe5193c5625f4a9","sha1":"be5ec282943da605f3d5590ff12b8e03748eadcf","sha256":"443babe635d5b28b10d3621648d55107720edb6bb02d339a1e7ff6817bfee5e9","sha512":"b4ced1e04cdd8cdc2ec85926bb4d19506d01989639d62beeeff515b025bbfbbdf2b81b6b1e8284f4ca09bf023e46af86775a48714c26fc9325ea222afbd025b0","ssdeep":"","tlshash":"64c0c003903cccf00c68009f103d32887080353c00d31687c2bc4c477c4ce404b0cb18","size":180,"data":"","first_seen":"2026-06-19T03:34:10.025177Z","last_seen":"2026-06-19T03:34:37.671938Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/secureproxy?c=%2Fipfs%2F1sz7BXbVeRUJtD-mbJh0HAdb55b05a0e363b10a012792482841b2f%3Ft%3D1781840057609","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5a79438ae62da36541d5a5ce4b188ad1","sha1":"1c83f551f509b0eba60aa42a47f112a1dbc9838d","sha256":"f3c39828faabe31faa8ec7803a00517e86c3f0e37dcb2a9cf242fba5549d979a","sha512":"c182c7684e090752054d21474db0da2c8e475cb28e773ca7744c019a42d1d43b5484361cbe9a2e501d384f18674ddd0bcea3a6a700835abdfac04831c06fd7c1","ssdeep":"6144:4hDFMHTn8U1qFcHZVNYT1XveUtK3+9mpQttmI4qrBLOfXsl3toLAp:sFMzn8UIFTeUtG+9Zmaxx","tlshash":"d0c4b8e38b0899f344c427b7046f546fefc8bf481f8b985b53c1ac9e52653ae49e8158","size":571430,"data":"","first_seen":"2026-06-19T03:34:37.65642Z","last_seen":"2026-06-19T03:34:37.65642Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"amlsolscan.xyz/0","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:02.749Z","timestamp":1781840042749,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /0 HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:02 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=5,i\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: \"6a242b4f-0\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nage: 22\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eOxGNi7W%2BwLowJQQyU5K8vFd4%2B%2Fwi5Jwmvs6756Fw%2F5rbSvsA2vJtABMehSpvd4VeLMtPcq%2FNDLSHDr8hiHf%2B6FStZIbnB2BtgOdMraM29KvoAv4d3UPZN4Mp00cP0uf5A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a0df79cb2c647130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":910,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T10:40:22.983927Z","times_seen":17312174,"resource_available":true,"data":null}},"time_used":14836,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14836,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/index_1.html","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.622Z","timestamp":1781840057622,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /index_1.html HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 36\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kNkAsSHh7fgi4RFYpa7O4d%2FLrTdsB%2FvPqsCCrSIo98EblXAo%2BTKNRABUNbjVHxRLfZ%2BiKW8a3qqAMQEXW49I5lNzZ8qCAQ2XB%2BlUK9vI5u53j1gi4VsgyLmslvs8SyQmww%3D%3D\"}]}\r\ncf-ray: a0df7a282d107130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":97,"size_decoded":995,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"948c3b0b89a440438cb10c44dfb25fba","sha1":"e4d35e5e283c4cfea043a022a3b06f0e85d231eb","sha256":"3de2c358acd98dd93f54af55a7d89ae64cca5757d76fb95ae74db8bd63389bdd","sha512":"fb5a9b43f60c13b8fa0fc50299d4083c2d3d1534753b8dc29871250020448c54f220d9ea2cad18d8515ece5afb532d23486cd870bce845d2b2d3d22630c9b7c0","ssdeep":"","tlshash":"72b01276d811080f6c50afe0cb8ae1c48400d838f0214c047ca5b180dd9c132c013a84","first_seen":"2023-04-07T21:29:48Z","last_seen":"2026-07-17T07:17:10.924893Z","times_seen":1129,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/index_3.html","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.634Z","timestamp":1781840057634,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /index_3.html HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 36\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2axLrShwFbloDUV%2Fc%2B7hXxwAhk8eyxlVjJ4s1%2BJEf9OrWhykpRI7%2FcF7gD8tcURxCIqrggCXATZhK7g1qkgVIBv9NMU4Mx1g%2BK%2BCfnmQ1zJk8Z2z0xtTPsTbRDEWuZMdbA%3D%3D\"}]}\r\ncf-ray: a0df7a283d137130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":133858,"size_decoded":22615,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"2a37e4499cf3a1dae3b4a0b973c7d9c9","sha1":"b5d3547a22e0746fe1ba29af49f76209bed37651","sha256":"59945b304458ddfbd720aa6de6acb35b6df706ca54fdf2f98fa3e9bd5426c012","sha512":"f8b919bde6485e87cdf8e2cce0bbf75488c3c242b0121ec3c655b00eed24494f0a73be4248728ae8a76677cb8e52e86776395e34e4b78aadf12f2d9f1cff03f8","ssdeep":"1536:vES9ES2xZWb/eJwdhg3X+MAS4AxIosbOAWPCekNqxiBNP6/AwhUIFgIGFXY/L0Lb:8rS2xZWb/0w4Zg/8LGsrSrk9tvkjf","tlshash":"d0d3bf56ea610624f5bbc51db942272e3725c092af0bceb87fd8d14c8a8e6de31533c5","first_seen":"2026-06-19T03:34:10.000266Z","last_seen":"2026-06-19T03:34:37.633482Z","times_seen":2,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/sddefault.webp","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.646Z","timestamp":1781840057646,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /sddefault.webp HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: image/webp\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: W/\"6a242b4f-4776\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 36\r\npriority: u=4,i\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GBOMV60zrTile4dx1l%2BoPpmQnPmRFH574EZ8F%2BRIPCMnGpRo1EMqzCRg6oBHGK2D0%2BZmJbmmqXnVMVHfy1ZM5SMPa13%2FgIcaeZq4YJSI9SN822mu3Inr0Ha6Tqh4gifhjQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: a0df7a284d147130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18294,"size_decoded":19194,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"cc0f1bf3642245d7d2dd3b8262c59bbd","sha1":"ffffbac8a672a37d147ea1b6d40024e7a550cf44","sha256":"580cef5e126d0adba5c2eb7c4a6b3874333ae874a5c92173c9695c811bbd8b45","sha512":"491df8a95edc19dd6ebf85e063adc762c664676b02a8688fb8105316e67140259201891cfd666329e6a0f785f5c1411fa12f2d651c10b738f2e7139b17601dbe","ssdeep":"384:4uj8NKLU3nxh95TMmebMukaI8u0JmvmHN6VzEF+z:8+gPTMOuXIb8mutmA+","tlshash":"9782e17dacde3921c0cdce731ad6888f4eda5c13709d9fb449965d89884493144299ba","first_seen":"2026-06-19T03:34:10.022536Z","last_seen":"2026-06-19T03:34:37.637831Z","times_seen":2,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/e4af272ccee01ff0-s.p.woff2","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.683Z","timestamp":1781840057683,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /e4af272ccee01ff0-s.p.woff2 HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/e22c0bba46e3c474.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=3,i=?0\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: \"6a242b4f-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 36\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iMTvuWQwBU6PXuuyjft9r1K4LZ0JgAdX0KdoTDKYz7gwSQa%2BsFlc3cK3YZPYvdQoJhw4%2B0awL15EI9C8Oq%2FJ0VXZZraGzxwkmaFrAwNx1Zl%2B35cVs27K8x0nu3eGIoR9Pw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 48432\r\ncf-ray: a0df7a288d197130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48432,"size_decoded":49387,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-07-17T10:39:42.213673Z","times_seen":77480,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-19T03:34:02.505Z","timestamp":1781840042505,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:02 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\nvary: accept-encoding\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\npriority: u=0,i\r\nage: 22\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4HYmT4pVesTsdGwOKwrCrpJiGaiAHwf8pnwCNDwZ7OZOR%2BjJY6zHHeCq3VeKuPhHOk2k83TpEe5RnsOecRfym6hrUNOgAbViVd45UczTdmT2wmhcqTf0JaBdsiQQFOAQvw%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a0df79c9cc5f7130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":108072,"size_decoded":39665,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (41540)","md5":"94fc4db6c00f46563eb9b9e614ce5777","sha1":"4b7ab18e54baf5620f035193ddfb5e9bfc399b9f","sha256":"4838d6afe7a1eacbfa4040f9f9e2d3dd4c77bd483dc66db83f95b0314bc546d3","sha512":"51b4eb8fef22568522e146d60c0954a5d1674b810a655812cf37370f86e8d141f289bc527bad384ff9cef9a89ecda9d7c499133f3d40e34d46bd03b054a10cbc","ssdeep":"1536:8ebx/c64Jysq7vMsX6CkdxMIxmvu3QllLOW4PWDlK0WYT48X/tZvcZW:8ems6QcZW","tlshash":"d1b37de2636853f8a50747e5a821622c307b30fabf22ce54c29d0dd6dbc3ee4586dd46","first_seen":"2026-06-19T03:34:10.00539Z","last_seen":"2026-06-19T03:34:37.643446Z","times_seen":2,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":3,"connect":18,"send":0,"wait":14,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/e22c0bba46e3c474.css","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:02.741Z","timestamp":1781840042741,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /e22c0bba46e3c474.css HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:02 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: W/\"6a242b4f-c912\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 22\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dFoTGWKG5osG0oisNcLkbogEGsSeQhWYJf%2FM5HeYXGx7PBkmO3Uj8Q61jNC2qmZ55x8hdmHY3IxvH6Xm2c4SXsHd%2Fv1Hoh9A99W8Zyn6Oknkh%2FgQqOkQEGSajZbs9xC4vQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: a0df79cb2c617130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":51474,"size_decoded":9565,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (51470), with no line terminators","md5":"212948073eb502af28979fb57732be33","sha1":"615e8b4b007d2b2bcb6384093fd57f01702ebb03","sha256":"011a23102140af0e1f2fa9d1b0ab1db8c5acdd9273acc4052fcf6ab37864bf33","sha512":"19a5a1edaf3d24d5655e7d43ce7592996c52eb50b14184405d21dbacd37c56dba07aa82d3273ebf2fc000ca171a480e94dcdc59422aecfcafb216699712c5790","ssdeep":"1536:ewBahZMsMJihoCcZCOud8G8tKS65wqsZCG+dM2cl6iCRotsV84sxIKcv4g01UeEF:ewBa3MQT","tlshash":"d0331b10750c444eed3b4a2322cebe46373d355ec1398191fd29b9895efacea35abb44","first_seen":"2026-06-19T03:34:10.014892Z","last_seen":"2026-07-08T18:26:51.87499Z","times_seen":3,"resource_available":false,"data":null}},"time_used":14844,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14841,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/4f66ce7169180877.css","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:02.743Z","timestamp":1781840042743,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /4f66ce7169180877.css HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:02 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: W/\"6a242b4f-4d7b\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 22\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oOCTg%2F%2Fji4uCej76VeLyrWK%2FTljmv1qYjVMQKp%2BNruXai%2BEVDiyfSUCjQs%2Bp2qtSptoZ9mhWbqlgLS75VxW2NIV9s47WmFT2bcyUDgg%2BLEnblQ1jb9TC4byF0%2Fgz%2BKrCcA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: a0df79cb2c627130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19835,"size_decoded":6267,"mime_type":"text/css","magic":"ASCII text, with very long lines (19835), with no line terminators","md5":"811edc05743b60597246c80199137f25","sha1":"6b1cab58f4a16d284e88dbe3899c93e4c2e92804","sha256":"68b8c0ac7e0c5d47240cb9c99a0701c5eb3208064ad63daf375419dcae69bc0d","sha512":"466d4918e51e1d2f7dfbf578c1320959bedd3219aadf7db598c1cf868f566c885f53173c1af436fd6f9ca16e058e15b6d19c844452b73951301c0716c255e95e","ssdeep":"192:h93W5Ly0YPMTu2yxGtH2CSP7HEqgq3n/wIWUiz4fvg9Uq3ShAd7/2OJTACvSiGTS:h93iy0YPSu2DtH2CSPX3PWBYcpQLY3f","tlshash":"ed92a737eb15211ef437c61af6d0a75c012ae480eb0707fff11bbe2595cb2a61563a89","first_seen":"2026-06-19T03:34:10.007782Z","last_seen":"2026-07-08T18:26:51.844556Z","times_seen":3,"resource_available":false,"data":null}},"time_used":14841,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14841,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/favicon.png","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:05.823Z","timestamp":1781840045823,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:05 GMT\r\ncontent-type: image/png\r\npriority: u=6,i=?0\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: \"6a242b4f-34a\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 24\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CHsInFmOTcG7qCfVtcVMS%2BNtgmsiqROtKRr5Wbk%2FZzUPZ8PBDXPFEIv%2BIGEIw0BktkLgijKn1EeVg3aQO%2B6n0PF2%2FnvScaKsVJ1vEwo93QQqPUplT6RGGaXg6CLv2wTErg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 842\r\ncf-ray: a0df79de6c8d7130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":842,"size_decoded":1781,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"476eed806d70bf9f1bfdecf4baf2e309","sha1":"97e7c78720573a83268c59ca94c2cd3f4509b87d","sha256":"5f5e527b934604aca616122cb13de8a844caa057dc72d8e9310086998f6c61a7","sha512":"e424a2d6608c004c7f8b4d122c9855d5148ed4d8ad6cbfed40e14f647b8ecc50b1c46c2d5c5357f6b30ec8b75f6aa332e8fa8698dd6599c4f9b0e5b5a3874721","ssdeep":"","tlshash":"870170afa2392807d0f80e99eb12528edc91934c611abe14cc280703867fcb3f2a1d03","first_seen":"2024-10-04T11:01:22.290979Z","last_seen":"2026-07-08T18:26:51.916662Z","times_seen":319,"resource_available":false,"data":null}},"time_used":11761,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":11761,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/secureproxy?c=%2Fipfs%2F1sz7BXbVeRUJtD-mbJh0HAdb55b05a0e363b10a012792482841b2f%3Ft%3D1781840057609","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.612Z","timestamp":1781840057612,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /secureproxy?c=%2Fipfs%2F1sz7BXbVeRUJtD-mbJh0HAdb55b05a0e363b10a012792482841b2f%3Ft%3D1781840057609 HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:18 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nvary: Accept-Encoding\r\ncdn-pullzone: 5966451\r\ncdn-requestcountrycode: NL\r\ncache-control: max-age=2592000\r\netag: W/\"8b826-HIP1UfUJsOumCqQqR/ESodvJg40\"\r\npragma: no-cache\r\ncontent-disposition: attachment; filename=6rKhwAsiVKV3Fzd185RCUw.js\r\ncdn-proxyver: 1.57\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 06/19/2026 03:34:18\r\ncdn-edgestorageid: 1332\r\ncdn-requestid: 9b7c4106b252c237affa40565de6e00d\r\ncdn-cache: BYPASS\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F6DOKn6r7E7yGKEUHGFXVMwS%2BoEPAMHiWo6R3KtrgFZ6xtBjyuqIKQpxWXJa3rzT3NvPEWfwfSWMtxpf2EhUIu6a4HGTtLx7vaaWYGEvIFl54a31iBwiaYnitluuNbZdBw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a0df7a281d0f7130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":571430,"size_decoded":119339,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"5a79438ae62da36541d5a5ce4b188ad1","sha1":"1c83f551f509b0eba60aa42a47f112a1dbc9838d","sha256":"f3c39828faabe31faa8ec7803a00517e86c3f0e37dcb2a9cf242fba5549d979a","sha512":"c182c7684e090752054d21474db0da2c8e475cb28e773ca7744c019a42d1d43b5484361cbe9a2e501d384f18674ddd0bcea3a6a700835abdfac04831c06fd7c1","ssdeep":"6144:4hDFMHTn8U1qFcHZVNYT1XveUtK3+9mpQttmI4qrBLOfXsl3toLAp:sFMzn8UIFTeUtG+9Zmaxx","tlshash":"d0c4b8e38b0899f344c427b7046f546fefc8bf481f8b985b53c1ac9e52653ae49e8158","first_seen":"2026-06-19T03:34:37.65642Z","last_seen":"2026-06-19T03:34:37.65642Z","times_seen":1,"resource_available":true,"data":null}},"time_used":803,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":728,"receive":75,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/e4af272ccee01ff0-s.p.woff2","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.677Z","timestamp":1781840057677,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /e4af272ccee01ff0-s.p.woff2 HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/e22c0bba46e3c474.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=3,i=?0\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: \"6a242b4f-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 36\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Man0fLI1crE%2Bmd4NUabYVWWoskhO1D40kfUDa%2FH86ntExSZ5Kdswm6mfvdj0hdUYvBi%2Bt9ueiilP0%2BiW5eAlQ8UIyo%2F5278XNBb5ctBrLUHeOtFhCia8ef9YqT1Bx3EQ2g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 48432\r\ncf-ray: a0df7a287d167130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48432,"size_decoded":49389,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-07-17T10:39:42.213673Z","times_seen":77480,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/e4af272ccee01ff0-s.p.woff2","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.681Z","timestamp":1781840057681,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /e4af272ccee01ff0-s.p.woff2 HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/e22c0bba46e3c474.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=3,i=?0\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: \"6a242b4f-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 36\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Kkn9yWzGeYOs6KXaEqVAcNUuVLUeL88pLhNNqhqBeJFppQHbD9OgzmMZzTfhFsa%2B9SgPHbNV0AvB6A%2FUc8TX92vQvUMWHnFdU%2Fwyi8cJPGjqELKlkbBV2XZRcBiAH9OQ3w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 48432\r\ncf-ray: a0df7a288d187130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48432,"size_decoded":49385,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-07-17T10:39:42.213673Z","times_seen":77480,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/e4af272ccee01ff0-s.p.woff2","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.686Z","timestamp":1781840057686,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /e4af272ccee01ff0-s.p.woff2 HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/e22c0bba46e3c474.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=3,i=?0\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: \"6a242b4f-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 36\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=D%2BIVwNHX2%2FelASZ6ZIWdE2eqvf%2B0cxtlDecks42iWXhgpfkN%2BNy%2FWbNQe67rIfe6uuzMrgacq5BltzlX21OTWG7ccMdeH0%2BTPIYkwOsSt5qXGz8PhTpnaUncl48AkjzjZw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 48432\r\ncf-ray: a0df7a289d1a7130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48432,"size_decoded":49391,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-07-17T10:39:42.213673Z","times_seen":77480,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/index_4.html","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.628Z","timestamp":1781840057628,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /index_4.html HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 36\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oJWtj5J4BGqo2mNlID8Hd4OmwmIyXaAmBquMyMkWwZ51EOOmN2Dt7Lb5LoxXXZQJ5%2BczV0w%2Fu01aXr5CwCUmdGqEY%2FGt%2FJUFDQJs4fgNN%2FOjaNtAMsNgz6GqHt4djd1k9Q%3D%3D\"}]}\r\ncf-ray: a0df7a283d117130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":236,"size_decoded":1092,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"c6ab4be77dc09c0c4804697517bb2cc9","sha1":"72fe416359376198b1bfa9f722c96250919c5cb7","sha256":"ec87bf06d08d0a44f7fff51aee703c930024aceb2620c891cdf26c1c545c9c2a","sha512":"3a26eca1a77be5c0eb2d3d54d78d3c12b700cae91d27e58c426922711fabf78f22e48e12baff98e63879b600587e219edd4a9c28bdaab8b63faf3c6cbfec3fb3","ssdeep":"","tlshash":"40d0a797b3558508a54137d09fc6f0780802fa78b00265c4b9f47270ecaa773f913746","first_seen":"2026-06-19T03:34:10.010338Z","last_seen":"2026-06-19T03:34:37.661692Z","times_seen":2,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/5102d3d22caf0247dd63c69b23e9f205bcdc3fe0.svg","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.648Z","timestamp":1781840057648,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /5102d3d22caf0247dd63c69b23e9f205bcdc3fe0.svg HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/1d8ca45f05bb3ec1.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1yoO3aQ8gJEGouU8pD84ApmTVWR8da9IkFIZ39uhncyLRdRP6EU0P9vX6H4y79D8XiMQ1dzTuxLkrESliZ0djoY6FKjB7dDB2CJsdd3K%2BDrb8RN2rRiWTjE81QW72zJESA%3D%3D\"}]}\r\nage: 36\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\netag: W/\"6a242b4f-1aa\"\r\ncf-ray: a0df7a284d157130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":426,"size_decoded":1199,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e26b4a3493bf3bb8617ac100a03d44f9","sha1":"5102d3d22caf0247dd63c69b23e9f205bcdc3fe0","sha256":"4703cd2080a0a44e5336f82da29205688d4ab5dc0c03b1d80f802882fce75da0","sha512":"4c025f77d8d79357eb9eed6faa634c00acbabc2bcc43ec3a2496a4fc09caadebee210c07f3546853d00084c8c3ac80281594bab452e9894e5a54f4386fa0fe62","ssdeep":"","tlshash":"ece023dd6d25949c640d47c19b3c5131772f3ce4399847d370d58771514cbdae89055e","first_seen":"2026-06-19T03:34:10.017503Z","last_seen":"2026-06-19T03:34:37.664636Z","times_seen":2,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/cover.266c7dbb.svg","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.729Z","timestamp":1781840057729,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /cover.266c7dbb.svg HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PQOBqNJKrc9ZmTgkEEXptBu9SxGWgopO76LdBisWgSr0kCqhX4tZHJ90hFQCzwBcaNnAfOPoSKydi%2FvEVia5wJAfyFsULjbmRJgUAbjsg02T2O1HDtlZy9EpFOXvfS3TgQ%3D%3D\"}]}\r\nage: 36\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\netag: W/\"6a242b4f-2d589\"\r\ncf-ray: a0df7a28dd1b7130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":185737,"size_decoded":70679,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c069c110921c9e8c899e975621cea8b1","sha1":"0dbd94044406ed06def29333714c36dc9c039b55","sha256":"8ce0c571232fa225e7c62dcc317372d9ad43cddfd225d7a1e0fdde30eb948c21","sha512":"5f27f6025e4be8a7fdb46929eaed24a0d8212c3f69893c66b88ba547fb63277beb5515b7978213aa2dcd2882e63f5350f42b3e47346f579570b801d932b56318","ssdeep":"1536:e7wzYYLwcdRhBvgeMAH+96Td0iVho3VFRtelvtNQ2vib9NeHg8Fz+qJ:chGFzv","tlshash":"620480dd7fb09dc949c8c7dbbf1150ed3c1b85b79d898b08c06c8b5c299186cae56a83","first_seen":"2026-06-19T03:34:10.019977Z","last_seen":"2026-06-19T03:34:37.667064Z","times_seen":2,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/1d8ca45f05bb3ec1.css","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:02.744Z","timestamp":1781840042744,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /1d8ca45f05bb3ec1.css HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:02 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: W/\"6a242b4f-3dc7\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 22\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0zvSoXDCfAgkPgy0irngLrIDytNuJZCRbC3JRJ7iOnB9L7%2BOLAEFcEqr5SbmY7MQUB2wvNNIv%2BqmCFu4RLSRWvn0yZ88yn0eghJWocHb7s9JlX3AfAKvi0Rg%2FSTZlqHdvQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: a0df79cb2c637130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15815,"size_decoded":5237,"mime_type":"text/css","magic":"ASCII text, with very long lines (15815), with no line terminators","md5":"d8079b0ca404f1e0ad6993273a0e3280","sha1":"f6db0107a3ee8c1811cdc3b07386710d386bde78","sha256":"b34ff78ffef038746fc92d5cd70ad614ce533237e076628b36b44927b7485e4e","sha512":"2532a15c8cee229b73e738e469b8fa651391c5884ff244027912e942c326581be575d022a9113ebb29f249889699777a19aeb20834ec665e49cb8b50c02c65ad","ssdeep":"192:mLrI9M8o/8ZEWnwHz7mDTl3/epL07G0Pjnmp1pag2T29W0dphw:mXIrU8ZEXHfm1fWvw29W5","tlshash":"956231332716601cf13b8612b6d077ed212aa846e31f47fb9913ae69d5cf2d20572b8c","first_seen":"2026-06-19T03:34:09.988981Z","last_seen":"2026-06-19T03:34:37.669647Z","times_seen":2,"resource_available":false,"data":null}},"time_used":14840,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14840,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/index_2.html","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.632Z","timestamp":1781840057632,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /index_2.html HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 36\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fj80Z817XU%2BJd%2FhIjqqRvcjdI%2Fcfm5yyNwZQsYlCBU9yuvnjBCCnfy%2BjhyljxMLiptRK6dVFLHNB47FEaTTd%2FgoKtXsJ%2F3YETD3se0Soivo5r%2BZiR9CwpVAwL1EGthjAyQ%3D%3D\"}]}\r\ncf-ray: a0df7a283d127130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97,"size_decoded":999,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"948c3b0b89a440438cb10c44dfb25fba","sha1":"e4d35e5e283c4cfea043a022a3b06f0e85d231eb","sha256":"3de2c358acd98dd93f54af55a7d89ae64cca5757d76fb95ae74db8bd63389bdd","sha512":"fb5a9b43f60c13b8fa0fc50299d4083c2d3d1534753b8dc29871250020448c54f220d9ea2cad18d8515ece5afb532d23486cd870bce845d2b2d3d22630c9b7c0","ssdeep":"","tlshash":"72b01276d811080f6c50afe0cb8ae1c48400d838f0214c047ca5b180dd9c132c013a84","first_seen":"2023-04-07T21:29:48Z","last_seen":"2026-07-17T07:17:10.924893Z","times_seen":1129,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/e4af272ccee01ff0-s.p.woff2","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:17.679Z","timestamp":1781840057679,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"GET /e4af272ccee01ff0-s.p.woff2 HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://amlsolscan.xyz/e22c0bba46e3c474.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:17 GMT\r\ncontent-type: application/octet-stream\r\npriority: u=3,i=?0\r\ncast-mode: default\r\nlast-modified: Sat, 06 Jun 2026 14:14:39 GMT\r\netag: \"6a242b4f-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 36\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BCiSsDWnJpvQmSTRZQqnxGIMSzvM%2Bs9zPDXffQtmY0XTCxHGy2xW4pJv3oxd98n1nCRHbEqtwH%2Fbqp1h%2Bc79YUpq8ip0pWEVdJWxH%2B%2FhufK%2Ftqn6KQUyTXFSZz8FTEATZw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 48432\r\ncf-ray: a0df7a288d177130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48432,"size_decoded":49391,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-07-17T10:39:42.213673Z","times_seen":77480,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amlsolscan.xyz/secureproxy?c=%2Fjmpd%2F","fqdn":"amlsolscan.xyz","domain":"amlsolscan.xyz","tld":"xyz"},"ip":{"addr":"104.21.65.74","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://amlsolscan.xyz/","date":"2026-06-19T03:34:19.236Z","timestamp":1781840059236,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amlsolscan.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Jun 2026 21:31:19 GMT","end":"Thu, 03 Sep 2026 22:28:49 GMT"},"fingerprint":{"sha1":"BF:E8:F2:3B:5B:E9:AF:A6:57:93:01:31:43:3E:72:93:7F:7E:55:A2","sha256":"AD:8D:08:A4:01:A6:D5:34:4D:17:E4:D7:4C:DD:F8:08:D7:D0:76:04:26:F0:BF:85:DE:3C:DF:BB:75:9E:6F:00"}}},"request":{"raw":"POST /secureproxy?c=%2Fjmpd%2F HTTP/1.1\r\nHost: amlsolscan.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://amlsolscan.xyz/\r\ncontent-type: application/json\r\nContent-Length: 1420\r\nOrigin: https://amlsolscan.xyz\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 204 \r\nserver: cloudflare\r\ndate: Fri, 19 Jun 2026 03:34:19 GMT\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 5966451\r\ncdn-requestcountrycode: NL\r\ncache-control: no-cache\r\netag: W/\"a-bAsFyilMr4Ra1hIU5PyoyFRunpI\"\r\nx-ratelimit-limit: 20\r\nx-ratelimit-remaining: 18\r\nx-ratelimit-reset: 1781840119433\r\ncdn-proxyver: 1.57\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 204\r\ncdn-cachedat: 06/19/2026 03:34:19\r\ncdn-edgestorageid: 1329\r\ncdn-requestid: 5c31176844512282a9c258878b0fa057\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2AoPioCf8MzSeDSw0wVYFAfz9MNriK9J8ajoZzCDIBXjltCIEcQtP5N9XSg6ZC4cb1B6z5SPYjNLMaSR6j8fiZMa1ZzvYHe%2BIi0N1Lq61xjVSkqQu6gw5C0ljDGDO29ehA%3D%3D\"}]}\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a0df7a323d517130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":3375,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T10:40:22.983927Z","times_seen":17312174,"resource_available":true,"data":null}},"time_used":661,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":661,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"amlsolscan.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}
