{"report_id":"01f7d85f-8cf8-4536-b005-eb68efdc4694","version":6,"status":"done","tags":[],"date":"2026-03-05T05:01:51Z","url":{"schema":"http","addr":"phonixtrade.ltd/","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":0,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"phonixtrade.ltd/","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"title":"phonixtrade.ltd | HOME","dom":{"size":3100,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3093), with no line terminators","md5":"7740020df279803e0fe1dab4d9144b16","sha1":"3449ae0ea62d53594148710ddadfe5703bb9e765","sha256":"9fc54b4928e716cd4ed80d5a71b5cffc2fb97ac92ae3e27a123c97afd121e40a","sha512":"fa74dd45da9a02099eb31088dbb51a00a32e4dab1bd91bd0b360c5cc4756525b195faf9ad21e334ab5c762cfd34c515bd5c195fd766a739e2b3143c16a571337","ssdeep":"","tlshash":"4d5131a1609c500b9613d5c0f9a23aeef4ce004cc73159d07e2c36ef9adadb718a716d","dom_hash":"domhashe267eb60b27890093658a64c7f1c1597","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"phonixtrade.ltd/","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":0,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-09T05:01:51Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"maps.googleapis.com/maps-api-v3/api/js/64/3a/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"maps.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3442,"first_seen":"2012-05-22T14:23:23Z","last_seen":"2026-03-01T23:00:00.842443Z","alert_count":1,"request_count":18,"received_data":1417600,"sent_data":9827,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-03-01T22:28:03.022415Z","alert_count":0,"request_count":3,"received_data":134825,"sent_data":1511,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"websocket-visitors.smartsupp.com","ip":{"addr":"3.73.3.90","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2012-08-25","domain_rank":411464,"first_seen":"2021-07-12T07:42:32Z","last_seen":"2026-03-05T03:32:56.152791Z","alert_count":0,"request_count":1,"received_data":224,"sent_data":635,"comment":"","tags":null,"fingerprints":null},{"fqdn":"maps.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2012-05-22T14:23:15Z","last_seen":"2026-03-02T00:43:50.147538Z","alert_count":0,"request_count":1,"received_data":297068,"sent_data":475,"comment":"","tags":null,"fingerprints":null},{"fqdn":"places.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":263251,"first_seen":"2024-01-23T17:05:15Z","last_seen":"2026-03-04T04:52:53.545595Z","alert_count":0,"request_count":4,"received_data":5167,"sent_data":5805,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.251.157.119","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2026-03-01T22:26:33.479606Z","alert_count":0,"request_count":1,"received_data":2967,"sent_data":836,"comment":"","tags":null,"fingerprints":[{"name":"Google Maps","description":"Google Maps is a web mapping service. It offers satellite imagery, aerial photography, street maps, 360° interactive panoramic views of streets, real-time traffic conditions, and route planning for traveling by foot, car, bicycle and air, or public transportation.","website":"https://maps.google.com","common_platform_enumeration":"","icon":"Google Maps.svg","categories":["Maps"]}]},{"fqdn":"translate.google.com","ip":{"addr":"142.251.143.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":609,"first_seen":"2012-05-30T01:30:32Z","last_seen":"2026-03-02T07:35:19.018752Z","alert_count":0,"request_count":2,"received_data":84739,"sent_data":1004,"comment":"","tags":null,"fingerprints":null},{"fqdn":"translations.smartsuppcdn.com","ip":{"addr":"185.76.9.12","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"domain_registered":"2018-11-20","domain_rank":560346,"first_seen":"2022-11-04T22:28:35Z","last_seen":"2026-03-05T03:51:01.073919Z","alert_count":0,"request_count":1,"received_data":7668,"sent_data":521,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]},{"fqdn":"bootstrap.smartsuppchat.com","ip":{"addr":"52.57.152.176","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2014-02-02","domain_rank":425291,"first_seen":"2018-01-29T06:10:36Z","last_seen":"2026-03-04T21:57:05.878487Z","alert_count":0,"request_count":1,"received_data":1556,"sent_data":554,"comment":"","tags":null,"fingerprints":null},{"fqdn":"phonixtrade.ltd","ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"domain_registered":"2025-03-29","domain_rank":0,"first_seen":"2026-03-05T05:01:56.212633Z","last_seen":"2026-03-05T05:01:56.212633Z","alert_count":34,"request_count":34,"received_data":7233183,"sent_data":18409,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-01T22:18:12.522658Z","alert_count":0,"request_count":3,"received_data":185825,"sent_data":1734,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.gstatic.com","ip":{"addr":"142.251.143.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":146047,"first_seen":"2012-05-29T15:36:17Z","last_seen":"2026-03-01T22:30:33.752681Z","alert_count":0,"request_count":3,"received_data":27341,"sent_data":1711,"comment":"","tags":null,"fingerprints":null},{"fqdn":"use.fontawesome.com","ip":{"addr":"104.21.27.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-10-18","domain_rank":6983,"first_seen":"2017-01-30T04:43:25Z","last_seen":"2026-03-01T23:57:42.623846Z","alert_count":0,"request_count":1,"received_data":55141,"sent_data":510,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-03-01T22:15:00.771016Z","alert_count":0,"request_count":28,"received_data":976113,"sent_data":16098,"comment":"","tags":null,"fingerprints":null},{"fqdn":"translate.googleapis.com","ip":{"addr":"216.58.207.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":6317,"first_seen":"2012-05-31T07:21:21Z","last_seen":"2026-03-02T05:00:20.239865Z","alert_count":0,"request_count":3,"received_data":418721,"sent_data":1792,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.smartsuppchat.com","ip":{"addr":"185.76.9.11","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"domain_registered":"2014-02-02","domain_rank":491650,"first_seen":"2017-01-30T05:24:57Z","last_seen":"2026-03-04T21:57:05.946745Z","alert_count":0,"request_count":1,"received_data":18556,"sent_data":451,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]},{"fqdn":"widget-v3.smartsuppcdn.com","ip":{"addr":"185.76.9.27","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"domain_registered":"2018-11-20","domain_rank":532262,"first_seen":"2022-10-03T13:48:45Z","last_seen":"2026-03-05T03:50:59.985758Z","alert_count":0,"request_count":3,"received_data":324406,"sent_data":1458,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"phonixtrade.ltd/js/webflow.069902445.js","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f630ead94c1304c4ab1588f890b3001a","sha1":"163720d9202dd790cbc946a759b47c6a94e930ee","sha256":"f65c212c93fe7c5029da1b067323bfdca6a7b952bbc19da6636345883d69b2c5","sha512":"a559abbc3b0ee5a01974cd7807f7273a89ba072b029dbd72fcf2624d5d3a8de67d196ac61a897fa5750ab649c33ad4a658d653aec1423e69682695ab3088a4db","ssdeep":"6144:cHEeFzyRX/ifIYr+R96TSGKrkMzqXCJSk14Qy:cHEeFoifIYrowTjKAMzqSJU","tlshash":"2dd49420f5b725775187f664beb24b86673052c81342991c4c8dedbc6a3e8748326efe","size":640619,"data":"","first_seen":"2023-07-19T19:32:37Z","last_seen":"2026-04-04T05:07:16.991123Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/geometry.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"eb52ce1e08c341f899fe0b095fd9882c","sha1":"b4a133015d796fb36a03c9b9dac3d24b2d2eb9d2","sha256":"519ac2271f5cc640781d38e60e0c932f2d13bde29363d9587b602188df6418b5","sha512":"529663fc6a511f99039a085fc38d7a21c1b1efc043432b76047c8f8e22d5663319f4a5c03ca264d6f001eaf48cce491c44eea3af6b1f977d3c880b0be5732f48","ssdeep":"192:FO+NVX1f5GMDkZHextchDh+Aq3zNcj+Wg9AoWe0L+2d+xj8/nPnRB6lAiIs7:o+NVX1f5lDkJextUFdCNr9AP+2Yxj8/6","tlshash":"f3e1a63c36ae38478371ab9141b50053e566b2aeb1479a8c4c7dc74a99b64de04aff3c","size":6920,"data":"","first_seen":"2026-03-02T17:59:05.677922Z","last_seen":"2026-03-11T17:01:15.938025Z","times_seen":4747,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/search.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"671835c866df79bacf0f818594c779df","sha1":"291a08e91ef9108fbf5c93f89d286485c3896a3c","sha256":"5ece825cf13a89064aaf6ab28bcbdfabc1fb35d6cb78494a2772ace377ba9b97","sha512":"bf996c7d10805a7b7c66962511ae6b5a610f5ea530783b65fde34aa224d64e37a80e3e17c0c73d0666ac3c05e426dec5e19dfe491328a15c9c7f2fc96fd4ebbb","ssdeep":"","tlshash":"255176e33353f83b86bad27024aa0081d8645453a405854cfebcdddba8f5ea705bae71","size":2643,"data":"","first_seen":"2026-03-02T17:59:05.704977Z","last_seen":"2026-03-11T17:01:15.916108Z","times_seen":3637,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/common.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"84373bd8b9296b56c786641c5087ca5f","sha1":"f955d99686343474b11048b1d93e42c8bb18766a","sha256":"0bd074fc5b2a553414ce664fbb1bae951ef2b3a5cca16b6d1b9012360f580a5b","sha512":"e3c1bd75a6a696dfeb282481753f9b5b0e2a5f9814e883fc4c791d6cb8dfcfdae94e4f8abe9402b4afb8cda50e51c0e9a0b7807b78bef10ab409ea1ebc62e419","ssdeep":"3072:liBbFtei2dPAWtgPcY2T4ROpXOWD6EyIBqxhCDRbX4Wxrc61/NWksb/9MPJUUkUr:liZFteiaPHgPJq4Ryx0xUDzrc6dNWksE","tlshash":"73c3e7d571937073bfb1a49444a70102b26aa89ab05dcd6db1fd88f3aef185701f9b38","size":128056,"data":"","first_seen":"2026-03-02T17:57:56.881184Z","last_seen":"2026-03-11T17:02:43.978178Z","times_seen":7297,"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"maps.googleapis.com/maps-api-v3/api/js/64/3a/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/tawk.js","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"62dda3e93a14c78d7f5e364f99525042","sha1":"11ee408843fc6464799242e8c5a576d16c5019d6","sha256":"9e8b32201bcba3e12b1b68589f4f840f0d0f0edcd2384f7b9e7708c0dbf5bdcb","sha512":"1d5abec4b1204cce8f27320a636a92d606afec4177449ea91d847cffbf5c3b55b51337721847b63bf950eb46a1454dbd91cee71f96e034f28f1ea6afefdb6f45","ssdeep":"","tlshash":"eef0a26f3c35505907a6a2b8d3b6e92c393961194035cd267692c4ef3cb1fdd270d5ac","size":640,"data":"","first_seen":"2026-03-05T05:02:04.663308Z","last_seen":"2026-03-05T05:02:04.663308Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"3c10d2be62b915647597f87f6c01768f","sha1":"a67d9323e2f10c7cd014bb235679d920e27828d1","sha256":"071dc7a0044abf7f0ab0c7482eecd8c0e748dcaff9568bf718a341ed2a835712","sha512":"3dd4ed95ed5de3e80988654d8550679fb03d8579c7954632c7c61619ba7021d733b0afb72c4976aa9cc7054c3cd1fef18ad527506ec0d2c5ff8bfb239c761ba6","ssdeep":"","tlshash":"71e012404c9c455214a6dd74b76f7145d0158dff764655507accd24a5f68de90128a0c","size":355,"data":"","first_seen":"2025-03-26T16:42:23.458964Z","last_seen":"2026-03-05T05:02:04.708457Z","times_seen":39,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.smartsuppchat.com/loader.js?","fqdn":"www.smartsuppchat.com","domain":"smartsuppchat.com","tld":"com"},"ip":{"addr":"185.76.9.11","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"a4d5607cdbc76688d37ad6311610a058","sha1":"534adf5ac8c28e88b13d1549add0d84a57a52c61","sha256":"7c209ce50b76600257f47c0a47333504478e9c89793713cc7d113bbb688c3eda","sha512":"3ee08aedbe06d4a8181f362bcf9694d164f36309b70f048d42079989f139915e340515f56a6f84e3bb24d4e027cceee7c2c32a710f58ddbaaa5a5a662ccd3300","ssdeep":"384:wBWbE0rIcvqSI/aQ/UpIxN5BWbEgl/ET/xzy2A3wBV+:wAxka0/scT/xzy2A3wBV+","tlshash":"f682b6cc7691b16543ab61b4843f620ff1376929740d8821b965eae13c78d8ed037fb8","size":18052,"data":"","first_seen":"2026-01-16T11:03:53.240781Z","last_seen":"2026-03-30T18:15:12.01857Z","times_seen":4262,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"widget-v3.smartsuppcdn.com/assets/main-c5ThC_K-.js","fqdn":"widget-v3.smartsuppcdn.com","domain":"smartsuppcdn.com","tld":"com"},"ip":{"addr":"185.76.9.27","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"fcd469aa001be1dfd30d0962c705391c","sha1":"87b8c021a1232a7ba7cd2d482113782215313b9f","sha256":"df06e0821c7c9aaa47dc040afcefc59ff8743c8beec02bed3ce656cfa9163020","sha512":"1c344e4bea46a7c81544ced75a2c75c38aa64ad7ddf395c1a0beb293373d339fbb4aea0b0b13864028be791060a40eb12d557d01c7e13169264712b416f91304","ssdeep":"6144:AsJU8SN+jtxjR/ZgQub5/rLmPh+WVcq9kNp:AwU8SN1b5/rL+HV3up","tlshash":"5e544ad47295b43443a700e5507f2006b23e5c29a809c068f6adddf67db99c9a2b7fbc","size":283561,"data":"","first_seen":"2026-03-02T08:25:26.037318Z","last_seen":"2026-03-10T05:00:21.849653Z","times_seen":431,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"6763c311c861111b182abcf578b19851","sha1":"97f00d44c0abbcce7db0c093a2c4f719c975179a","sha256":"6ac356b485d63f0cc833cdbe042e30eb8ad518739d30099c4377c6fa456ca59a","sha512":"5286541946550f038de22ddaec3e4455a4b522a45204230d3b5196c6203367e44230c641665c43d5752ade23117488f49b0f3cb54e465c05ae0c44d29f34f7b5","ssdeep":"","tlshash":"efd0a73b21d1203d0d1736187b6fa50a3d5751477950a506f92e97d02f87cfb1821aad","size":288,"data":"","first_seen":"2025-03-26T16:42:23.463934Z","last_seen":"2026-03-05T05:02:04.709066Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/util.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"46af404ac31f102f9b6b19628f01eff1","sha1":"b49fa1a7a07655c1d968074ed5e63b2cdc5b854f","sha256":"5e59f009b64830aa9f732fb3a31bd12cad20df4560e7e34b22c4e51b044817db","sha512":"65cc2acc074f211ac928fa9d76629b678fc6074e6f8bdf95dd27abec619ff335d67eb0824f0685f0bdf0036d18b1b4b0a0cb121f304638e3f5e6572c331b8101","ssdeep":"6144:u0MLfhzt8serzapShIp9MLStYNrnyj0WxFoQWCk8Zxu0BFVS8+FH:u0MLfhzt8serzapShIp9MLStYZnyj0W0","tlshash":"ef64e67c71316b0ee973c85fc626301e90257edbfad488bdeee55146ea50989f0e0638","size":312149,"data":"","first_seen":"2026-03-02T17:57:56.901309Z","last_seen":"2026-03-11T17:02:43.982297Z","times_seen":7294,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps/api/js?key=AIzaSyCmL18misQw9KdwqGaw3zHkitj8vG6QF2Y\u0026paint_origin=\u0026libraries=geometry,search\u0026v=weekly\u0026loading=async\u0026language=en\u0026region=us\u0026callback=onApiLoad","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"587267630f822a880fbea9355790305b","sha1":"13ebde331d4680d915be8deddc54e4cf2f21b04a","sha256":"2bbc3f6d7bb4951b58cddaefe9dedb1fb3c439d1ff0fc66b59695c4416d165f7","sha512":"f07d8cb6036f590fe96ef39e2804105ee292bb4473edde83540fddd3ef5104fc5becdba0cd0280b8d7b8b223996942a6dc27a60b388acf95cf74a87a1848dbf8","ssdeep":"384:lVsmRJA6oU8Dl7X+X19NFC2FrUH16tdullRAAIdzlkYjtuPGLlclbwubjwID7DjX:lVtRJA6oUcl7X+X1TFCmrUH1NRAAIdxU","tlshash":"f34276b612160c39de03a42ce56dff1c3db39b632da6e5f095b6d4c48d528b168097d3","size":12868,"data":"","first_seen":"2026-03-05T01:57:38.314054Z","last_seen":"2026-03-05T14:28:55.007396Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/onion.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"009cf4ac98ea1d4ce56f4b7c5c22a4be","sha1":"106a3ba100b2714701ea2ba9db165d075fedc098","sha256":"6e1ffabe27e72411fa57c8b4c575abaf0bcc043077c85dc5dbde45ca8310c1e2","sha512":"b9a878a093632967c6fac6f45e02cebf71cbde8756c6bf303cf4cab061de0a608bae0a8c1993071c82f795b41138b221c90da8023d787903a251044a3200af4e","ssdeep":"768:wI1zPx+NhbJMzS+yasGQgchHVJ+qOrLlD0QIbhI/NFaOuBVCmxKG4YQhJ/OWpJ2A:w/R37++RSbgA","tlshash":"05d2a3987593719383f2b6a1817b110be66d68c1f448899d78fc8cd27bf458a21b5f3c","size":30941,"data":"","first_seen":"2026-03-02T17:59:05.751866Z","last_seen":"2026-03-11T17:01:15.912601Z","times_seen":3981,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.gstatic.com/maps-api-v3/embed/js/64/3a/init_embed.js","fqdn":"maps.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"20816dc2d948968d6eedce81a43e4904","sha1":"8b0d6547cd434c73fd5f50d0df6ea98a5c95c8d7","sha256":"53fcb0fce7ae8d996a50eea07517780e706d86c17276fa19e0b7e6cf22d6e9ba","sha512":"0147772ed11401f434550fe462428cfe22772bfdd0422ee8369ea757cc2dd08eb49a0be6a7d71b856335447f73d4fefef12709dd169ef571e5da2efb87b07597","ssdeep":"6144:R3PDP3oM4MD0FTuLipHngBqHgFxTVRh8O:RdtLXT","tlshash":"83544c9c7662306a91b395f1002f114bb635ecaaf44c84b8f164e9e5ad74cb902b7f7c","size":296208,"data":"","first_seen":"2026-03-02T17:56:13.625761Z","last_seen":"2026-03-11T17:01:15.919078Z","times_seen":3637,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/search_impl.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e9ed7857cafe194e072d57fee8f3cf49","sha1":"f64efd0316da79158a9881bf9224350139e08710","sha256":"1a302685f8beafd2ff31e1f484d5e98db978c6390a4682845d951d2b81e180d1","sha512":"839204b45f649d1c768ae445231d42bf9d13c805bdcf539cbe97783d69a9346b990903b467a47eefe79de610ab759b52c15ae09b4ab9e3a3e2ef2fd7ce5247a0","ssdeep":"","tlshash":"d37161b461153583026900e05de98208211cd6ceb60ec8f6bfa8af029efddd793f1af4","size":3586,"data":"","first_seen":"2026-03-02T17:59:05.715854Z","last_seen":"2026-03-11T17:01:15.916571Z","times_seen":3363,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/log.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fdbd32a68f1f0d5d598a6a619072707","sha1":"fcebf60fb22ba0347f6e75e93a56fa4f92a357e7","sha256":"bc4a91954d3c7a919df36a7d5fdf377c1553ba6c6e4ef363475b10c0bb831983","sha512":"2c150f8f75132b283b8d5d813610b467218f8fc6885017a2237997936d7248c201115faeae582ce2587e486b2b5b53a5110e05d6feebda049fda93c1294ed640","ssdeep":"768:DmlyxCw0H7e9ynqiR5Pmk1MlLSG3MgofcqDUkQVnKbv9a0pKoe7UY/H4IpdmWNYx:aRi5SP1nfmVnXq","tlshash":"02d2e7c8b2a3a0924fb2e5d544ab4007f6756846f40ddc6dbdecd8e26cf094742b6b78","size":28460,"data":"","first_seen":"2026-03-02T17:59:05.769975Z","last_seen":"2026-03-11T17:01:15.945387Z","times_seen":3002,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/places.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e7a0f1e9a2f6289778aa2adbd939d28","sha1":"06bc3d9588b2a90221da106d8e052df04c995166","sha256":"6672fa2f0c7efb937f266e4915e41cb8be54c2694311efd09ae918f84c0610b0","sha512":"cc4e2bd1a7e215ebe81c6bdd0235943ff51badd82b439fe4591a35ce28e92cd96569817480cb2086359e46afd42225f6f20f8cc8fbfd6fff67f10b9f25705c79","ssdeep":"6144:rmYnqcB2qMpGTRDVSz39Qx3ZM0UmPbEmDU+9kWvrnAqeXJxcJX3dStOvDY1eLZcT:rmYnqcUySpQo+zvrnAqeZ6uAMHkwS2nb","tlshash":"bb745b57a69136296a63c4a05b0a6601e338d40bd0156bed7c2cdf925ffbf81837732b","size":341669,"data":"","first_seen":"2026-03-02T17:59:05.767741Z","last_seen":"2026-03-11T17:01:15.909939Z","times_seen":3724,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/js/webfont.js","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7c96a5f11d9741541d5e3c42ff6380d7","sha1":"d3fa2564c021cf730e58ffddb138cf6b57ed126e","sha256":"81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee","sha512":"23c162a2e268951729b580e5035ad6ca9969cfcc5ce58a220817b912e76b38be6c29c3ca7680cb4e8198863d95a72ea65bd06ff7189b5c8475e4c1ce501aeab1","ssdeep":"384:i11kqRm4UjryX2DfatZrT80NCGz5r2zItrX:iEqRm4cy338m7d","tlshash":"7942c65d7652b26a825280f2177f060b9576fa2ab844c0bc7a89d8d46c74db8037ff7c","size":13188,"data":"","first_seen":"2023-03-07T01:03:17Z","last_seen":"2026-04-04T15:46:31.625571Z","times_seen":48401,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"97105eb67d37089606b2b7fb2fd1dcde","sha1":"6187a4a515085c610ea8f7f36aa5317ec2b6e5c7","sha256":"01d47182e428f82d2441d7733580e53e3047a569e5ec54f946d637f6aa62fdf9","sha512":"9f5c7baa13fedfac69ae93fe751e3f5283bb1f496c126420d6c2aec27eaaf26bcdb1172292476ef60cba93996335c2984906e71cc502cb2751039eba1f2e03dc","ssdeep":"","tlshash":"31e0a70975f510b1d56f19358bcfd03ca4b352073145ef84388c50910faedd8a760ae4","size":303,"data":"","first_seen":"2025-03-26T16:42:23.479107Z","last_seen":"2026-03-05T05:02:04.711176Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/js/jquery-3.5.1.min.dc5e7f18c8bf79.js","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89476,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-04-04T15:27:33.816485Z","times_seen":217646,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.157.119","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"3dceff9a304d2ee1652b72492cd7eb41","sha1":"44f86cc4a872d11132ceb23a2569b0e672f1c4c8","sha256":"ffc7ea1f5551b4eb30cbf4315492d79ee26b48fff41f70f84812f7c2867fe06a","sha512":"380ef785c8a02b328860b8233d1a501f2f9a824fcec7493d4f3efd66a6f446ab8d806a8d1877b61a63b520b77d5894928487ab96fe75f9522f2ae4439c9a3b41","ssdeep":"","tlshash":"9231891924123df2cf0756a9a8aa7e1635bc003f0881cdf878cd0c958f208733a1369c","size":1503,"data":"","first_seen":"2026-03-05T05:02:04.711818Z","last_seen":"2026-03-05T05:02:04.711818Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/map.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d2550504654f7fd009b8b5a350c0cf42","sha1":"c73f7246548eb874abbcdfc9dec145e05c34b36c","sha256":"2d0bd3c8f63d62440b3247f60e1b79116b764b5a1f40dd80cb01d6594ab985aa","sha512":"7277d14402c162d92b1af9e941b0a86fc69f9681ba25b87b2b515745d7e7d8c2f06a93396e234bb6e7fe7ec1b9ab4874ce1ed7a1611bcd842eb68a419c6ca7dd","ssdeep":"1536:2+MPEgTJMYHVl6BwvH0xtTgIRDJkLDvAMZtmFVAawbAmtX4wJFfh8pZu3OcUlQQ5:2+MPEgTJMYHn6BsmtTgK9gDYMTmHAawQ","tlshash":"27830975322235766ff5c4e4906b0202a169e44bb009caed3d2cdceb9de9c8711fab75","size":81644,"data":"","first_seen":"2026-03-02T17:59:05.755269Z","last_seen":"2026-03-11T17:01:15.944886Z","times_seen":4315,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/main.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"41fa9071864cf1520463c3255dddd35d","sha1":"91c44b26be4cbfb4d4cb4a3ecec793fd52debdec","sha256":"45c8d07e0549c583d033a6efe28034d4cfa658f53c1b51987d8fe4a477e127a2","sha512":"fa0d87129cae81619fae9afbbff931e4714a9dfaaa352956683c513516a524001a4b62508f9874a7650c4b0d5eeed8716c47d989060f4defe372de00e9ae1d43","ssdeep":"6144:rJfqfOOuk2MxHg6owCbsehwabACj42mHs/vPTPq9vauG2K3fd1rqainRIqjUvQ43:rJfqfRuk2MxHg6owCbsehfUCj42mHs/F","tlshash":"2e542d9872a2746687b2e4e050370106f27e549af04c8eacb69ccde3bdf69464177f78","size":298297,"data":"","first_seen":"2026-03-02T17:59:05.749221Z","last_seen":"2026-03-11T17:01:15.929594Z","times_seen":4070,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/places_impl.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9167be4a2a893410b252d674c5df8865","sha1":"0f2d4d7ce0390065323fe6a726c5d6f9482e0c05","sha256":"1c718d36325da3101d99fd154de68c25b6e12263ac9ce2f184219742c9894dd3","sha512":"b5c194355d85376c10b2523ed9bfba7eacf228247aeaf9e19ccc9d716120f784af44cd3df75a07592734f5cd0664bf9a26774b6967a217f4bd2b0eb08dd9fa7d","ssdeep":"768:/k36NdlYfQwxNOXBHIuzutRYQPu/V3TP5u/R6FSvqXU7iQh5u/r6N/3M/SaAmDDt:8KKYQPuRzuq/1WBtZhWmBUxMV6","tlshash":"3c336e8431a3b0da477168d5c477024bf369adc0f89e8a98f9ae49617af0c8781f17f4","size":52464,"data":"","first_seen":"2026-03-02T17:59:05.742563Z","last_seen":"2026-03-11T17:06:33.56722Z","times_seen":2466,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.uvy5A7anhT4.O/am=AACA/d=1/exm=el_conf/ed=1/rs=AN8SPfq3PkfgZXwohObCEGFrR6UDDyZDZQ/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.207.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e41526cf25720e6aaed49fef082bff2e","sha1":"92778671c59ab028ed10c8c38c6ae43c02247e40","sha256":"c5ee8bd031f2ada742b7beb4748f1c2bb7248af97deb6bdd3faf6eff142d39cd","sha512":"1d799c3e979eba2cb6492cca966931b561999583c89993ce525ff44cbb06be12d72588a1fb59c38e4b1b888b6b837aad0edce338df058cd4551899ffe3b7fc2f","ssdeep":"3072:SwPl6/VjRSdHmINcvL1zsCoVbT+xHTfLsuAezQhfGgM7AZbhNm63qI:WdHa+xrhZgbx","tlshash":"e694facab263f8939262f9a0907f1047b53dad57b4484c6cb249d8ea6db48084177f7f","size":416746,"data":"","first_seen":"2026-03-04T21:07:41.695116Z","last_seen":"2026-03-05T20:02:05.918583Z","times_seen":159,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/_/translate_http/_/js/k=translate_http.tr.no.uvy5A7anhT4.O/am=AAAM/d=1/rs=AN8SPfqteuh7tZpuG1hAU0y8NBovrCDKSA/m=el_conf","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"bab57e9eacd645c44e43ea0b31282d12","sha1":"08b12a252a4834b96f86bfa7f8ffd4f21b68738e","sha256":"a85b20f6b9982c663fed259622342021a0bff4d1370e1d47abd085432be5e7a0","sha512":"87cd13b2bb8ed61570c3279298d8c9454eaa4d91bd326c4cf3b4ad6c8b54642040ea50053508e90e3d724540d94044188d1c4757e23fefe4ce0a037086be19fb","ssdeep":"1536:XrZ25Pjg9rw8mh8K0/0uUd+v+CLKBV2dwQ66zCduigi+iuwNWSb:XU5nh8K0/D+CLKBkGJ+i1b","tlshash":"e283b78cb6a674618267f5b5413f000fb23f599df8084cacb288d8e2adb5948417bf7d","size":82405,"data":"","first_seen":"2026-03-05T05:00:45.728206Z","last_seen":"2026-03-05T05:03:04.809347Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"af2e14cc88226a7267f3b44a8d222b02","sha1":"102ed16e709322fd9a87b9f9ccfe9cc1574502f2","sha256":"3f3351364ab0936c2c90ca56f0c63eb04bd2847e364ff26861729a7e71ed049e","sha512":"92296f4577aade74682a307fe449f485699d25c2d451112df76439f31f9fccb73e09b2c52fad8cb6058036bb262b23ede9017562bc501790a4b361bf594a371b","ssdeep":"","tlshash":"6a11f26915e000bd526bfc684cdf45003a746a2395491aa8bd7ce3098f70e7a06f9ed9","size":909,"data":"","first_seen":"2023-07-19T19:32:37Z","last_seen":"2026-03-22T12:16:59.064398Z","times_seen":33,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/controls.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9975759a3d84e62df43917eae9213cd","sha1":"3dd78c2221ecd3b050dc2b73cdc01cb6dc426d9c","sha256":"2ed381214f5273a77cc76608bd0d44f6c09a839663fb343ed9cce7303b5fb10a","sha512":"c460243ad0b1e3f5ad4de4880e6f6098792701fb88924c39fa4b1c862b39d61719134505d3a8857c204e106bb57fee35c0e0067a5fa50513231ebb4bddf1aeb7","ssdeep":"3072:cIyZE6hmGmVERay1WIT7CugO1LTqd/qcm+uf//lNmps2V0EU0bODvFvvNXaYXIwI:PyGfyRay1WIT7CugO1LT2/qcm+uf/dNc","tlshash":"b7a3d6b0322a2237cdf5c5cda12b56056168d15df20246ae3dbcdce766edc8722ba734","size":103002,"data":"","first_seen":"2026-03-02T17:59:05.719672Z","last_seen":"2026-03-11T17:06:33.568917Z","times_seen":3272,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:srcdoc#127","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"888a21ab7fc56d220a59dd25a83b18b6","sha1":"3bc9b8d495cf8e016aadf7e2bba091f2bd8b7188","sha256":"18c0d112e350349ca7390bc25c50a5fc92e9dc9b63416147c7e57851d105237e","sha512":"3dd8c3099c3300b3f74ffbe65e93e383d5c31087fb362f08bb241107c1061ef7dc8b61113851723a8588b54465c38056721341402f6a0072adce178ed3daf86e","ssdeep":"","tlshash":"b73147cdbbb7e0554272209a992f860bf17a2577981cd050e555ccd0fc70e9b447de14","size":1713,"data":"","first_seen":"2025-06-11T00:07:11.79824Z","last_seen":"2026-04-04T15:45:49.237567Z","times_seen":27713,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"75d238cb16c66a63c0f486bda8b622e2","sha1":"402b593d97b30e0631eaa9f1d807ccd972348342","sha256":"32ffd7f63e7ca1ce2f2bce8faecfae92cdfaeb25559bc5d22cb22a0d95207e78","sha512":"94a84fb2429f6b63ef053c9701d85585ac7b4c290ca1f35f27493dc4037dd893ebfe509a36f2fb0d72a2f3342bd1ee1ab4509fe60790b03e733af30bd9d9b175","ssdeep":"","tlshash":"93512ea1605ca01b8503d5d0f8a23eeef4de0058c37169d07e1c29dfdadac770497159","size":3010,"data":"","first_seen":"2026-02-17T22:08:53.687854Z","last_seen":"2026-03-16T05:30:57.841764Z","times_seen":391,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.647Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28488\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 17:21:40 GMT\r\nexpires: Wed, 03 Mar 2027 17:21:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 128389\r\nlast-modified: Wed, 10 Sep 2025 16:46:11 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28488,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28488, version 1.0","md5":"22c3b00d2e65fb2c876a292423108958","sha1":"3c61d84659817fef687045bbfa0e1da9568e164b","sha256":"bd73278ee0c50041b91b4c03d1229e35b501637f46b6409e7da2d3a758446ea5","sha512":"33954d8a7ed3c87b3af8577bbae9439b9efba2a64445463d893681dad085bb8630d31c995ce010510a9c732926017dba9d5fd5002d0000ec1488b61889d6ddfe","ssdeep":"384:jlzdJfoB5YJ2kG1CdQegm8m00xr19KB668/BOTqE85gyqvPA34uEomcGvpMwvg84:jlzdyBzhIb0u1QB6vBOv8uvPAovJCs4","tlshash":"cfd2e0195e9673efe4552d3ea830affe91e32aad30507162c5db6c1155c438bc8e4ec4","first_seen":"2025-09-11T19:05:43.498829Z","last_seen":"2026-04-04T15:23:37.465743Z","times_seen":18136,"resource_available":false,"data":null}},"time_used":172,"timings":{"blocked":20,"dns":2,"connect":8,"send":0,"wait":77,"receive":4,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bootstrap.smartsuppchat.com/widget/45a2bb93b9467969464be1cec7ce1d180af9cf7f.json","fqdn":"bootstrap.smartsuppchat.com","domain":"smartsuppchat.com","tld":"com"},"ip":{"addr":"52.57.152.176","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:30.351Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.smartsuppchat.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 02 Dec 2025 00:00:00 GMT","end":"Wed, 30 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"DC:47:26:FC:2D:4B:14:19:23:BC:B7:70:14:DA:60:A6:21:B0:1E:81","sha256":"0D:5E:FD:70:25:9E:DE:DD:47:CF:0C:58:1C:08:A2:A1:05:AC:A6:7E:0C:43:6F:50:E7:49:E0:A1:60:D0:0E:0F"}}},"request":{"raw":"GET /widget/45a2bb93b9467969464be1cec7ce1d180af9cf7f.json HTTP/1.1\r\nHost: bootstrap.smartsuppchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:30 GMT\r\ncontent-type: application/json; charset=utf-8\r\nx-version: 8f78827c99f8a70d2cd46ee881b468733ffd9813\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: private, max-age=0, must-revalidate\r\nx-hit: redis\r\netag: \"4ae-Jt95KB4lhLcE8+iQwCNZPCueNIE\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1198,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4f18805e17e4c1e8e9e07a360e4a69d2","sha1":"26df79281e2584b704f3e890c023593c2b9e3481","sha256":"6281c13b7e0567048cb6d2f22a76664459e11449f8de893a5852cbd5b5f202f9","sha512":"367418c85fe832ff0d1c662bcc9c08160f6bd9e7fa17da26c06a5620f111a62eee9ab949fb41b9cdad283bca566c40db697449e3c99b7fc3865936d14c504043","ssdeep":"","tlshash":"9421686d4a6822fd5245c7d6c5047a076bbcdcb371043e7eea0d0a4e70db2e5223646b","first_seen":"2025-07-17T12:46:19.667078Z","last_seen":"2026-04-04T12:43:52.149556Z","times_seen":4361,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":99,"dns":2,"connect":21,"send":0,"wait":26,"receive":0,"ssl":84},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/googlesanstext/v25/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oLlVnmhjtg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:32.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/googlesanstext/v25/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oLlVnmhjtg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 23388\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 16:48:12 GMT\r\nexpires: Thu, 04 Mar 2027 16:48:12 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 17 Feb 2026 17:29:37 GMT\r\ncontent-type: font/woff2\r\nage: 44000\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":23388,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 23388, version 1.0","md5":"0792a0dc91da66e261c54b80e50b7698","sha1":"72e7c4195ca1d2200d28d59b6ea647f3febe1407","sha256":"a98d0d4af945bf8ffa1b1c1158986d30b5204ed4f3f5f246ee45a24c1de4b276","sha512":"a728b4e4d128e61de91de0179c94de0d97e7705b0664945b092ef8f587f3af6c1a3b5eeb06d64ddfccf4e68ea9ed0eb44c8edc3e1957aa892cf83f8ee091cdc4","ssdeep":"384:w3LIVxO70VzWrIIGEvMT54PF7dKYLB7G8FDIua1SAs05u68LXaz0Wx8MY:w3LIVxO7iarIzQMT5CbBpFI8Ax58CY","tlshash":"56b2e19d83b65aa1a683637ac12006176f70c87858fde3db2873cb288055dc3738bc58","first_seen":"2026-02-18T00:09:30.81705Z","last_seen":"2026-04-04T15:52:54.785921Z","times_seen":35920,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.uvy5A7anhT4.O/am=AACA/d=1/exm=el_conf/ed=1/rs=AN8SPfq3PkfgZXwohObCEGFrR6UDDyZDZQ/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.207.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:32.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /_/translate_http/_/js/k=translate_http.tr.no.uvy5A7anhT4.O/am=AACA/d=1/exm=el_conf/ed=1/rs=AN8SPfq3PkfgZXwohObCEGFrR6UDDyZDZQ/m=el_main HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 120365\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 19:00:49 GMT\r\nexpires: Thu, 04 Mar 2027 19:00:49 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 03 Mar 2026 14:09:23 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 36043\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":416746,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2481)","md5":"e41526cf25720e6aaed49fef082bff2e","sha1":"92778671c59ab028ed10c8c38c6ae43c02247e40","sha256":"c5ee8bd031f2ada742b7beb4748f1c2bb7248af97deb6bdd3faf6eff142d39cd","sha512":"1d799c3e979eba2cb6492cca966931b561999583c89993ce525ff44cbb06be12d72588a1fb59c38e4b1b888b6b837aad0edce338df058cd4551899ffe3b7fc2f","ssdeep":"3072:SwPl6/VjRSdHmINcvL1zsCoVbT+xHTfLsuAezQhfGgM7AZbhNm63qI:WdHa+xrhZgbx","tlshash":"e694facab263f8939262f9a0907f1047b53dad57b4484c6cb249d8ea6db48084177f7f","first_seen":"2026-03-04T21:07:41.695116Z","last_seen":"2026-03-05T20:02:05.918583Z","times_seen":159,"resource_available":true,"data":null}},"time_used":222,"timings":{"blocked":70,"dns":2,"connect":25,"send":0,"wait":23,"receive":55,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/homeadd1.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.709Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/homeadd1.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:30 GMT\r\netag: \"22c86-67cd660a-1ae4161d0b13280;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 142470\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":142470,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1920x1280, components 3","md5":"726aa7a4ba5ed0fba3294800c35ac620","sha1":"5f1681e3a7a3501fda0971901ec16f2647362e4e","sha256":"aa8ea7292eb45c88611d694d239ffe4a6e3fcc9b841e98afe6e88d7df69c4747","sha512":"ce440a5c7631e1f20cd08344d6032a58559efc52cd77522884c159cb8488407aadc5e459818824dcd765203e4f71101e7ed381f582d512f45367698a4d463911","ssdeep":"3072:7ao2RGpuVO4YClP6nLg/oTzAy1oDilJXT8Y6reMCVqVtvB6GTt1/nNOu7:7o6iOgSgXiPXT8YdVw15TtfOC","tlshash":"e9d31223df848164ee91d1b34ae7919d13b8bf666ae6f24d3101107bbd31c64f8662ca","first_seen":"2023-07-19T19:32:37Z","last_seen":"2026-04-04T05:07:16.958129Z","times_seen":42,"resource_available":false,"data":null}},"time_used":1070,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":808,"receive":262,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T05:01:27.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nset-cookie: CameFrom=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; secure\nPHPSESSID=092816e902447dbab7abf03893bdc117; path=/; domain=phonixtrade.ltd; HttpOnly; secure\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":51372,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (465)","md5":"fdf0f1e9240d725003553c80e7432623","sha1":"beb281e3c910953983bd76e5e4dea61439fb7a88","sha256":"aac69e85bed1c5da5c41dfd9b49a527d70795100d591c0eacc65bc8c408fcf12","sha512":"0b41ba851315b9ec6ccf724ec2800a242bf0795224935b85371f21ddcd1998023bb4117bcd2f08052ec35c99b90daa61e56c2cb2bac95e3e98263882f7325107","ssdeep":"384:FtHR4DYXY5EGQ/YPT29MLQGIF6lYcopUOajTQ+J7S5lBcJslChRZ8u:XHR6YXYuKT29Ys6lYIjhm5lBcJslyf","tlshash":"fa33402195f0103a0183c185bbb56f2f6f82e657d60b4a4432bd0bd9afc3dd5ee2b598","first_seen":"2026-03-05T05:02:04.594087Z","last_seen":"2026-03-05T05:02:04.594087Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1765,"timings":{"blocked":667,"dns":226,"connect":211,"send":0,"wait":430,"receive":0,"ssl":226},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"places.googleapis.com/$rpc/google.maps.places.v1.Places/GetPlace","fqdn":"places.googleapis.com","domain":"places.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.499Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"OPTIONS /$rpc/google.maps.places.v1.Places/GetPlace HTTP/1.1\r\nHost: places.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type,x-goog-api-key,x-goog-fieldmask,x-goog-gmp-client-signals,x-goog-maps-api-salt,x-goog-maps-session-id,x-user-agent\r\nReferer: https://www.google.com/\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: https://www.google.com\r\ntiming-allow-origin: https://www.google.com\r\nvary: origin, referer, x-origin\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT\r\naccess-control-allow-headers: authorization,content-type,x-goog-api-key,x-goog-fieldmask,x-goog-gmp-client-signals,x-goog-maps-api-salt,x-goog-maps-session-id,x-user-agent\r\naccess-control-max-age: 3600\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\ncontent-type: text/html\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=51\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":374,"timings":{"blocked":221,"dns":36,"connect":15,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/element/log?format=json\u0026hasfast=true\u0026authuser=0","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:42.445Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"OPTIONS /element/log?format=json\u0026hasfast=true\u0026authuser=0 HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: x-goog-authuser\r\nReferer: https://phonixtrade.ltd/\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: https://phonixtrade.ltd\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser\r\ncontent-type: text/plain; charset=UTF-8\r\ndate: Thu, 05 Mar 2026 05:01:42 GMT\r\nserver: Playlog\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/home-test.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.329Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/home-test.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:28 GMT\r\netag: \"3b82a-67cd6608-b1e3c1c7c39fcb2f;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 243754\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":243754,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x854, components 3","md5":"f2b810ce94956676c57ec64a405dd8de","sha1":"c8f5857c1e3cccf5ed7c7716a03d25fc659e9905","sha256":"f0fbfb6d6e21d38162fc562b306d73be3af49b0f0d8795965937fc3535d01958","sha512":"4c166901b036a470b7719952120e3ff3b4c7147886d4df4df0ff8cc0021fa7815c3a3c57c4b05046983f3aba545467b6b07a85910b6db3b87ee4bfb13e936e73","ssdeep":"6144:s9RSuYzxEYld6JOIFCTfS1PFkFA4XOLzvavY1KjvJSZuc64g:Suvd6oIsSPqFrXFA1KjvJGucY","tlshash":"2f342312725bcd97e846ea70d8801b21f637d76e03720a6ceb991b5cd2ec7f64e8111b","first_seen":"2025-03-16T09:38:48.001362Z","last_seen":"2026-03-05T05:02:04.598842Z","times_seen":26,"resource_available":false,"data":null}},"time_used":985,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":220,"receive":765,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 47208\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 19:59:32 GMT\r\nexpires: Wed, 03 Mar 2027 19:59:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 118917\r\nlast-modified: Wed, 18 Feb 2026 19:52:51 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":47208,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 47208, version 1.0","md5":"2465bec3a1d5ad40ceb1828a07763d2f","sha1":"656fca193330ac8ec592a0942f4e7d718fa69cbf","sha256":"14f23757c6b41b4b6c0b967ca3fa74ff47a868728158373461c4e6e4b6368f19","sha512":"171195e97870d0794a5762cb3324c2994542a534f4e8ec490400f5667527c48c0c2814071fe9449f4d78169b2d35228466cfadea81229f6ebddf791dd3fb2099","ssdeep":"768:/FAcvRO+HWzD3hVYA6By+jNbKulKiuJ+YAnmWjKiXN0EoGlknbxWuFYCrJRSx89Z:33sD38k+jYulvuUHnmTq0bGlyFWuFYiV","tlshash":"6123f16ca80df34596fae4f76b11fcebf248bc9177c5ee10278c864d8575aa5cc28241","first_seen":"2026-02-19T22:36:20.820122Z","last_seen":"2026-04-04T15:55:41.720405Z","times_seen":3820,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":54,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/geometry.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.365Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/geometry.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 2501\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:46:24 GMT\r\nexpires: Tue, 02 Mar 2027 17:46:24 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213306\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6920,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (597)","md5":"eb52ce1e08c341f899fe0b095fd9882c","sha1":"b4a133015d796fb36a03c9b9dac3d24b2d2eb9d2","sha256":"519ac2271f5cc640781d38e60e0c932f2d13bde29363d9587b602188df6418b5","sha512":"529663fc6a511f99039a085fc38d7a21c1b1efc043432b76047c8f8e22d5663319f4a5c03ca264d6f001eaf48cce491c44eea3af6b1f977d3c880b0be5732f48","ssdeep":"192:FO+NVX1f5GMDkZHextchDh+Aq3zNcj+Wg9AoWe0L+2d+xj8/nPnRB6lAiIs7:o+NVX1f5lDkJextUFdCNr9AP+2Yxj8/6","tlshash":"f3e1a63c36ae38478371ab9141b50053e566b2aeb1479a8c4c7dc74a99b64de04aff3c","first_seen":"2026-03-02T17:59:05.677922Z","last_seen":"2026-03-11T17:01:15.938025Z","times_seen":4747,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"places.googleapis.com/$rpc/google.maps.places.v1.Places/GetPhotoMedia","fqdn":"places.googleapis.com","domain":"places.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:32.118Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"OPTIONS /$rpc/google.maps.places.v1.Places/GetPhotoMedia HTTP/1.1\r\nHost: places.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: authorization,content-type,x-goog-api-key,x-goog-fieldmask,x-goog-gmp-client-signals,x-goog-maps-api-salt,x-goog-maps-session-id,x-user-agent\r\nReferer: https://www.google.com/\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\naccess-control-allow-origin: https://www.google.com\r\ntiming-allow-origin: https://www.google.com\r\nvary: origin, referer, x-origin\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT\r\naccess-control-allow-headers: authorization,content-type,x-goog-api-key,x-goog-fieldmask,x-goog-gmp-client-signals,x-goog-maps-api-salt,x-goog-maps-session-id,x-user-agent\r\naccess-control-max-age: 3600\r\ndate: Thu, 05 Mar 2026 05:01:32 GMT\r\ncontent-type: text/html\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=8\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/images/5ac50f1ecbd02156396a298d_Show-me-more.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.333Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /images/5ac50f1ecbd02156396a298d_Show-me-more.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/css/wellness-cms.webflow.5eb1ff288.css\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 09 Mar 2025 09:57:10 GMT\r\netag: \"3ba-67cd65f6-6be27daf96301bca;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 954\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":954,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 203 x 23, 4-bit colormap, non-interlaced","md5":"4ee5a7eca41616bd87ad730a717629da","sha1":"eade1359c8639ff1ebdc12d1fe1229feeb0827ba","sha256":"1ab0a2a6b06ce0793c42a704090fc522ba535ced7ba3be6b8d0f4028b0c45765","sha512":"6aca5b3ed77d12bbc437614c45c67148f81cb594204905cf8919f3156e9d3c7069a6613d5e89f8ce6b540464fd9739e13dde7713add0c8db9fa10c5152b38d38","ssdeep":"","tlshash":"141144db15a53a20e935e06616d0264dae275d222fa84286da853d4242f3512dad5036","first_seen":"2025-03-26T16:42:23.427139Z","last_seen":"2026-03-05T05:02:04.602603Z","times_seen":31,"resource_available":false,"data":null}},"time_used":967,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":967,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/real_estate.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.352Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/real_estate.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:38 GMT\r\netag: \"45185-67cd6612-58839ac26cb4dbbe;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 283013\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":283013,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2121x1414, components 3","md5":"fb08fdb38528a011b35e9b7ad579da0e","sha1":"47b49bed606996b5692ed70d165ad093ce840cba","sha256":"91309ce139d6260ca28eb06c9a3d47c249cdbce5a2e79c321309081402931cf6","sha512":"9921e98c1525ca50377a92507c4d1a184bdd47646ba43128165930065c988ad7392be1f4240a7e55f898ec158f795f50a7fb0586ab9ee3b0cacb13dad52d4ef7","ssdeep":"6144:OfQ6WBc43hrTmHGbx1FGgy/qS6Zl+hF2F2ZTPLTNw4:OITzTmHGbvy/g+hk2ZrNX","tlshash":"0254237e37c1ae96f1dfe070268e1be10273db6549c05232536a8d45653a1f2bea3d0e","first_seen":"2025-03-26T16:42:23.398885Z","last_seen":"2026-03-05T05:02:04.603245Z","times_seen":27,"resource_available":false,"data":null}},"time_used":2205,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1858,"receive":347,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 47208\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 19:59:32 GMT\r\nexpires: Wed, 03 Mar 2027 19:59:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 118917\r\nlast-modified: Wed, 18 Feb 2026 19:52:51 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":47208,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 47208, version 1.0","md5":"2465bec3a1d5ad40ceb1828a07763d2f","sha1":"656fca193330ac8ec592a0942f4e7d718fa69cbf","sha256":"14f23757c6b41b4b6c0b967ca3fa74ff47a868728158373461c4e6e4b6368f19","sha512":"171195e97870d0794a5762cb3324c2994542a534f4e8ec490400f5667527c48c0c2814071fe9449f4d78169b2d35228466cfadea81229f6ebddf791dd3fb2099","ssdeep":"768:/FAcvRO+HWzD3hVYA6By+jNbKulKiuJ+YAnmWjKiXN0EoGlknbxWuFYCrJRSx89Z:33sD38k+jYulvuUHnmTq0bGlyFWuFYiV","tlshash":"6123f16ca80df34596fae4f76b11fcebf248bc9177c5ee10278c864d8575aa5cc28241","first_seen":"2026-02-19T22:36:20.820122Z","last_seen":"2026-04-04T15:55:41.720405Z","times_seen":3820,"resource_available":false,"data":null}},"time_used":65,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/lora/v37/0QIhMX1D_JOuMw_LIftL.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.682Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/lora/v37/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40772\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 05 Mar 2026 01:35:56 GMT\r\nexpires: Fri, 05 Mar 2027 01:35:56 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Sep 2025 17:08:08 GMT\r\ncontent-type: font/woff2\r\nage: 12333\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40772,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40772, version 1.0","md5":"1640b0b69ef0647e11b559178cb8a08d","sha1":"99523cf576d3d1815e27b58a35daff6edc443dd0","sha256":"d824d807d4d832d12c87932d0b8ec1314dcfd502157a56dee6bb04cf8a3768ae","sha512":"2969e677c9d9c2a9a7bc7d5bd21b0397a3cb67642b99a2603936538bd580f837d93e6bb191e02a932493207d17d53b664e04272bf3850c6947b042d4c1a1d423","ssdeep":"768:W0q6cKPuFGIRn7MJzdS8CAvC3AA3x8dlmHJ45S4O0f3DNmzcB:WC0FGA7t8HvC18dlmsS4rY4B","tlshash":"3603f13c5f73a978faec58b8ecdf0726df9e0338a8eb1a5672d15c250aa0dc17610065","first_seen":"2025-09-11T22:06:21.040627Z","last_seen":"2026-04-04T14:13:27.080746Z","times_seen":2364,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":66,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps/api/js?key=AIzaSyCmL18misQw9KdwqGaw3zHkitj8vG6QF2Y\u0026paint_origin=\u0026libraries=geometry,search\u0026v=weekly\u0026loading=async\u0026language=en\u0026region=us\u0026callback=onApiLoad","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.211Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps/api/js?key=AIzaSyCmL18misQw9KdwqGaw3zHkitj8vG6QF2Y\u0026paint_origin=\u0026libraries=geometry,search\u0026v=weekly\u0026loading=async\u0026language=en\u0026region=us\u0026callback=onApiLoad HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ntiming-allow-origin: *\r\ncontent-type: text/javascript; charset=UTF-8\r\netag: 9e02623a\r\ncache-control: public, max-age=1800, stale-while-revalidate=12600\r\ncross-origin-resource-policy: cross-origin\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Thu, 05 Mar 2026 05:01:30 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 2600\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=25\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12868,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (11715)","md5":"587267630f822a880fbea9355790305b","sha1":"13ebde331d4680d915be8deddc54e4cf2f21b04a","sha256":"2bbc3f6d7bb4951b58cddaefe9dedb1fb3c439d1ff0fc66b59695c4416d165f7","sha512":"f07d8cb6036f590fe96ef39e2804105ee292bb4473edde83540fddd3ef5104fc5becdba0cd0280b8d7b8b223996942a6dc27a60b388acf95cf74a87a1848dbf8","ssdeep":"384:lVsmRJA6oU8Dl7X+X19NFC2FrUH16tdullRAAIdzlkYjtuPGLlclbwubjwID7DjX:lVtRJA6oUcl7X+X1TFCmrUH1NRAAIdxU","tlshash":"f34276b612160c39de03a42ce56dff1c3db39b632da6e5f095b6d4c48d528b168097d3","first_seen":"2026-03-05T01:57:38.314054Z","last_seen":"2026-03-05T14:28:55.007396Z","times_seen":17,"resource_available":true,"data":null}},"time_used":35,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.573Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/json; charset=UTF-8\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Thu, 05 Mar 2026 05:01:30 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 23\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://www.google.com\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length\r\nserver-timing: gfet4t7; dur=11\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"8a80554c91d9fca8acb82f023de02f11","sha1":"5f36b2ea290645ee34d943220a14b54ee5ea5be5","sha256":"ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356","sha512":"ca4b6defb8adcc010050bc8b1bb8f8092c4928b8a0fba32146abcfb256e4d91672f88ca2cdf6210e754e5b8ac5e23fb023806ccd749ac8b701f79a691f03c87a","ssdeep":"","tlshash":"c7200000000000000000000c00000000000000000c0000000000000000000000000000","first_seen":"2023-03-07T01:10:31Z","last_seen":"2026-04-04T15:47:52.411903Z","times_seen":333905,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/l/font?kit=5aUu9-KzpRiLCAt4Unrc-xIKmCU5mEhkgo3FI_E8lH570oBdIw\u0026skey=b20c8ebc9802c116\u0026v=v25","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:32.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /l/font?kit=5aUu9-KzpRiLCAt4Unrc-xIKmCU5mEhkgo3FI_E8lH570oBdIw\u0026skey=b20c8ebc9802c116\u0026v=v25 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncontent-length: 944\r\ncontent-disposition: attachment; filename=\"font.woff2\"; filename*=UTF-8''font.woff2\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\ndate: Wed, 04 Mar 2026 20:19:17 GMT\r\nexpires: Wed, 04 Mar 2026 20:19:17 GMT\r\ncache-control: private, max-age=86400\r\nage: 31335\r\nlast-modified: Tue, 17 Feb 2026 23:56:55 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":944,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 962, version 22016.256","md5":"82d54b0144a9da00c32d16ca041e059e","sha1":"40cafce8a34e655b13999ad1ab2347b33b3925d7","sha256":"867ddb24c57e25c69fc037f0b058b5c049afdf1812c01b174c5029bf3be0248c","sha512":"bd7d2623dba27985a04c67c93a9c54fafbfa91870ea0588cf4fd7a0983998fd4f587a4f560d31316232163203388b6007c2be6ef759183e2f4cfe5d30ac4cadf","ssdeep":"","tlshash":"0c21b60ae8337382d4e81ab899593ec5e6f186025ae637c7ad31df871f90905714fcb2","first_seen":"2025-11-09T20:37:55.687266Z","last_seen":"2026-04-04T15:52:54.695607Z","times_seen":9691,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/map.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.681Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/map.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 25949\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:46:29 GMT\r\nexpires: Tue, 02 Mar 2027 17:46:29 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213301\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":81644,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (3328)","md5":"d2550504654f7fd009b8b5a350c0cf42","sha1":"c73f7246548eb874abbcdfc9dec145e05c34b36c","sha256":"2d0bd3c8f63d62440b3247f60e1b79116b764b5a1f40dd80cb01d6594ab985aa","sha512":"7277d14402c162d92b1af9e941b0a86fc69f9681ba25b87b2b515745d7e7d8c2f06a93396e234bb6e7fe7ec1b9ab4874ce1ed7a1611bcd842eb68a419c6ca7dd","ssdeep":"1536:2+MPEgTJMYHVl6BwvH0xtTgIRDJkLDvAMZtmFVAawbAmtX4wJFfh8pZu3OcUlQQ5:2+MPEgTJMYHn6BsmtTgK9gDYMTmHAawQ","tlshash":"27830975322235766ff5c4e4906b0202a169e44bb009caed3d2cdceb9de9c8711fab75","first_seen":"2026-03-02T17:59:05.755269Z","last_seen":"2026-03-11T17:01:15.944886Z","times_seen":4315,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.157.119","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 08:39:05 GMT","end":"Mon, 13 Apr 2026 08:39:04 GMT"},"fingerprint":{"sha1":"AC:37:C7:AF:75:CB:27:69:D4:EC:B6:A6:68:E1:51:4A:A3:99:78:B0","sha256":"63:86:A6:69:FF:ED:40:2B:88:13:6E:3E:4F:01:08:AB:8D:96:19:72:D3:22:DD:14:05:79:8E:5D:58:1F:0D:39"}}},"request":{"raw":"GET /maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-uhpDRBUOCbzjaxXUXA3SiQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1\r\ncache-control: no-cache, must-revalidate\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\npragma: no-cache\r\nx-robots-tag: noindex,nofollow\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 995\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=211\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Maps","description":"Google Maps is a web mapping service. It offers satellite imagery, aerial photography, street maps, 360° interactive panoramic views of streets, real-time traffic conditions, and route planning for traveling by foot, car, bicycle and air, or public transportation.","website":"https://maps.google.com","common_platform_enumeration":"","icon":"Google Maps.svg","categories":["Maps"]}],"data":{"size":2228,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (1236)","md5":"928f84d7991f662c385ada5218d87d90","sha1":"72983f0ebd1fff826a0ea8adf539b6892dc0a1d6","sha256":"90e37efaf11be497254d72e2d974b75c2fb28006f31473904157eb25bd00c162","sha512":"c22322f9a626a7ea6cc04e99c8fa4cbeeebc1cdcb2ab0413d7333a49888f55fd243e46e7f0806b7ccb124032d2e679d34e70a08c3f2bbde78ce3c842b94e2a05","ssdeep":"","tlshash":"5f41405528666df2cf0356e498a73b4a3abd903b1882cef434cd1d918f548633a13aad","first_seen":"2026-03-05T05:02:04.621026Z","last_seen":"2026-03-05T05:02:04.621026Z","times_seen":1,"resource_available":false,"data":null}},"time_used":823,"timings":{"blocked":290,"dns":1,"connect":23,"send":0,"wait":239,"receive":1,"ssl":265},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 47208\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 19:59:32 GMT\r\nexpires: Wed, 03 Mar 2027 19:59:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 118917\r\nlast-modified: Wed, 18 Feb 2026 19:52:51 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":47208,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 47208, version 1.0","md5":"2465bec3a1d5ad40ceb1828a07763d2f","sha1":"656fca193330ac8ec592a0942f4e7d718fa69cbf","sha256":"14f23757c6b41b4b6c0b967ca3fa74ff47a868728158373461c4e6e4b6368f19","sha512":"171195e97870d0794a5762cb3324c2994542a534f4e8ec490400f5667527c48c0c2814071fe9449f4d78169b2d35228466cfadea81229f6ebddf791dd3fb2099","ssdeep":"768:/FAcvRO+HWzD3hVYA6By+jNbKulKiuJ+YAnmWjKiXN0EoGlknbxWuFYCrJRSx89Z:33sD38k+jYulvuUHnmTq0bGlyFWuFYiV","tlshash":"6123f16ca80df34596fae4f76b11fcebf248bc9177c5ee10278c864d8575aa5cc28241","first_seen":"2026-02-19T22:36:20.820122Z","last_seen":"2026-04-04T15:55:41.720405Z","times_seen":3820,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/notoserif/v33/ga6iaw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTa32J4wsL2JAlAhZqFCTx8cK.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/notoserif/v33/ga6iaw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTa32J4wsL2JAlAhZqFCTx8cK.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 14400\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 28 Feb 2026 01:19:52 GMT\r\nexpires: Sun, 28 Feb 2027 01:19:52 GMT\r\ncache-control: public, max-age=31536000\r\nage: 445297\r\nlast-modified: Fri, 05 Sep 2025 21:49:43 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14400,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14400, version 1.0","md5":"e99d66d6b97ce67c022165b66fcd5458","sha1":"541afd7808129e8923511ccbcb190627ebfdeee6","sha256":"4c0cbe3eec50d260754d681c17ee2af49a43d7fd93ce42877f665fcb1a889b87","sha512":"e301ecd1179622953c637e9702a0611bd660e5612a360a1cebdc1a0e97d7e7dd2cb9b290ebfc48545c77c582b3ce24a3c2b4386bb93c43f856b3b63fa69eef72","ssdeep":"384:igdF7Wfw5jRIJwWllDM39tkAGXHwZZRcg/pv:NF/I9bDw92Asa7jx","tlshash":"a752c04b3b263c06f27cdcf00155df6260a17e6e0e16b8f762348b3552498af5259dc7","first_seen":"2025-03-15T08:32:00.136258Z","last_seen":"2026-04-04T05:07:17.013782Z","times_seen":491,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/log.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/log.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 10236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:48:52 GMT\r\nexpires: Tue, 02 Mar 2027 17:48:52 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213159\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28460,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1864)","md5":"8fdbd32a68f1f0d5d598a6a619072707","sha1":"fcebf60fb22ba0347f6e75e93a56fa4f92a357e7","sha256":"bc4a91954d3c7a919df36a7d5fdf377c1553ba6c6e4ef363475b10c0bb831983","sha512":"2c150f8f75132b283b8d5d813610b467218f8fc6885017a2237997936d7248c201115faeae582ce2587e486b2b5b53a5110e05d6feebda049fda93c1294ed640","ssdeep":"768:DmlyxCw0H7e9ynqiR5Pmk1MlLSG3MgofcqDUkQVnKbv9a0pKoe7UY/H4IpdmWNYx:aRi5SP1nfmVnXq","tlshash":"02d2e7c8b2a3a0924fb2e5d544ab4007f6756846f40ddc6dbdecd8e26cf094742b6b78","first_seen":"2026-03-02T17:59:05.769975Z","last_seen":"2026-03-11T17:01:15.945387Z","times_seen":3002,"resource_available":true,"data":null}},"time_used":57,"timings":{"blocked":42,"dns":0,"connect":0,"send":0,"wait":12,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.google.com/gen204?sl=en\u0026nca=te_ap\u0026client=te\u0026logld=vTE_20260303","fqdn":"translate.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.143.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:32.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:36:38 GMT","end":"Mon, 27 Apr 2026 08:36:37 GMT"},"fingerprint":{"sha1":"72:34:3C:CB:18:C1:2B:09:8C:14:7C:8A:5E:F9:36:8E:AC:A5:39:BF","sha256":"B3:D4:27:15:99:07:11:68:02:2E:99:B1:A2:49:72:AA:3C:7A:B5:AA:E0:E1:F2:BF:0B:6D:81:F2:F6:81:3E:09"}}},"request":{"raw":"GET /gen204?sl=en\u0026nca=te_ap\u0026client=te\u0026logld=vTE_20260303 HTTP/1.1\r\nHost: translate.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: image/gif; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Thu, 05 Mar 2026 05:01:32 GMT\r\ncross-origin-resource-policy: cross-origin\r\np3p: CP=\"This is not a P3P policy! See g.co/p3phelp for more info.\"\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncross-origin-opener-policy: same-origin\r\ncontent-security-policy: script-src 'report-sample' 'nonce-4iYArViyogflmaYtI7CnJA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\nreporting-endpoints: default=\"/_/TranslateApiHttp/web-reports?context=eJzj4tDikmLw1ZBiEOLhWDNnyVk2gQNfj55kVlJKyi-MLylKzCvOSSxJLU4tKkstijcyMDIzMDYw1jMwjy8wAAAoKBL4\"\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nset-cookie: __Secure-ENID=31.SE=gJqL1dqiDNJWnjwFXbkWRLf8urJxeArN9Jc7xY6HDWpUR48U5rLao73ySlyFot3BKNq4y0C2MO5kJ83J4Jb1kJNux5hSdmJbxPJY_Xnmx16xcb6tf09e0VvPv_rE6022Z17pccAaST0WF5aPLTHcVJufOae189D-_uozqzNGXXU4kPrDOO44Hyc6MmD0Bc9_AvTmcHeKGVF8NXvyYK9YrCHtlqyNzcy_AklKTeIjjiXw4e7SvnF6Rw; expires=Sun, 04-Apr-2027 21:19:50 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/gif; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"places.googleapis.com/$rpc/google.maps.places.v1.Places/GetPhotoMedia","fqdn":"places.googleapis.com","domain":"places.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:32.150Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"POST /$rpc/google.maps.places.v1.Places/GetPhotoMedia HTTP/1.1\r\nHost: places.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: Bearer eyJhbGciOiJSUzI1NiIsImtpZCI6IjU4YTZjMzQ4MDFhYTdmZWU1YThiNzAwNTJhMmExZTI1ZjhkMjVjMzEiLCJ0eXAiOiJKV1QifQ.ewoJImV4cCIgOiAxNzcyNjg2OTIxLAoJImlhdCIgOiAxNzcyNjg2ODkxLAoJImlzcyIgOiAiand0LXNpZ25lckBnbXAtcGxhY2Utd2lkZ2V0cy5pYW0uZ3NlcnZpY2VhY2NvdW50LmNvbSIsCgkianRpIiA6ICI5MTE5OTQxMTA3NTA2Nzc0MTIwIiwKCSJwbGF0Zm9ybV90eXBlIiA6ICJKcyIsCgkic2NvcGUiIDogImh0dHBzOi8vd3d3Lmdvb2dsZWFwaXMuY29tL2F1dGgvbWFwcy1wbGF0Zm9ybS5wbGFjZXMuZGV0YWlscyBodHRwczovL3d3dy5nb29nbGVhcGlzLmNvbS9hdXRoL21hcHMtcGxhdGZvcm0ucGxhY2VzLnRleHRzZWFyY2ggaHR0cHM6Ly93d3cuZ29vZ2xlYXBpcy5jb20vYXV0aC9tYXBzLXBsYXRmb3JtLnBsYWNlcy5nZXRwaG90b21lZGlhIGh0dHBzOi8vd3d3Lmdvb2dsZWFwaXMuY29tL2F1dGgvbWFwcy1wbGF0Zm9ybS5nZW9jb2RlLmxvY2F0aW9uIiwKCSJzZXNzaW9uX3R5cGUiIDogIlBsYWNlV2lkZ2V0c0RldGFpbHMiLAoJInNpZ25lZF9mb3IiIDogNzg4NTUxNjQyMDIzLAoJInN1YiIgOiAiand0LXNpZ25lckBnbXAtcGxhY2Utd2lkZ2V0cy5pYW0uZ3NlcnZpY2VhY2NvdW50LmNvbSIKfQo.L1DnFzXro8T0OYQhUd4_X7TFSVQQKO2SslZZTY0AOywEJRJ0YZ84Zo-Z7OQlGlFbmLP65uOpzlKZ56VACoFA7oFX61WiZM4eQZRNAegX5w5cdfuxkwxrQ-xXyhGuEk9mRSqTn7xFSrxAmPBbYUAjpBWrsQbIafQFcz7-uloJJ6VR7QChWAaguIwHmWkowmoUa9n-wKGXlbCTLVJYYHnLxn6GHgZ-Www9tA87Is-c9mQ-zX8UxyuIjJ5gUc50noLvjiPB-GqCXVsWlQbg19Ry9V9nF5p6EN9Gsr6rkMCe95CeWE9TpX_yxjXfNpr3FgmJmkLB4mNM4seszyR79FVRCA\r\nX-Goog-FieldMask: photo_uri\r\nX-Goog-Api-Key: \r\nContent-Type: application/json+protobuf\r\nX-Goog-Maps-API-Salt: op-places-js\r\nX-Goog-Gmp-Client-Signals: CAkqBzMuNjQuM2FaDhIMCKucpM0GEMCp7qgD\r\nX-Goog-Maps-Session-Id: 4FBF2C2F-DF75-4126-970B-CAA76A261BF9\r\nX-User-Agent: grpc-web-javascript/0.1\r\nContent-Length: 498\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":498,"data":"[\"places/ChIJp2OnqppYwokR-UztD_YLm14/photos/ATCDNfWnyyWA2x11sZAn2y3WptUMA16CQEw_v9G7rDJY_TYfuESlSjhyQbvSgARGBLtkfgzIqlmjpsZ9hsNEx74pU_dvpcnTQc8zHymyMoZ3XTmKvSV3URLpt3ccUiS9AFj-3XilLUvXq8k0y8yv4-JrtYNlv-jGeijKgI1LMI9VldVzql0c3nYG592uIl7FkSFLHdx1MMwI9arpBcHJhH9zTdoBBhNYBxUVYFbdpRj5eB-B7oGFuSJPtdiPVFCTvRdnTTbv6rEuv0EHka84oJFVWKr2_JTxWZpGvfZIRjP-hnSSkiYFeTQu6IvQkOgvPaevb5a-uOE7vXuIX041skh_KjZ-Ar8RclBlGIIl0nFChfYmPBYZce_wZrBS5BzItwcMZpI5oUg8f6clFEJjhT5Rt3nB9V2oqsD9khXhZhI2XY3Dzw/media\",1000,null,1]"}},"response":{"raw":"HTTP/3 200 OK\r\nvary: *, origin, referer, x-origin\r\ncontent-type: application/json+protobuf; charset=UTF-8\r\ncontent-encoding: gzip\r\ndate: Thu, 05 Mar 2026 05:01:32 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 218\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://www.google.com\r\ntiming-allow-origin: https://www.google.com\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: vary,content-encoding,date,server,content-length,vary,vary,vary, Server-Timing\r\nserver-timing: gfet4t7; dur=18\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":218,"size_decoded":0,"mime_type":"application/json+protobuf; charset=UTF-8","magic":"JSON text data","md5":"fc7a30c530cdbc6a20846a4616ad4fd0","sha1":"a97c765f6651626740cbb6e400bb8b2cd1c86a0c","sha256":"74cb538ecfa47ca40eab8c501e96f6660589a7d79fdb0d8e182842349457355b","sha512":"ea4d506476be61b099506a47c804421a58f5ca8a31a26ae045bbeb4bf54abf9cf1b54d209c8e4f66b0978190aaff49aeda15704a5d863d2b74d401d46495c86e","ssdeep":"","tlshash":"f4d023e220c09bb3818300e1b8f475cccb166221253030e147344c8c85a13613d172e1","first_seen":"2026-03-05T05:02:04.641329Z","last_seen":"2026-03-05T05:02:04.641329Z","times_seen":1,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":14,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/css/custom.css","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.684Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /css/custom.css HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 09 Mar 2025 09:56:58 GMT\r\netag: \"163f-67cd65ea-4857f83c6a318a5d;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 1515\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":5695,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3530b05f439556f12bfcec081188f0ba","sha1":"f9252e2d7be43d435bcd9370e2a345505220b6ca","sha256":"90beff780e63a10ee7ffd4ecd9c061425a99f328fc315b8265ae77f01d4914df","sha512":"52ce7e99509353faa58952bb25d01ac6b1932d4e0ed511f3db5ca21d7e8d67b054312155357b9b3c2f2863ee0233e3021e7506406338d0f7f0b7a57ca93bddcb","ssdeep":"96:eQ8+ZfX2DdDsQcf96PnnpPLUfUvrA/AaGY+wCxdDiv91gRwI5iCAU3WjuGA/E2qx:eQ8+Zv2DdDsRf96PnnpPLUfUEIaGY+wd","tlshash":"aec1335547b31a45b42fe1984ffaa71863699003990fddad3bc831a88f481dcf672a9c","first_seen":"2025-08-09T17:44:05.504569Z","last_seen":"2026-03-05T05:02:04.643847Z","times_seen":20,"resource_available":false,"data":null}},"time_used":417,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":417,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 5631\r\ncf-ray: 9d76901e8fa72efa-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e5f-7918\"\r\nlast-modified: Mon, 04 May 2020 16:10:07 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 10861\r\nexpires: Tue, 23 Feb 2027 05:01:28 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=o3rah%2Bw2zLn5CVu4OT9S6AhXzB1935cJfajDuXZUfrp1cw%2FUGlDQvh1WvLFC%2FnToIw8m3%2FwmUZ785WHsGHXtfBSdfecgzV5pL1N1HI1YKtysp%2F0vEePWlL6TiBqceVsUehkymzsh\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31000,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (30837)","md5":"269550530cc127b6aa5a35925a7de6ce","sha1":"512c7d79033e3028a9be61b540cf1a6870c896f8","sha256":"799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd","sha512":"49f4e24e55fa924faa8ad7debe5ffb2e26d439e25696df6b6f20e7f766b50ea58ec3dbd61b6305a1acacd2c80e6e659accee4140f885b9c9e71008e9001fbf4b","ssdeep":"384:wHu5yWeTUKW+KlkJ5de2UYDyVfwYUas2l8yQ/8dwmaU8G:wwlr+Klk3Yi+fwYUf2l8yQ/e9vf","tlshash":"78d241e8e54c01d66731c48bff81b36862b6fb3dd5854da9f01f290c29d226522c5fba","first_seen":"2023-04-05T03:13:25Z","last_seen":"2026-04-04T15:49:11.488462Z","times_seen":236760,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":36,"dns":3,"connect":7,"send":0,"wait":11,"receive":1,"ssl":46},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/homeadd4.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/homeadd4.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:30 GMT\r\netag: \"3c6aa-67cd660a-d1c18ab69c9a93b5;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 247466\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":247466,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1920x1231, components 3","md5":"28fbea2b6eab2cf31b4ea050a9f090f3","sha1":"a97851d5ef73098f60d0f1488f5343e048c8b6d7","sha256":"24c91bd850e1fe3309fc02ce3e8475dbc9c19df97023c027e8da6b7d12eb431e","sha512":"38d2df20d67472e8d0103ba233c02dc61d55c2a6159f605675cb6fb8f57ef636f0e8b224c2cfaec51a358778baea16024d24a38da6270842fc6a12f9860d9212","ssdeep":"6144:CK05+MNQMgxyGmttvnF2rIIOcDUA0Isc4boCqBGBW3LSpWmp:T05+iQVxyGOnFGIgl0xc48H6cLSp","tlshash":"5734226a7acafa0bd4609f7e46957a20e683ac74d11631c39c786ffb1f79344b0460e4","first_seen":"2023-07-19T19:32:37Z","last_seen":"2026-04-04T05:07:17.003585Z","times_seen":80,"resource_available":false,"data":null}},"time_used":2577,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2203,"receive":374,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/css/wellness-cms.webflow.5eb1ff288.css","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.676Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /css/wellness-cms.webflow.5eb1ff288.css HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 09 Mar 2025 09:56:58 GMT\r\netag: \"277c7-67cd65ea-662e6804d30c3b0a;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 23925\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":161735,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"0bb397ea21431871e8dfb0bfdb510f95","sha1":"1cd4f9f6d772f655b653503613c23f10b8d48a00","sha256":"c9c448d0084d93e1bb5471c1384af92cd80db527dafc5df13f56b824612dcc11","sha512":"28d9a4f9ec9a3aba2f063423a72cae341f1f7657c6475197352c82933ba9af1c377688a5a343b94d1ab6deb21ac32eada2d28b79fa46beb6fe0555233cb47e0a","ssdeep":"768:u9f7A1fyYJz0ZivJ8TVv1mB82VQk24BcTZSsc1DFCBec0QN:11f1z0ZiviTVv1mXqkDHH1DFO","tlshash":"baf3c6336091332db017cd3266a966997225c403e6135bfded667936cbcb6c20a3379e","first_seen":"2025-03-26T16:42:23.408383Z","last_seen":"2026-03-05T05:02:04.651337Z","times_seen":15,"resource_available":false,"data":null}},"time_used":418,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":209,"receive":209,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/images/5acbd39978f9ca0aad1794e8_Gradient.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.337Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /images/5acbd39978f9ca0aad1794e8_Gradient.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/css/wellness-cms.webflow.5eb1ff288.css\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 09 Mar 2025 09:57:16 GMT\r\netag: \"344-67cd65fc-a029cee885e944a5;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 836\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":836,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 14 x 997, 8-bit colormap, non-interlaced","md5":"1a7354b7ba8fd927ff4b340620692bde","sha1":"264e9c7961d72ea9b83805a5a93fc237fb818785","sha256":"d8744c7f70230c2a92e4aab931f557b5cf4b663991a95e72d324143a569e4065","sha512":"0de083b3ca5c52939eaa6d85fb98850580ad2ee35bcad834285e5aa1a89c1afc28fc55545859fefd4dd2fa862c1b1460a6e4f94b9b44bd713df8680b0c3f04f2","ssdeep":"","tlshash":"f001687798055f68cd76363292689b16cc775cd40adc150d13d4d4bc1d1bc5ed1e0ee5","first_seen":"2025-03-26T16:42:23.454841Z","last_seen":"2026-03-05T05:02:04.653647Z","times_seen":31,"resource_available":false,"data":null}},"time_used":1108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1106,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/Alt_Invest_1x.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.342Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/Alt_Invest_1x.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 09 Mar 2025 09:57:26 GMT\r\netag: \"1b31f-67cd6606-ac175cc8e8f93e8a;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 111391\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":111391,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 568 x 339, 8-bit/color RGB, non-interlaced","md5":"c03785f44d58ae865e2f29e9c7f2dad8","sha1":"949e23b0a26de9d070340706006b32726d91f4da","sha256":"65862b8e3d33223272c9b1829e877c8afc238715e9ea9333f27079e09280fbfa","sha512":"144a581e490b8fa72cee4a85a0441f19ea273bcf0b5d01b84ed73012fe21ddf8c3c66ffc672fea1c3af745d026643b76e9ef299d16efbd1b8b7d475efb3190b1","ssdeep":"3072:wD0M3U0lmQovZTlPgietjuF2U3yV8jTTifeIP5ZKgeV/SSPokl:C0m36xBhJQ8jK2I6geVKSPokl","tlshash":"dfb3125d373e87a8bf6b8776c70bbed5400626cc5c0a30953b9a6e81f98d405edd085e","first_seen":"2025-03-26T16:42:23.445352Z","last_seen":"2026-03-05T05:02:04.654636Z","times_seen":31,"resource_available":false,"data":null}},"time_used":1732,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1728,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.672Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 47208\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 19:59:32 GMT\r\nexpires: Wed, 03 Mar 2027 19:59:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 118917\r\nlast-modified: Wed, 18 Feb 2026 19:52:51 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":47208,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 47208, version 1.0","md5":"2465bec3a1d5ad40ceb1828a07763d2f","sha1":"656fca193330ac8ec592a0942f4e7d718fa69cbf","sha256":"14f23757c6b41b4b6c0b967ca3fa74ff47a868728158373461c4e6e4b6368f19","sha512":"171195e97870d0794a5762cb3324c2994542a534f4e8ec490400f5667527c48c0c2814071fe9449f4d78169b2d35228466cfadea81229f6ebddf791dd3fb2099","ssdeep":"768:/FAcvRO+HWzD3hVYA6By+jNbKulKiuJ+YAnmWjKiXN0EoGlknbxWuFYCrJRSx89Z:33sD38k+jYulvuUHnmTq0bGlyFWuFYiV","tlshash":"6123f16ca80df34596fae4f76b11fcebf248bc9177c5ee10278c864d8575aa5cc28241","first_seen":"2026-02-19T22:36:20.820122Z","last_seen":"2026-04-04T15:55:41.720405Z","times_seen":3820,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.645Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28488\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 17:21:40 GMT\r\nexpires: Wed, 03 Mar 2027 17:21:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 128389\r\nlast-modified: Wed, 10 Sep 2025 16:46:11 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28488,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28488, version 1.0","md5":"22c3b00d2e65fb2c876a292423108958","sha1":"3c61d84659817fef687045bbfa0e1da9568e164b","sha256":"bd73278ee0c50041b91b4c03d1229e35b501637f46b6409e7da2d3a758446ea5","sha512":"33954d8a7ed3c87b3af8577bbae9439b9efba2a64445463d893681dad085bb8630d31c995ce010510a9c732926017dba9d5fd5002d0000ec1488b61889d6ddfe","ssdeep":"384:jlzdJfoB5YJ2kG1CdQegm8m00xr19KB668/BOTqE85gyqvPA34uEomcGvpMwvg84:jlzdyBzhIb0u1QB6vBOv8uvPAovJCs4","tlshash":"cfd2e0195e9673efe4552d3ea830affe91e32aad30507162c5db6c1155c438bc8e4ec4","first_seen":"2025-09-11T19:05:43.498829Z","last_seen":"2026-04-04T15:23:37.465743Z","times_seen":18136,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":64,"dns":3,"connect":32,"send":0,"wait":74,"receive":8,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/js/jquery-3.5.1.min.dc5e7f18c8bf79.js","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.710Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /js/jquery-3.5.1.min.dc5e7f18c8bf79.js HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 09 Mar 2025 09:57:56 GMT\r\netag: \"15d84-67cd6624-441b2fae0938417b;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 30280\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":89476,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-04-04T15:27:33.816485Z","times_seen":217646,"resource_available":true,"data":null}},"time_used":1008,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":586,"receive":422,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/images/5ac52e24e55ec460bba4f210_Checkmark.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.344Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /images/5ac52e24e55ec460bba4f210_Checkmark.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/css/wellness-cms.webflow.5eb1ff288.css\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 09 Mar 2025 09:57:12 GMT\r\netag: \"ff-67cd65f8-e5a5770f2eec983c;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 255\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":255,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 24 x 18, 8-bit colormap, non-interlaced","md5":"13d6571c9e8352f968d16608d6bb6607","sha1":"6c08cb063dda7898e312722acd5253894ee24961","sha256":"8468d521600236fac34aa69a63f683b58c959835d91159763350193b906901b9","sha512":"6ceb6c6c460b315cd2799029bd12a33feb7d7b7652ce85a9e8ba656bdbebf83b02115d13a263be64f380adcad115743e7f6a5f83eeacafe473a2b764ffcb80a0","ssdeep":"","tlshash":"dcd022ab52a04c24ca68233b22415ccccc6b1d2818a9060e8981bd3b1833276a2c22a4","first_seen":"2025-03-26T16:42:23.439771Z","last_seen":"2026-03-05T05:02:04.656658Z","times_seen":31,"resource_available":false,"data":null}},"time_used":1731,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1731,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/crypto.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.346Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/crypto.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:26 GMT\r\netag: \"67521-67cd6606-e308acf9982decfe;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 423201\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":423201,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=18, height=3280, bps=230, compression=none, PhotometricInterpretation=RGB, description=Stacked cryptocurrency coins (Bitcoin, Ethereum, Litecoin) (Stacked cryptocurrency coins, manufacturer=NIKON CORPORATION, model=NIKON Df, orientation=upper-left, width=4928], baseline, precision 8, 724x482, components 3","md5":"e1d71fe642f30b3a9d93d81fc66b5fc4","sha1":"45c833660dde77b26af751316f97e01e2028c4ec","sha256":"d761da86b30c1853e9270907915013b2b940a9ae727403edc51fc4427605576e","sha512":"fc3d6d8fd568d4d56b26e2a8363e209142d61d03d9cdf2f9692efde64329ad6878939f48fdccbf3f74e721a5b5da31de40d7c1eba0064a820ba85f919a49e47a","ssdeep":"12288:/HnBvl5XKVPVhHtZRKsCqIE/nXHvgxBFWrfa1h:/hH6tqUXHvgxeav","tlshash":"2494239e0e689d31e79c8c7835b6fbac400a3b6c66f6f28b635392347cb3182558c755","first_seen":"2025-03-26T16:42:23.411347Z","last_seen":"2026-03-20T20:01:32.988297Z","times_seen":32,"resource_available":false,"data":null}},"time_used":1988,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1730,"receive":258,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/$rpc/google.internal.maps.mapsjs.v1.MapsJsInternalService/InitMapsJwt","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.212Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"OPTIONS /$rpc/google.internal.maps.mapsjs.v1.MapsJsInternalService/InitMapsJwt HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,x-goog-api-key,x-goog-gmp-client-signals,x-goog-maps-session-id,x-user-agent\r\nReferer: https://www.google.com/\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\naccess-control-allow-origin: https://www.google.com\r\nvary: origin, referer, x-origin\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT\r\naccess-control-allow-headers: content-type,x-goog-api-key,x-goog-gmp-client-signals,x-goog-maps-session-id,x-user-agent\r\naccess-control-max-age: 3600\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\ncontent-type: text/html\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=9\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/homeadd2.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.704Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/homeadd2.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:30 GMT\r\netag: \"643fa-67cd660a-41e833c7576f0616;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 410618\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":410618,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 2400x1600, components 3","md5":"087afe5c7e933e4babf4dc7770f4ccd1","sha1":"fbb4b477832ebfc0571ee0b4af5b9a927ef57441","sha256":"6e0c6d76a920e77ac87cc4ca11b6bdc81b236aaed5ef558b8d4f87f245453a3f","sha512":"e2ada72c509131441cd68f0c37465fbdae452be6541cd5796298dc6a3db9cc75758240b364de325d5714bd1e656364b1853f6915cedb94c7bc33b76ce64a593c","ssdeep":"12288:r9Xd+Mbhoz2cqqu9CJEGHrT4plUNtakYONzaq:V0MbhTRBS34r2uq","tlshash":"ac942357320f69a3e0e1c67679d6ea8ce3135b1d6e1fa8cb0d52870a761c58ef5410ac","first_seen":"2023-07-19T19:32:37Z","last_seen":"2026-04-04T05:07:16.986352Z","times_seen":59,"resource_available":false,"data":null}},"time_used":1274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":812,"receive":462,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/gc_web_banner_1680x549.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.334Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/gc_web_banner_1680x549.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 09 Mar 2025 09:57:28 GMT\r\netag: \"159529-67cd6608-451f8cd196cff83a;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 1414441\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1414441,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1680 x 549, 8-bit/color RGB, interlaced","md5":"1de263f0dcc4c3d1937347bb2ecfef76","sha1":"628456d7d0122302afdbde3b58b9e392120ea3bc","sha256":"060cbe8a451024f60f09585d67abc87c956c37924c154834454601a5c47f5996","sha512":"1333019cdcd936fa31696900beafd7c4926fe681f8229c893351b1b6ad942c2efab5e8d8d912a04bd0720220f1f2b9a4aa53ff709bbcff764518bd7681fcac9f","ssdeep":"24576:sII/CN3deETutKLhXWijuXEd4jdTYuAFAQ3R7S9eM6aV0:sP4gwLoisZjtAFz7keM6am","tlshash":"a925338cf0b2061207a265ea9ad829bc1c171d86e9de2971e074f25d71cbf7e4663cc3","first_seen":"2025-08-09T17:44:05.595564Z","last_seen":"2026-03-05T05:02:04.660986Z","times_seen":30,"resource_available":false,"data":null}},"time_used":1721,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":967,"receive":754,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"websocket-visitors.smartsupp.com/socket/?EIO=3\u0026transport=websocket","fqdn":"websocket-visitors.smartsupp.com","domain":"smartsupp.com","tld":"com"},"ip":{"addr":"3.73.3.90","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:32.114Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.smartsupp.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Fri, 25 Jul 2025 00:00:00 GMT","end":"Sat, 22 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"35:57:04:01:81:87:91:69:91:5F:FB:F3:51:3F:C3:50:59:25:59:2D","sha256":"D8:0F:70:51:28:C9:4C:A6:5A:C3:91:80:AC:41:82:E2:B2:73:5A:0B:A4:07:51:81:EC:03:09:9E:87:4F:81:F7"}}},"request":{"raw":"GET /socket/?EIO=3\u0026transport=websocket HTTP/1.1\r\nHost: websocket-visitors.smartsupp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://phonixtrade.ltd\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: q4vLCzhtNPt3HS6RhWvDZQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Thu, 05 Mar 2026 05:01:32 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: M72E6+XpOmXoNvPmjF2SG65UFro=\r\nSec-WebSocket-Version: 13\r\nWebSocket-Server: uWebSockets\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":357,"timings":{"blocked":-1,"dns":138,"connect":152,"send":0,"wait":26,"receive":1,"ssl":148},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/agriculture.jpeg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.348Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/agriculture.jpeg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:26 GMT\r\netag: \"2e4e4-67cd6606-5eda6d8c726f39f7;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 189668\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":189668,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1074, components 3","md5":"556d6e031ea9361d5336ba0b81afe600","sha1":"992a7ab061b5be9b926ffd71f81629e844866c35","sha256":"0c532ad492092463d650c5f40332391747280542f9f6da9b47a84967cc12433b","sha512":"56b30513cd16e7ef54d8f044127584f31626ea95bccc5e02ffbf80b6bd2cc1f84349e51f6783cb330a36b96822c40badb7eba9fbbec615dbeb9d9d38faf683d3","ssdeep":"3072:KOP115rC0HVjYdH7dPqmFRv8RWLyNtMgxENPzZT7zNNNG0m9n2PgQJvHeauKJU:t15HVEPVRhmMgkt7HcXQJ9uK2","tlshash":"210412839f790d5bcb6f98933149d2c2033459aeeee549e72c04c19c12b39df6c0ea52","first_seen":"2025-03-26T16:42:23.440623Z","last_seen":"2026-03-05T05:02:04.661834Z","times_seen":26,"resource_available":false,"data":null}},"time_used":1992,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1965,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/video.html","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.418Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/video.html HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/html\r\nlast-modified: Sun, 09 Mar 2025 09:57:38 GMT\r\netag: \"0-67cd6612-6f19f97066c5b375;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 0\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":382,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":382,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.649Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28488\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 17:21:40 GMT\r\nexpires: Wed, 03 Mar 2027 17:21:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 128389\r\nlast-modified: Wed, 10 Sep 2025 16:46:11 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28488,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28488, version 1.0","md5":"22c3b00d2e65fb2c876a292423108958","sha1":"3c61d84659817fef687045bbfa0e1da9568e164b","sha256":"bd73278ee0c50041b91b4c03d1229e35b501637f46b6409e7da2d3a758446ea5","sha512":"33954d8a7ed3c87b3af8577bbae9439b9efba2a64445463d893681dad085bb8630d31c995ce010510a9c732926017dba9d5fd5002d0000ec1488b61889d6ddfe","ssdeep":"384:jlzdJfoB5YJ2kG1CdQegm8m00xr19KB668/BOTqE85gyqvPA34uEomcGvpMwvg84:jlzdyBzhIb0u1QB6vBOv8uvPAovJCs4","tlshash":"cfd2e0195e9673efe4552d3ea830affe91e32aad30507162c5db6c1155c438bc8e4ec4","first_seen":"2025-09-11T19:05:43.498829Z","last_seen":"2026-04-04T15:23:37.465743Z","times_seen":18136,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":36,"dns":5,"connect":8,"send":0,"wait":94,"receive":3,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/4.6.3/css/font-awesome.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.690Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/font-awesome/4.6.3/css/font-awesome.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 5336\r\ncf-ray: 9d76901e8fae2efa-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"65993d9c-14d8\"\r\nlast-modified: Sat, 06 Jan 2024 12:46:36 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1252666\r\nexpires: Tue, 23 Feb 2027 05:01:28 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=FlYFrx5xJVTpl6L2B1IzT7waGwmv1MzxKz3yfonwFD6Mbt1Ach6z3ghYNm7eruWYejpjTeE9u%2FypmEa5HS21KDQBeCL19L0P2cLygwZ9QggdanN%2Bee6Nd2o%2BUr95IcZdmzI4wFTp\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":29063,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (28900)","md5":"4083f5d376eb849a458cc790b53ba080","sha1":"fb5b49426dee7f1508500e698d1b3c6b04c8fcce","sha256":"008a1d103902f15fdb1c191fcb1ce8954330e7b8de43d09abb08555ba609f420","sha512":"e2e1991e96c3962371880bff43364da3fc9bd85b405feaa20dbef2a415a211d2505fc3ee829f0cea297949190df2342b0cb5ac877aeb3c349745fdc3c0560cea","ssdeep":"384:Uu5yWeTUKW+KlkJ5de2UYDyVfwYUas8l8yQ/8dwwdG:flr+Klk3Yi+fwYUf8l8yQ/eC","tlshash":"a4d250e8e54c01d66731c48bff81b36862b6f73dd5844d99f01f690c29d22a522c5fba","first_seen":"2023-04-05T09:56:39Z","last_seen":"2026-04-04T15:39:24.599822Z","times_seen":15985,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":39,"dns":1,"connect":7,"send":0,"wait":19,"receive":1,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/tawk.js","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.717Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /tawk.js HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 04 Mar 2026 11:43:13 GMT\r\netag: \"280-69a81ad1-8ef103ed3c14060f;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 322\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":640,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"62dda3e93a14c78d7f5e364f99525042","sha1":"11ee408843fc6464799242e8c5a576d16c5019d6","sha256":"9e8b32201bcba3e12b1b68589f4f840f0d0f0edcd2384f7b9e7708c0dbf5bdcb","sha512":"1d5abec4b1204cce8f27320a636a92d606afec4177449ea91d847cffbf5c3b55b51337721847b63bf950eb46a1454dbd91cee71f96e034f28f1ea6afefdb6f45","ssdeep":"","tlshash":"eef0a26f3c35505907a6a2b8d3b6e92c393961194035cd267692c4ef3cb1fdd270d5ac","first_seen":"2026-03-05T05:02:04.663308Z","last_seen":"2026-03-05T05:02:04.663308Z","times_seen":1,"resource_available":true,"data":null}},"time_used":585,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":585,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/respon2.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.339Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/respon2.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:38 GMT\r\netag: \"14037-67cd6612-c42a0c16f3b4d031;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 81975\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":81975,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1036x700, components 3","md5":"14ab76cb36d51934d49bd070118f9f4b","sha1":"75e596efe0fac81cc6e1fee265ac029d92140ab5","sha256":"4a39b5c793930270015ea79be8f3624a41fe3b96ecfd2a1cb26c72c57a4b0f84","sha512":"7fe3a6beae0c5043ac3451babfacf4f91125445fd7e23163368e247c1a6698c16753e5505f37ddd23e40cb506daa02f20b419c7d7d5d123b1b94efce0d30653b","ssdeep":"1536:IdX6iXSpRm9LKkOQyZ+pPanP/qKM3TaRpPVN2ErLu9nlTcshhp1OR0a/8+o0EMPo:IYYSpRm9LKkOxZ+gKKMOpuErLI1hhp08","tlshash":"518302d7a2e351f2e5d26885a1e9562e2247add705cfc022671f0f05907e64a37f1c27","first_seen":"2025-03-16T09:38:47.898987Z","last_seen":"2026-03-05T05:02:04.665136Z","times_seen":32,"resource_available":false,"data":null}},"time_used":1729,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1107,"receive":622,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28488\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 17:21:40 GMT\r\nexpires: Wed, 03 Mar 2027 17:21:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 128389\r\nlast-modified: Wed, 10 Sep 2025 16:46:11 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28488,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28488, version 1.0","md5":"22c3b00d2e65fb2c876a292423108958","sha1":"3c61d84659817fef687045bbfa0e1da9568e164b","sha256":"bd73278ee0c50041b91b4c03d1229e35b501637f46b6409e7da2d3a758446ea5","sha512":"33954d8a7ed3c87b3af8577bbae9439b9efba2a64445463d893681dad085bb8630d31c995ce010510a9c732926017dba9d5fd5002d0000ec1488b61889d6ddfe","ssdeep":"384:jlzdJfoB5YJ2kG1CdQegm8m00xr19KB668/BOTqE85gyqvPA34uEomcGvpMwvg84:jlzdyBzhIb0u1QB6vBOv8uvPAovJCs4","tlshash":"cfd2e0195e9673efe4552d3ea830affe91e32aad30507162c5db6c1155c438bc8e4ec4","first_seen":"2025-09-11T19:05:43.498829Z","last_seen":"2026-04-04T15:23:37.465743Z","times_seen":18136,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":88,"dns":5,"connect":33,"send":0,"wait":58,"receive":2,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 43136\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 09:10:24 GMT\r\nexpires: Tue, 02 Mar 2027 09:10:24 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 18 Feb 2026 19:51:37 GMT\r\ncontent-type: font/woff2\r\nage: 244265\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43136,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43136, version 1.0","md5":"665db5e157d2138835c4037c971ff3a4","sha1":"41ca6b7e4818eb81531d8006ff7ddd971c640879","sha256":"1404ca348bd75ef836f4dd8b6f2cc719458642d1237c368296b2fc652dca47dc","sha512":"6c999466673c9873b1b112d6ab95c7cecb99467ea156e3e046b54c5f3d109c3845b05cbb2a0245d178430c7b2ceacd5110f7d8faf7e041100f44852b0c29fe9a","ssdeep":"768:tMTmVhyXCrekkraPAjrWMMWD3UJmw0FRwoglekm+hQ7//geceSF/mEQBPMAmDu5:cmHkCrHvPAjrWMMI3UJswogl4j7/hSlW","tlshash":"f9130231eb70ee59962c903454e7fda9433b1457d731aca80e99a1ce6f8103454facec","first_seen":"2026-02-19T22:27:43.350598Z","last_seen":"2026-04-04T15:50:23.17118Z","times_seen":62358,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/lora/v37/0QIvMX1D_JOuMwr7Iw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.684Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/lora/v37/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37788\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 20:57:25 GMT\r\nexpires: Thu, 04 Mar 2027 20:57:25 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Sep 2025 17:07:42 GMT\r\ncontent-type: font/woff2\r\nage: 29044\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37788,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37788, version 1.0","md5":"9577af3ccda5f49d71b0dea88b47f1ac","sha1":"fcfdbcb885ebabaf7354b134c44269942ae61698","sha256":"ddb8c66035104e233fc024669183aad3738b6daa16deee2ebb1241bd0f98ace1","sha512":"8f2256872c7a17c968039323f97a1646ff6bc682456621568a4c35f3f8780fa9237fe1c3192727f4f2e19d018bda5614bb197616b81e6ed87cc6683423e0650e","ssdeep":"768:+Ws2cEh6gcFObhrnUzM3jZdJIHnfwa5ZsXkyyIt:bt36FMyzMTZdJiwaXsJt","tlshash":"af0302bf85218f3e577b3d70c507af133c955938e92cea94e3126fa2ac432d90815693","first_seen":"2025-09-11T17:50:43.786734Z","last_seen":"2026-04-04T14:51:14.767621Z","times_seen":11291,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/common.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/common.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37718\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:46:06 GMT\r\nexpires: Tue, 02 Mar 2027 17:46:06 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213324\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":128056,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (726)","md5":"84373bd8b9296b56c786641c5087ca5f","sha1":"f955d99686343474b11048b1d93e42c8bb18766a","sha256":"0bd074fc5b2a553414ce664fbb1bae951ef2b3a5cca16b6d1b9012360f580a5b","sha512":"e3c1bd75a6a696dfeb282481753f9b5b0e2a5f9814e883fc4c791d6cb8dfcfdae94e4f8abe9402b4afb8cda50e51c0e9a0b7807b78bef10ab409ea1ebc62e419","ssdeep":"3072:liBbFtei2dPAWtgPcY2T4ROpXOWD6EyIBqxhCDRbX4Wxrc61/NWksb/9MPJUUkUr:liZFteiaPHgPJq4Ryx0xUDzrc6dNWksE","tlshash":"73c3e7d571937073bfb1a49444a70102b26aa89ab05dcd6db1fd88f3aef185701f9b38","first_seen":"2026-03-02T17:57:56.881184Z","last_seen":"2026-03-11T17:02:43.978178Z","times_seen":7297,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"maps.googleapis.com/maps-api-v3/api/js/64/3a/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/css/extra.css","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /css/extra.css HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 09 Mar 2025 09:56:58 GMT\r\netag: \"48f8-67cd65ea-8711327579e07f51;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 1274\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":18680,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"59a8eb72d84f4faefd3e3f4f946ad6ea","sha1":"0cb1739d911d9731fee062ad258ed6f1eed62859","sha256":"fdf2f0196133e6b9a2bb4d1317047e1e777e7fe31ba8019906ddccbabf023404","sha512":"1b98f877de37f8d1e55bccf8632b323390c50fc803000ff28977110be8c58db794d6fb0cf1cb6913ce2ef453f22a3ba3679d1ff43b5a4fc71a1f44c9a2f96a39","ssdeep":"384:EkntU8rzB6Uv+w8X41guNR1TM6L1MaVBU5GxXy5D8CDpGYPGAAXk9o2JjHNMiThc:DU6zB6Uv+w8X41guNR1TM6L1MaVBU5GH","tlshash":"46823fcb0db3181d4826987b7aea95076166b07bbabdec4ebe9c9f00df15406c853743","first_seen":"2025-03-16T16:56:13.154741Z","last_seen":"2026-03-05T05:02:04.669219Z","times_seen":29,"resource_available":false,"data":null}},"time_used":417,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":417,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/images/5ac51084851dd774046e1794_Line.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.330Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /images/5ac51084851dd774046e1794_Line.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/css/wellness-cms.webflow.5eb1ff288.css\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 09 Mar 2025 09:57:10 GMT\r\netag: \"60-67cd65f6-7f5723b8ab38da0;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 96\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":96,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2 x 23, 1-bit colormap, non-interlaced","md5":"f571e13e638b49d2ddd39ac6b79c8784","sha1":"6f6b8ff89ac976ab868d84354c1cb1e1545099b8","sha256":"a0e36618d4969f7fb501d5744d76e5822b3cd92a1bfe341bd8df05d7f5b332d4","sha512":"4c9156085a3abb7f8575e885b9d070c503ac4165d4d344b705bc1830c3d15d3e93454c5f8ca797973745a6b8cbce23666c1af488bff12abdd6d1beb008e21a70","ssdeep":"","tlshash":"1bb012f282518c39d3a74133e04d9020993402658256433f110e707728e375d984818e","first_seen":"2025-03-26T16:42:23.377664Z","last_seen":"2026-03-05T05:02:04.669923Z","times_seen":31,"resource_available":false,"data":null}},"time_used":969,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":967,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/lora/v37/0QIhMX1D_JOuMw_LIftL.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/lora/v37/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40772\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 05 Mar 2026 01:35:56 GMT\r\nexpires: Fri, 05 Mar 2027 01:35:56 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Sep 2025 17:08:08 GMT\r\ncontent-type: font/woff2\r\nage: 12333\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40772,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40772, version 1.0","md5":"1640b0b69ef0647e11b559178cb8a08d","sha1":"99523cf576d3d1815e27b58a35daff6edc443dd0","sha256":"d824d807d4d832d12c87932d0b8ec1314dcfd502157a56dee6bb04cf8a3768ae","sha512":"2969e677c9d9c2a9a7bc7d5bd21b0397a3cb67642b99a2603936538bd580f837d93e6bb191e02a932493207d17d53b664e04272bf3850c6947b042d4c1a1d423","ssdeep":"768:W0q6cKPuFGIRn7MJzdS8CAvC3AA3x8dlmHJ45S4O0f3DNmzcB:WC0FGA7t8HvC18dlmsS4rY4B","tlshash":"3603f13c5f73a978faec58b8ecdf0726df9e0338a8eb1a5672d15c250aa0dc17610065","first_seen":"2025-09-11T22:06:21.040627Z","last_seen":"2026-04-04T14:13:27.080746Z","times_seen":2364,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":68,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400,500,700\u0026lang=en","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400,500,700\u0026lang=en HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 05 Mar 2026 05:01:31 GMT\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\ncache-control: private, max-age=86400, stale-while-revalidate=604800\r\nlast-modified: Thu, 05 Mar 2026 04:04:24 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":82653,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"9998422a2f97cb19b98eab50905cb611","sha1":"569a815b04ab08a00ac324434a5d1114ffa44279","sha256":"8845fec2f906401d4397ac1fdd22751ed1310cb24d6c9e76b403f955a1acd37b","sha512":"db6deb3e5128fad196728e4c3041024c9b63118f1a63577006136d0e1876b8c700d118e8ab978f2bfed4ece8907da02bdb8e17b809aef1a8ea4e1791a41abb8b","ssdeep":"768:tmL+FZarZ8BrqXPPEFsbbYSRv4wFMl22YfRiJhan6BBYERNeWwhQHHYORjUM8:tmiF4rKYfYIHTj","tlshash":"fa8341a20017a0196b536cd723ce3d35ee0e51186101d579a7fe4a8aecdbc6a43e17fe","first_seen":"2026-03-03T03:48:37.905341Z","last_seen":"2026-04-03T05:21:31.369587Z","times_seen":75,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":45,"dns":0,"connect":0,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 4216\r\ncf-ray: 9d76901e8f9e2efa-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5f5628a2-11846\"\r\nlast-modified: Mon, 07 Sep 2020 12:33:38 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 96870\r\nexpires: Tue, 23 Feb 2027 05:01:28 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=wMQLF8MqC6XUZtEAxDm2B3d7YgYVZX%2Bfsr0xoyNcEsaROsF6RSCoydMVL0PyqVkpjfjiEq81M3ouHj1DBb0VwyFzQPMF%2FCv8FBG7GFiKeGRntv6PmjjyGEk0hHXTI590qJDG%2Fc%2Fr\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":71750,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65348)","md5":"c0be8e53226ac34833fd9b5dbc01ebc5","sha1":"b81ef1b22de26af8a7a4656f565fbc91a69d7518","sha256":"5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f","sha512":"738daa4d2c3fc0f677ff92c1cc3f81c397fb6d2176a31a2eeb011bf88fe5a9e68a57914321f32fbd1a7bef6cb88dc24b2ae1943a96c931d83f053979d1f25803","ssdeep":"1536:h6uNQ3fdPwwanleMf72yMPkZ8PFwh1nAukdDO3Xyr5Ir5eh0dTo:AkZgwh1nAukdDO3Xyr5Ir5eh0dTo","tlshash":"a66329ae4891128990230f6787cd5ea84b3dc6a355721cee33552c0b8b46fee73de617","first_seen":"2023-04-05T05:17:37Z","last_seen":"2026-04-04T15:43:09.67949Z","times_seen":24875,"resource_available":false,"data":null}},"time_used":121,"timings":{"blocked":40,"dns":1,"connect":1,"send":0,"wait":10,"receive":1,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/forex_trade.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/forex_trade.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:28 GMT\r\netag: \"b6539-67cd6608-edae1825201b6e;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 746809\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":746809,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 4500x3000, components 3","md5":"de6a214e131f2b3237164d5593b5a7a2","sha1":"f96404e7e637186a60af951b3f4cd56a87b3474f","sha256":"7f422e5d59347bb3e74871d7111dea845c61d174c1cf6ee69a64007704c5aab1","sha512":"e1ce5f340d412e54b7ca7e9a5ec3a229044d90b3bf6cee6d98e3ec57d640dc93dba3e1c1aff83646b9cbb773354bf8a59e143ac2796f4bc89f797e515b4b1fb1","ssdeep":"12288:Nxt0uIcIYobxlR7Qw5tuhWBCZenKjGOXjhp2fLG3kBpvjVbkKFzlR/mVC+:Nxyx0K0w5sG44KqO0GOpvDjRIn","tlshash":"44f423bb49f183c6d51c72b004d6977da666f5b923c8bb1204a50f14f58e8c8f9fa26c","first_seen":"2025-03-26T16:42:23.399897Z","last_seen":"2026-03-05T05:02:04.672082Z","times_seen":50,"resource_available":false,"data":null}},"time_used":2834,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2077,"receive":757,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/util.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/util.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 71783\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:46:06 GMT\r\nexpires: Tue, 02 Mar 2027 17:46:06 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213324\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":312149,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (526)","md5":"46af404ac31f102f9b6b19628f01eff1","sha1":"b49fa1a7a07655c1d968074ed5e63b2cdc5b854f","sha256":"5e59f009b64830aa9f732fb3a31bd12cad20df4560e7e34b22c4e51b044817db","sha512":"65cc2acc074f211ac928fa9d76629b678fc6074e6f8bdf95dd27abec619ff335d67eb0824f0685f0bdf0036d18b1b4b0a0cb121f304638e3f5e6572c331b8101","ssdeep":"6144:u0MLfhzt8serzapShIp9MLStYNrnyj0WxFoQWCk8Zxu0BFVS8+FH:u0MLfhzt8serzapShIp9MLStYZnyj0W0","tlshash":"ef64e67c71316b0ee973c85fc626301e90257edbfad488bdeee55146ea50989f0e0638","first_seen":"2026-03-02T17:57:56.901309Z","last_seen":"2026-03-11T17:02:43.982297Z","times_seen":7294,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/images/branding/product/2x/translate_24dp.png","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.143.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:32.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /images/branding/product/2x/translate_24dp.png HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.2f3WBw8L4SI.L.W.O/am=AAAM/d=0/rs=AN8SPfp0Aw7R6LuNGcvWztc4ZbKYxlauww/m=el_main_css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 1842\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 20:03:43 GMT\r\nexpires: Thu, 04 Mar 2027 20:03:43 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 14 Oct 2021 09:08:00 GMT\r\ncontent-type: image/png\r\nvary: Origin\r\nage: 32269\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1842,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"c69c796362406f9e11c7f4bf5bb628da","sha1":"e489ce95ab56208090868882113d7416abf46775","sha256":"4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82","sha512":"d3ad560ed0fd29be7d2cc434694f09e5a6fbea8b29c0611aecb54a1b73b4d722c53f42a19dae9e3d5d358444e50fb8fffbc39d67ce751bdbc8c861f6f95d3162","ssdeep":"","tlshash":"4e31f9fd129220437101ade72165eef798347c15f412da60ce65ba389c9fe20ed9a619","first_seen":"2023-04-05T07:39:29Z","last_seen":"2026-04-04T15:49:11.827896Z","times_seen":53604,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"use.fontawesome.com/releases/v5.7.2/css/all.css","fqdn":"use.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"104.21.27.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.698Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 03:44:58 GMT","end":"Sun, 24 May 2026 04:44:53 GMT"},"fingerprint":{"sha1":"0C:5A:E2:01:10:8C:15:2B:47:73:4B:2D:0B:04:A9:CB:C4:D5:87:DE","sha256":"8A:BA:58:86:7D:78:23:12:27:76:D9:DA:25:26:4E:8B:3B:98:BF:CB:D1:33:A9:B0:4F:4C:17:B3:6C:58:38:24"}}},"request":{"raw":"GET /releases/v5.7.2/css/all.css HTTP/1.1\r\nHost: use.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=49vdwtWI7Mb17RYzTSfnZxfmDiuP2n08BH%2BcKMJAUSZrhnDuGv%2FK6wapJM18lrBG4D2%2BM7t%2BONuvIGit4V34oP84VOlzBH2hzkAS2xH%2F5vQtcQE%3D\"}]}\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\nvary: Origin, Accept-Encoding\r\nlast-modified: Fri, 22 Sep 2023 01:45:51 GMT\r\netag: W/\"7b1d7f457d056ace7b230b587b9f3753\"\r\ncontent-encoding: br\r\ncf-ray: 9d76901eac1475ab-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":54456,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (54456), with no line terminators","md5":"7b1d7f457d056ace7b230b587b9f3753","sha1":"4e0b45eedbe0c405f1faff0d5236a9ee0ff2065b","sha256":"9c099acc093abd2df85eaa34052ad36fe69b6ed16582c14aecd2928baa3b63bf","sha512":"dccd340ffae7f27fb66555c13bd1e26f418a369926f0c49453f7b654db610f2058c4a586f817ed35861cb848d7972ad23badfbb627733015df13bb109b420d52","ssdeep":"768:6V31Uz1RPq4NvvU63HJYkQCZ/WMQyjJKp7CzsGnQzU:6czrC4NnzHSBCkgu7cs1w","tlshash":"e8330bb8e54c41d9a732c04fbf82b2bc61b6f73ce5910d95f00e691c2ad26a811c9f79","first_seen":"2023-04-05T14:01:20Z","last_seen":"2026-04-04T15:38:14.499273Z","times_seen":12563,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":50,"dns":8,"connect":4,"send":0,"wait":123,"receive":0,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.2f3WBw8L4SI.L.W.O/am=AAAM/d=0/rs=AN8SPfp0Aw7R6LuNGcvWztc4ZbKYxlauww/m=el_main_css","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.143.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.206Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /_/translate_http/_/ss/k=translate_http.tr.2f3WBw8L4SI.L.W.O/am=AAAM/d=0/rs=AN8SPfp0Aw7R6LuNGcvWztc4ZbKYxlauww/m=el_main_css HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 4155\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 16:01:02 GMT\r\nexpires: Thu, 04 Mar 2027 16:01:02 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 15 Oct 2025 01:09:54 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 46827\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22386,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (22386), with no line terminators","md5":"901d0c6f3ec8e257e3b9372389ca731a","sha1":"96ab12b16de57ebb10f094a2cdf15b47c0ab28ac","sha256":"fb1bd700eb83832fc2ca14c9fd537e5facad95f3bd15632db0c4b1c5a5bd7e20","sha512":"11e9ea0d777362fd474273c0da81a04389829c7693f0acbd723ccde73901a503aa594d96cf5f506e7342ad708b6c28760fc1517657c6bd2d5100e6ffdfeabb13","ssdeep":"384:gM78SrevMTWhFzou+FqWBZpTpdHjPtcBG:p7XevMCiHjPCG","tlshash":"88a2ab2117aed019a3afa85354d36dff71d488db90113eeaef5a3352cd822f231da215","first_seen":"2025-06-14T23:54:58.423738Z","last_seen":"2026-04-04T05:07:22.118232Z","times_seen":3914,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":203,"dns":0,"connect":24,"send":0,"wait":34,"receive":2,"ssl":178},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.642Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28488\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 17:21:40 GMT\r\nexpires: Wed, 03 Mar 2027 17:21:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 128389\r\nlast-modified: Wed, 10 Sep 2025 16:46:11 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28488,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28488, version 1.0","md5":"22c3b00d2e65fb2c876a292423108958","sha1":"3c61d84659817fef687045bbfa0e1da9568e164b","sha256":"bd73278ee0c50041b91b4c03d1229e35b501637f46b6409e7da2d3a758446ea5","sha512":"33954d8a7ed3c87b3af8577bbae9439b9efba2a64445463d893681dad085bb8630d31c995ce010510a9c732926017dba9d5fd5002d0000ec1488b61889d6ddfe","ssdeep":"384:jlzdJfoB5YJ2kG1CdQegm8m00xr19KB668/BOTqE85gyqvPA34uEomcGvpMwvg84:jlzdyBzhIb0u1QB6vBOv8uvPAovJCs4","tlshash":"cfd2e0195e9673efe4552d3ea830affe91e32aad30507162c5db6c1155c438bc8e4ec4","first_seen":"2025-09-11T19:05:43.498829Z","last_seen":"2026-04-04T15:23:37.465743Z","times_seen":18136,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":17,"dns":1,"connect":8,"send":0,"wait":42,"receive":2,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 43136\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 09:10:24 GMT\r\nexpires: Tue, 02 Mar 2027 09:10:24 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 18 Feb 2026 19:51:37 GMT\r\ncontent-type: font/woff2\r\nage: 244265\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43136,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43136, version 1.0","md5":"665db5e157d2138835c4037c971ff3a4","sha1":"41ca6b7e4818eb81531d8006ff7ddd971c640879","sha256":"1404ca348bd75ef836f4dd8b6f2cc719458642d1237c368296b2fc652dca47dc","sha512":"6c999466673c9873b1b112d6ab95c7cecb99467ea156e3e046b54c5f3d109c3845b05cbb2a0245d178430c7b2ceacd5110f7d8faf7e041100f44852b0c29fe9a","ssdeep":"768:tMTmVhyXCrekkraPAjrWMMWD3UJmw0FRwoglekm+hQ7//geceSF/mEQBPMAmDu5:cmHkCrHvPAjrWMMI3UJswogl4j7/hSlW","tlshash":"f9130231eb70ee59962c903454e7fda9433b1457d731aca80e99a1ce6f8103454facec","first_seen":"2026-02-19T22:27:43.350598Z","last_seen":"2026-04-04T15:50:23.17118Z","times_seen":62358,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":14,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 43136\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 09:10:24 GMT\r\nexpires: Tue, 02 Mar 2027 09:10:24 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 18 Feb 2026 19:51:37 GMT\r\ncontent-type: font/woff2\r\nage: 244265\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43136,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43136, version 1.0","md5":"665db5e157d2138835c4037c971ff3a4","sha1":"41ca6b7e4818eb81531d8006ff7ddd971c640879","sha256":"1404ca348bd75ef836f4dd8b6f2cc719458642d1237c368296b2fc652dca47dc","sha512":"6c999466673c9873b1b112d6ab95c7cecb99467ea156e3e046b54c5f3d109c3845b05cbb2a0245d178430c7b2ceacd5110f7d8faf7e041100f44852b0c29fe9a","ssdeep":"768:tMTmVhyXCrekkraPAjrWMMWD3UJmw0FRwoglekm+hQ7//geceSF/mEQBPMAmDu5:cmHkCrHvPAjrWMMI3UJswogl4j7/hSlW","tlshash":"f9130231eb70ee59962c903454e7fda9433b1457d731aca80e99a1ce6f8103454facec","first_seen":"2026-02-19T22:27:43.350598Z","last_seen":"2026-04-04T15:50:23.17118Z","times_seen":62358,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/lora/v37/0QIvMX1D_JOuMwr7Iw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/lora/v37/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37788\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 20:57:25 GMT\r\nexpires: Thu, 04 Mar 2027 20:57:25 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Sep 2025 17:07:42 GMT\r\ncontent-type: font/woff2\r\nage: 29044\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37788,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37788, version 1.0","md5":"9577af3ccda5f49d71b0dea88b47f1ac","sha1":"fcfdbcb885ebabaf7354b134c44269942ae61698","sha256":"ddb8c66035104e233fc024669183aad3738b6daa16deee2ebb1241bd0f98ace1","sha512":"8f2256872c7a17c968039323f97a1646ff6bc682456621568a4c35f3f8780fa9237fe1c3192727f4f2e19d018bda5614bb197616b81e6ed87cc6683423e0650e","ssdeep":"768:+Ws2cEh6gcFObhrnUzM3jZdJIHnfwa5ZsXkyyIt:bt36FMyzMTZdJiwaXsJt","tlshash":"af0302bf85218f3e577b3d70c507af133c955938e92cea94e3126fa2ac432d90815693","first_seen":"2025-09-11T17:50:43.786734Z","last_seen":"2026-04-04T14:51:14.767621Z","times_seen":11291,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.smartsuppchat.com/loader.js?","fqdn":"www.smartsuppchat.com","domain":"smartsuppchat.com","tld":"com"},"ip":{"addr":"185.76.9.11","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:30.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1161431244.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:55:02 GMT","end":"Wed, 15 Apr 2026 06:55:01 GMT"},"fingerprint":{"sha1":"D6:AF:CD:AE:04:C9:18:A9:86:FD:53:08:D9:99:99:9B:9D:A8:58:29","sha256":"66:75:58:C3:A9:29:2F:14:30:FB:BE:32:2C:1C:9B:D1:A4:E6:58:D5:9F:33:F7:16:C3:0B:F7:A4:6C:49:F2:B5"}}},"request":{"raw":"GET /loader.js? HTTP/1.1\r\nHost: www.smartsuppchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:30 GMT\r\ncontent-type: application/javascript\r\ncache-control: max-age=300, public, s-maxage=60\r\netag: W/\"6969e153-4684\"\r\nexpires: Thu, 05 Mar 2026 05:04:44 GMT\r\nlast-modified: Fri, 16 Jan 2026 06:57:23 GMT\r\nx-77-nzt: EwwBuUwJCgH3LQAAAAwBuUwKCQH3AAAAAAwBJRPCNAW1AAAAAA\r\nx-77-nzt-ray: e2f7542079450f322a0ea969016db007\r\nx-77-cache: HIT\r\nx-77-age: 45\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: stockholmSE\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":18052,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17979)","md5":"a4d5607cdbc76688d37ad6311610a058","sha1":"534adf5ac8c28e88b13d1549add0d84a57a52c61","sha256":"7c209ce50b76600257f47c0a47333504478e9c89793713cc7d113bbb688c3eda","sha512":"3ee08aedbe06d4a8181f362bcf9694d164f36309b70f048d42079989f139915e340515f56a6f84e3bb24d4e027cceee7c2c32a710f58ddbaaa5a5a662ccd3300","ssdeep":"384:wBWbE0rIcvqSI/aQ/UpIxN5BWbEgl/ET/xzy2A3wBV+:wAxka0/scT/xzy2A3wBV+","tlshash":"f682b6cc7691b16543ab61b4843f620ff1376929740d8821b965eae13c78d8ed037fb8","first_seen":"2026-01-16T11:03:53.240781Z","last_seen":"2026-03-30T18:15:12.01857Z","times_seen":4262,"resource_available":true,"data":null}},"time_used":110,"timings":{"blocked":50,"dns":2,"connect":8,"send":0,"wait":8,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"widget-v3.smartsuppcdn.com/manifest.json","fqdn":"widget-v3.smartsuppcdn.com","domain":"smartsuppcdn.com","tld":"com"},"ip":{"addr":"185.76.9.27","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:30.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1857279285.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:54:02 GMT","end":"Wed, 15 Apr 2026 06:54:01 GMT"},"fingerprint":{"sha1":"02:18:EB:88:15:84:86:93:22:4A:F0:99:0A:1A:DA:F8:ED:54:F0:09","sha256":"25:3A:01:58:46:1C:69:99:5F:71:B3:05:79:0C:92:FA:E6:AB:B4:80:5B:F1:06:58:1B:AF:DE:8E:96:30:BF:F8"}}},"request":{"raw":"GET /manifest.json HTTP/1.1\r\nHost: widget-v3.smartsuppcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:30 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\ncache-control: max-age=300, public, s-maxage=60\r\netag: W/\"69a543fc-7b0\"\r\nexpires: Mon, 02 Mar 2026 08:09:17 GMT\r\nlast-modified: Mon, 02 Mar 2026 08:02:04 GMT\r\nx-77-nzt: EwwBuUwJGwH3FwAAAAwBuUwKCQH3AAAAAAwBw7WvAgG3AAAAAA\r\nx-77-nzt-ray: fdb541231a2d203f2a0ea969d65e0129\r\nx-77-cache: HIT\r\nx-77-age: 23\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: stockholmSE\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":1968,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"28ee61d71d429e47c8cfbc01f8ffcea9","sha1":"42d5fd8d5dee0f75e30f24d7b996ce60aaf32121","sha256":"e705b4ee1f5ffe1bcaf198567bc2d83d370fc56a50c6181c86ed04ef68f6c1f1","sha512":"d6a25a596f05e6ef34374672b7f12995e03a0be9bc9e7dd0dcecf3bf50deb5e1c968aa2bbe36d8e597263995f70b51005f4c4a8d60cbfa90f8efe3444d91ae35","ssdeep":"","tlshash":"ea412493c4f80d531b9c662bb89449814d90c3c7e88a3d1d366d8a7f2f4ceb911e6b6d","first_seen":"2026-03-02T08:25:26.032575Z","last_seen":"2026-03-10T05:00:21.827354Z","times_seen":430,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":29,"dns":1,"connect":11,"send":0,"wait":9,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/places.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.746Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/places.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 60418\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:47:05 GMT\r\nexpires: Tue, 02 Mar 2027 17:47:05 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213265\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":341669,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1176)","md5":"7e7a0f1e9a2f6289778aa2adbd939d28","sha1":"06bc3d9588b2a90221da106d8e052df04c995166","sha256":"6672fa2f0c7efb937f266e4915e41cb8be54c2694311efd09ae918f84c0610b0","sha512":"cc4e2bd1a7e215ebe81c6bdd0235943ff51badd82b439fe4591a35ce28e92cd96569817480cb2086359e46afd42225f6f20f8cc8fbfd6fff67f10b9f25705c79","ssdeep":"6144:rmYnqcB2qMpGTRDVSz39Qx3ZM0UmPbEmDU+9kWvrnAqeXJxcJX3dStOvDY1eLZcT:rmYnqcUySpQo+zvrnAqeZ6uAMHkwS2nb","tlshash":"bb745b57a69136296a63c4a05b0a6601e338d40bd0156bed7c2cdf925ffbf81837732b","first_seen":"2026-03-02T17:59:05.767741Z","last_seen":"2026-03-11T17:01:15.909939Z","times_seen":3724,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/onion.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.748Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/onion.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 10051\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:46:29 GMT\r\nexpires: Tue, 02 Mar 2027 17:46:29 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213301\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30941,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1803)","md5":"009cf4ac98ea1d4ce56f4b7c5c22a4be","sha1":"106a3ba100b2714701ea2ba9db165d075fedc098","sha256":"6e1ffabe27e72411fa57c8b4c575abaf0bcc043077c85dc5dbde45ca8310c1e2","sha512":"b9a878a093632967c6fac6f45e02cebf71cbde8756c6bf303cf4cab061de0a608bae0a8c1993071c82f795b41138b221c90da8023d787903a251044a3200af4e","ssdeep":"768:wI1zPx+NhbJMzS+yasGQgchHVJ+qOrLlD0QIbhI/NFaOuBVCmxKG4YQhJ/OWpJ2A:w/R37++RSbgA","tlshash":"05d2a3987593719383f2b6a1817b110be66d68c1f448899d78fc8cd27bf458a21b5f3c","first_seen":"2026-03-02T17:59:05.751866Z","last_seen":"2026-03-11T17:01:15.912601Z","times_seen":3981,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/favicon.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:32.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/favicon.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:32 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 09 Mar 2025 09:57:28 GMT\r\netag: \"21d6-67cd6608-c89c248b5c5d105f;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 8662\r\ndate: Thu, 05 Mar 2026 05:01:32 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":8662,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 394 x 299, 8-bit/color RGBA, non-interlaced","md5":"c64e9da395bcae6785fb75b2ceca5847","sha1":"58b66259aa0f323356620f5810d18f2d32807bbd","sha256":"65ad14a6b70286e9a626ad180cdfdbba3cd9c1c4a7f3ff9b48069dab3f586477","sha512":"32ec94fa916cc88ce497f4d53e06c408bb4f24936890edadc153d5527ce5b548de35c6216e64d1346e72d797c2268eb143c47150eb7f962317c5d5c1f592cb24","ssdeep":"96:qu2THzYLQipJm76uoKo/s6L13hU1iyT+chawI6Qd/kckKh8at2L/HiZm50SB7B7u:q9Tk8ipJ+6xK6RBi+chTokiVr","tlshash":"5a02a5e5ff50a598b0385b65dded1d0d6c67008a49815f70f68d95162f13350d8e23be","first_seen":"2025-03-26T16:42:23.43369Z","last_seen":"2026-03-05T05:02:04.679033Z","times_seen":13,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/images/5ac7adcef15a77528c630261_White.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /images/5ac7adcef15a77528c630261_White.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/css/wellness-cms.webflow.5eb1ff288.css\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:14 GMT\r\netag: \"156-67cd65fa-849f1cda38f2e0ca;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 342\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":342,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1x70, components 3","md5":"f12eae765d0cb92bd91ca8517729fe4d","sha1":"495e244f7f0240f93c5ef5a99005b8284b91cae0","sha256":"da0e3571613bb906299e7c2660d794e4a11ad0f3bd0a58d626d6490cd2cfb177","sha512":"523e61dcc6350c7d464bcf4c115870da39cc1e42a79c8945e492cf3e949113c8368d3e676006393bfd72980935af64179ab87014147756d585f07bdbada0cbcb","ssdeep":"","tlshash":"cfe0a7c337437e52ece152b14224c3182749bb0d93072bda31677a14bcfc6e115401b1","first_seen":"2025-03-26T16:42:23.43288Z","last_seen":"2026-03-05T05:02:04.679822Z","times_seen":19,"resource_available":false,"data":null}},"time_used":2339,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2339,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/oswald/v57/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28488\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 17:21:40 GMT\r\nexpires: Wed, 03 Mar 2027 17:21:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 128389\r\nlast-modified: Wed, 10 Sep 2025 16:46:11 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28488,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28488, version 1.0","md5":"22c3b00d2e65fb2c876a292423108958","sha1":"3c61d84659817fef687045bbfa0e1da9568e164b","sha256":"bd73278ee0c50041b91b4c03d1229e35b501637f46b6409e7da2d3a758446ea5","sha512":"33954d8a7ed3c87b3af8577bbae9439b9efba2a64445463d893681dad085bb8630d31c995ce010510a9c732926017dba9d5fd5002d0000ec1488b61889d6ddfe","ssdeep":"384:jlzdJfoB5YJ2kG1CdQegm8m00xr19KB668/BOTqE85gyqvPA34uEomcGvpMwvg84:jlzdyBzhIb0u1QB6vBOv8uvPAovJCs4","tlshash":"cfd2e0195e9673efe4552d3ea830affe91e32aad30507162c5db6c1155c438bc8e4ec4","first_seen":"2025-09-11T19:05:43.498829Z","last_seen":"2026-04-04T15:23:37.465743Z","times_seen":18136,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":70,"dns":5,"connect":32,"send":0,"wait":73,"receive":2,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 43136\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 09:10:24 GMT\r\nexpires: Tue, 02 Mar 2027 09:10:24 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 18 Feb 2026 19:51:37 GMT\r\ncontent-type: font/woff2\r\nage: 244265\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43136,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43136, version 1.0","md5":"665db5e157d2138835c4037c971ff3a4","sha1":"41ca6b7e4818eb81531d8006ff7ddd971c640879","sha256":"1404ca348bd75ef836f4dd8b6f2cc719458642d1237c368296b2fc652dca47dc","sha512":"6c999466673c9873b1b112d6ab95c7cecb99467ea156e3e046b54c5f3d109c3845b05cbb2a0245d178430c7b2ceacd5110f7d8faf7e041100f44852b0c29fe9a","ssdeep":"768:tMTmVhyXCrekkraPAjrWMMWD3UJmw0FRwoglekm+hQ7//geceSF/mEQBPMAmDu5:cmHkCrHvPAjrWMMI3UJswogl4j7/hSlW","tlshash":"f9130231eb70ee59962c903454e7fda9433b1457d731aca80e99a1ce6f8103454facec","first_seen":"2026-02-19T22:27:43.350598Z","last_seen":"2026-04-04T15:50:23.17118Z","times_seen":62358,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.gstatic.com/maps-api-v3/embed/js/64/3a/init_embed.js","fqdn":"maps.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /maps-api-v3/embed/js/64/3a/init_embed.js HTTP/1.1\r\nHost: maps.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 81177\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 18:20:41 GMT\r\nexpires: Thu, 04 Mar 2027 18:20:41 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:30 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 38449\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":296208,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1842)","md5":"20816dc2d948968d6eedce81a43e4904","sha1":"8b0d6547cd434c73fd5f50d0df6ea98a5c95c8d7","sha256":"53fcb0fce7ae8d996a50eea07517780e706d86c17276fa19e0b7e6cf22d6e9ba","sha512":"0147772ed11401f434550fe462428cfe22772bfdd0422ee8369ea757cc2dd08eb49a0be6a7d71b856335447f73d4fefef12709dd169ef571e5da2efb87b07597","ssdeep":"6144:R3PDP3oM4MD0FTuLipHngBqHgFxTVRh8O:RdtLXT","tlshash":"83544c9c7662306a91b395f1002f114bb635ecaaf44c84b8f164e9e5ad74cb902b7f7c","first_seen":"2026-03-02T17:56:13.625761Z","last_seen":"2026-03-11T17:01:15.919078Z","times_seen":3637,"resource_available":true,"data":null}},"time_used":278,"timings":{"blocked":106,"dns":41,"connect":23,"send":0,"wait":22,"receive":42,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 47208\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 19:59:32 GMT\r\nexpires: Wed, 03 Mar 2027 19:59:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 118917\r\nlast-modified: Wed, 18 Feb 2026 19:52:51 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":47208,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 47208, version 1.0","md5":"2465bec3a1d5ad40ceb1828a07763d2f","sha1":"656fca193330ac8ec592a0942f4e7d718fa69cbf","sha256":"14f23757c6b41b4b6c0b967ca3fa74ff47a868728158373461c4e6e4b6368f19","sha512":"171195e97870d0794a5762cb3324c2994542a534f4e8ec490400f5667527c48c0c2814071fe9449f4d78169b2d35228466cfadea81229f6ebddf791dd3fb2099","ssdeep":"768:/FAcvRO+HWzD3hVYA6By+jNbKulKiuJ+YAnmWjKiXN0EoGlknbxWuFYCrJRSx89Z:33sD38k+jYulvuUHnmTq0bGlyFWuFYiV","tlshash":"6123f16ca80df34596fae4f76b11fcebf248bc9177c5ee10278c864d8575aa5cc28241","first_seen":"2026-02-19T22:36:20.820122Z","last_seen":"2026-04-04T15:55:41.720405Z","times_seen":3820,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":68,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/assets.website-files.com/5ac4f751b50fc9186ae6aeb1/5ad4c6f5fbca00494cd6df06_5a8f48d7e8e8640001de7eac_boton-cerrar.svg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /assets.website-files.com/5ac4f751b50fc9186ae6aeb1/5ad4c6f5fbca00494cd6df06_5a8f48d7e8e8640001de7eac_boton-cerrar.svg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\ncontent-length: 1238\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1238,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"0bde7d4b3da67537eaf9188e6f8049cf","sha1":"64300fc482d01d38b40ab20e15960b6509665e5a","sha256":"5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807","sha512":"2d4d27ab5b3dd2a701a944e9b5372b40ee4f8b3267f133be7ad0d4b42528302aaa002b6132722e2ad1fe629fc3e8baf1011c8dad326062e9c0946d6f1b6eafb4","ssdeep":"","tlshash":"8d21423ec1c1150a80271154fb81e2942619825192470fa1379e7167f6cc0f756937c8","first_seen":"2023-03-07T01:03:24Z","last_seen":"2026-04-04T14:46:04.498226Z","times_seen":39486,"resource_available":true,"data":null}},"time_used":815,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":813,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/assets.website-files.com/5ac4f751b50fc9186ae6aeb1/5ac64e0874d8bd69eb707eb0_Arrow_Left.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /assets.website-files.com/5ac4f751b50fc9186ae6aeb1/5ac64e0874d8bd69eb707eb0_Arrow_Left.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\ncontent-length: 1238\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1238,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"0bde7d4b3da67537eaf9188e6f8049cf","sha1":"64300fc482d01d38b40ab20e15960b6509665e5a","sha256":"5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807","sha512":"2d4d27ab5b3dd2a701a944e9b5372b40ee4f8b3267f133be7ad0d4b42528302aaa002b6132722e2ad1fe629fc3e8baf1011c8dad326062e9c0946d6f1b6eafb4","ssdeep":"","tlshash":"8d21423ec1c1150a80271154fb81e2942619825192470fa1379e7167f6cc0f756937c8","first_seen":"2023-03-07T01:03:24Z","last_seen":"2026-04-04T14:46:04.498226Z","times_seen":39486,"resource_available":true,"data":null}},"time_used":811,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":810,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/search.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.364Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/search.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 1115\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:46:24 GMT\r\nexpires: Tue, 02 Mar 2027 17:46:24 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213306\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2643,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (845)","md5":"671835c866df79bacf0f818594c779df","sha1":"291a08e91ef9108fbf5c93f89d286485c3896a3c","sha256":"5ece825cf13a89064aaf6ab28bcbdfabc1fb35d6cb78494a2772ace377ba9b97","sha512":"bf996c7d10805a7b7c66962511ae6b5a610f5ea530783b65fde34aa224d64e37a80e3e17c0c73d0666ac3c05e426dec5e19dfe491328a15c9c7f2fc96fd4ebbb","ssdeep":"","tlshash":"255176e33353f83b86bad27024aa0081d8645453a405854cfebcdddba8f5ea705bae71","first_seen":"2026-03-02T17:59:05.704977Z","last_seen":"2026-03-11T17:01:15.916108Z","times_seen":3637,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translations.smartsuppcdn.com/api/v1/widget/translations/lang/en/defaults","fqdn":"translations.smartsuppcdn.com","domain":"smartsuppcdn.com","tld":"com"},"ip":{"addr":"185.76.9.12","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:31.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1087630013.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 14 Jan 2026 06:53:02 GMT","end":"Tue, 14 Apr 2026 06:53:01 GMT"},"fingerprint":{"sha1":"7E:EF:00:8F:D6:2A:E3:14:6D:3F:6B:EC:B9:8F:1A:76:B8:61:A9:77","sha256":"B6:34:A4:A4:5B:9F:9C:14:2D:21:86:24:65:1A:DD:99:08:D7:4A:A5:CE:0D:88:31:29:C9:6F:A5:41:A5:2A:65"}}},"request":{"raw":"GET /api/v1/widget/translations/lang/en/defaults HTTP/1.1\r\nHost: translations.smartsuppcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://phonixtrade.ltd/\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\ncache-control: max-age=600\r\nx-response-time: 0ms\r\nx-version: c71f1ce9b1d8f235b087d509a18d375fa98ff99e\r\nx-77-nzt: EwwBuUwJCgH3vQAAAAwBuUwKEwH3BAAAAAwBw7WvFwG3AAAAAA\r\nx-77-nzt-ray: e2f75420d86ed2522b0ea969f410c033\r\nx-77-cache: HIT\r\nx-77-age: 189\r\nvary: Origin, Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: stockholmSE\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":7171,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5e15688e9d2d002a9ed39b75b69eaf60","sha1":"8334c28b880997b2a4391aafde10a4b7463dfabc","sha256":"b094c3b5945028f864269d3d5af31e88f984e7ee5119a61ac716801e948caab7","sha512":"87c5e8e52504edf16fd6f7669e17287c6d8eace783fcbd020158b273c01dd38e75088c20f4b204c12906d7944507b6a120403cf63ab2307361cf844b821f8c92","ssdeep":"192:Ccdft/hc4l6WKHSY8pZcqq+jT0UHAfoW/YmzW:CgF/hcbWbYKZcF+jhqoWQmK","tlshash":"fce1b64f9a144ea987c6438276cfb84675bc807352509d7afd8cc8b842697cda3e3b94","first_seen":"2026-03-04T14:01:17.972897Z","last_seen":"2026-04-01T05:39:45.260246Z","times_seen":1627,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":51,"dns":9,"connect":8,"send":0,"wait":16,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.143.131","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:32.453Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 910\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 10:30:29 GMT\r\nexpires: Wed, 03 Mar 2027 10:30:29 GMT\r\ncache-control: public, max-age=31536000\r\nage: 153063\r\nlast-modified: Thu, 02 Nov 2023 22:48:00 GMT\r\ncontent-type: image/png\r\nvary: Origin\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":910,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced","md5":"efa6bb2bfe459bc6f4bdafa3db0383f6","sha1":"52d15ce52fe50643e542c17812de43f4ed1b6ee0","sha256":"6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2","sha512":"e23c04d8997f5c2f92070e09261b7ee50d9df8753f45cf66f604f0874ffa8d99e947c97c528ec02a2c3fbe8e43d840b343a7d0225532980d5da95031216415b7","ssdeep":"","tlshash":"491184a73cd1dc6854a47a87aa91b864ec250f1b91a220981237b42277313444fdc8f7","first_seen":"2023-04-05T07:39:29Z","last_seen":"2026-04-04T15:49:11.829371Z","times_seen":40454,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/googlesanstext/v25/5aUu9-KzpRiLCAt4Unrc-xIKmCU5qEp2iw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:33.028Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/googlesanstext/v25/5aUu9-KzpRiLCAt4Unrc-xIKmCU5qEp2iw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22140\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 22:00:39 GMT\r\nexpires: Thu, 04 Mar 2027 22:00:39 GMT\r\ncache-control: public, max-age=31536000\r\nage: 25254\r\nlast-modified: Tue, 17 Feb 2026 17:32:19 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22140,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22140, version 1.0","md5":"aa4fe962088acec2ad7e93bb7d2338df","sha1":"148543b99d0b43a648962ceab5125dbba7d7ded9","sha256":"76bb772510b6c189f97315d7de2cdd0e669bc7a42a870d59a883831d235fd60f","sha512":"2bfff035f4e2991abf4dc8340a656e2acbc5612dfeed35392e1ab871c1a423cc28f8ee1934a59d8aba9c730cfd087346c3436c719f7860f07eaaa7127bd3e4b3","ssdeep":"384:pKv55X34hwPK1flApFufoE5YNvsktHR4JYuZssrfX35oOHMVeaZfzPvg2nZ:wvj34CPK1flApF8dOlh4ekseuOH2FzPJ","tlshash":"e7a2e10209c28564a7532cdd74f4fb3ac32e031615e6850bfb4a7a75eab501d43979de","first_seen":"2026-02-18T00:09:30.764497Z","last_seen":"2026-04-04T15:52:54.765549Z","times_seen":35896,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/favicon.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:32.169Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/favicon.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:32 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 09 Mar 2025 09:57:28 GMT\r\netag: \"21d6-67cd6608-c89c248b5c5d105f;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 8662\r\ndate: Thu, 05 Mar 2026 05:01:32 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":8662,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 394 x 299, 8-bit/color RGBA, non-interlaced","md5":"c64e9da395bcae6785fb75b2ceca5847","sha1":"58b66259aa0f323356620f5810d18f2d32807bbd","sha256":"65ad14a6b70286e9a626ad180cdfdbba3cd9c1c4a7f3ff9b48069dab3f586477","sha512":"32ec94fa916cc88ce497f4d53e06c408bb4f24936890edadc153d5527ce5b548de35c6216e64d1346e72d797c2268eb143c47150eb7f962317c5d5c1f592cb24","ssdeep":"96:qu2THzYLQipJm76uoKo/s6L13hU1iyT+chawI6Qd/kckKh8at2L/HiZm50SB7B7u:q9Tk8ipJ+6xK6RBi+chTokiVr","tlshash":"5a02a5e5ff50a598b0385b65dded1d0d6c67008a49815f70f68d95162f13350d8e23be","first_seen":"2025-03-26T16:42:23.43369Z","last_seen":"2026-03-05T05:02:04.679033Z","times_seen":13,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":218,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/assets.website-files.com/5ac4f751b50fc9186ae6aeb1/5ac64e08ac26cb4b34aa4cc5_Arrow_Right.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /assets.website-files.com/5ac4f751b50fc9186ae6aeb1/5ac64e08ac26cb4b34aa4cc5_Arrow_Right.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\ncontent-length: 1238\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1238,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"0bde7d4b3da67537eaf9188e6f8049cf","sha1":"64300fc482d01d38b40ab20e15960b6509665e5a","sha256":"5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807","sha512":"2d4d27ab5b3dd2a701a944e9b5372b40ee4f8b3267f133be7ad0d4b42528302aaa002b6132722e2ad1fe629fc3e8baf1011c8dad326062e9c0946d6f1b6eafb4","ssdeep":"","tlshash":"8d21423ec1c1150a80271154fb81e2942619825192470fa1379e7167f6cc0f756937c8","first_seen":"2023-03-07T01:03:24Z","last_seen":"2026-04-04T14:46:04.498226Z","times_seen":39486,"resource_available":true,"data":null}},"time_used":809,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":808,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/oil_and_gas.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.351Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/oil_and_gas.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:34 GMT\r\netag: \"20ec4-67cd660e-b666fc15b8dab195;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 134852\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":134852,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1110x739, components 3","md5":"fd957df3e899685102bdc3dc54cee311","sha1":"cd023b8d5b8f32faf6e84a15ba3d1966e62ad9af","sha256":"c594b9fd25a9305a6adba75ac9cf5ac2bfe0c4bf021642bbd3f347627a96db44","sha512":"b7521acfcccf2625cc3222ad720fc0e4ff388a952d393cda9c6385e7cd3483931234c26de5c8e758bcaa5a0674f69a59348cbf9f9c24fdaac9b356741962ecc9","ssdeep":"3072:egSVvNfogQdqrgrGDvaD9OTgIBMnQxfjclg5PPi6v:49NlWqrwGLa0U1nQ9AYni6v","tlshash":"4ed312f133ebecce6f160114aa8b9f1411279928bdc4da545bc247bdf062a19a44ff8d","first_seen":"2025-03-26T16:42:23.4048Z","last_seen":"2026-03-05T05:02:04.685246Z","times_seen":26,"resource_available":false,"data":null}},"time_used":1947,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1759,"receive":188,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/$rpc/google.internal.maps.mapsjs.v1.MapsJsInternalService/GetPlaceWidgetMetadata","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"POST /$rpc/google.internal.maps.mapsjs.v1.MapsJsInternalService/GetPlaceWidgetMetadata HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Goog-Api-Key: AIzaSyCmL18misQw9KdwqGaw3zHkitj8vG6QF2Y\r\nContent-Type: application/json+protobuf\r\nX-Goog-Gmp-Client-Signals: CAkqBzMuNjQuM2FaDhIMCKucpM0GEID1u4YB\r\nX-Goog-Maps-Session-Id: 4FBF2C2F-DF75-4126-970B-CAA76A261BF9\r\nX-User-Agent: grpc-web-javascript/0.1\r\nContent-Length: 44\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":44,"data":"[1,\"102999\",\"https://www.google.com\",null,1]"}},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/json+protobuf; charset=UTF-8\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 813\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://www.google.com\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length\r\nserver-timing: gfet4t7; dur=20\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1213,"size_decoded":0,"mime_type":"application/json+protobuf; charset=UTF-8","magic":"JSON text data","md5":"7ba1cdc9bf00afac22a7c0766b6cbb8f","sha1":"777fba0540fa6ca8ba56dac7773e272daa524d61","sha256":"82767238954761306b7d06199d78905f07bfe9d4604d8a48639c0abfce07114a","sha512":"19cc459f5ea9171840f433731c9e7416185fbea0de2b1da51ead2d640de0fb2e4739df9fe22f221dbcea574a36a58e11c8a1cfa147bf9c688d4abfd3a3ed3991","ssdeep":"","tlshash":"0121b714fc852e04ffe1cdccacfcbdd801b1684a21988bb5b6c46d07a0f4156d8687c4","first_seen":"2026-03-05T05:02:04.687543Z","last_seen":"2026-03-05T05:02:04.687543Z","times_seen":1,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"widget-v3.smartsuppcdn.com/assets/style-CNhvSpp0.css","fqdn":"widget-v3.smartsuppcdn.com","domain":"smartsuppcdn.com","tld":"com"},"ip":{"addr":"185.76.9.27","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:31.532Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1857279285.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:54:02 GMT","end":"Wed, 15 Apr 2026 06:54:01 GMT"},"fingerprint":{"sha1":"02:18:EB:88:15:84:86:93:22:4A:F0:99:0A:1A:DA:F8:ED:54:F0:09","sha256":"25:3A:01:58:46:1C:69:99:5F:71:B3:05:79:0C:92:FA:E6:AB:B4:80:5B:F1:06:58:1B:AF:DE:8E:96:30:BF:F8"}}},"request":{"raw":"GET /assets/style-CNhvSpp0.css HTTP/1.1\r\nHost: widget-v3.smartsuppcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\ncontent-type: text/css\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31536000, public, immutable\r\netag: W/\"6994310c-919a\"\r\nexpires: Wed, 17 Feb 2027 09:18:37 GMT\r\nlast-modified: Tue, 17 Feb 2026 09:12:44 GMT\r\nx-77-nzt: EwwBuUwJGwH3stsUAAwBuUwKEwH3DAAAAAwBWd59LgG3AAAAAA\r\nx-77-nzt-ray: fdb541231a2d203f2b0ea969b634f91f\r\nx-77-cache: HIT\r\nx-77-age: 1366962\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: stockholmSE\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":37274,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (37273)","md5":"0bf3fa4ae16e33ecf6bae9c7a91c24ef","sha1":"d4c8266daeb1f4b825d4db90f13765f82224b9bd","sha256":"05085b4c6bb66159589e884f0cfe7dc68c3e5953fd10d34941036a47809faeb0","sha512":"9b3769c86553af1f03838f99420120ae72f4284719508d29e96a425f968a885f8fc17f322861e575d209b55245481ad74b230576d7746d1f8ba3a3b950000c5c","ssdeep":"768:E8Ch4TcCWYtomXFDxrnSJPHs24vq+ggFgZ:E804TcCWYtdXjuPF4t2Z","tlshash":"d7f2975daad5093cec33c166e3f8e58c9229f5d1df321a9af6433a048ac27bf1987514","first_seen":"2026-02-17T09:27:34.886834Z","last_seen":"2026-03-10T05:00:21.922479Z","times_seen":1217,"resource_available":false,"data":null}},"time_used":145,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":141,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/main.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.361Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/main.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 84697\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 05 Mar 2026 04:14:39 GMT\r\nexpires: Fri, 05 Mar 2027 04:14:39 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 2811\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":298297,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (547)","md5":"41fa9071864cf1520463c3255dddd35d","sha1":"91c44b26be4cbfb4d4cb4a3ecec793fd52debdec","sha256":"45c8d07e0549c583d033a6efe28034d4cfa658f53c1b51987d8fe4a477e127a2","sha512":"fa0d87129cae81619fae9afbbff931e4714a9dfaaa352956683c513516a524001a4b62508f9874a7650c4b0d5eeed8716c47d989060f4defe372de00e9ae1d43","ssdeep":"6144:rJfqfOOuk2MxHg6owCbsehwabACj42mHs/vPTPq9vauG2K3fd1rqainRIqjUvQ43:rJfqfRuk2MxHg6owCbsehfUCj42mHs/F","tlshash":"2e542d9872a2746687b2e4e050370106f27e549af04c8eacb69ccde3bdf69464177f78","first_seen":"2026-03-02T17:59:05.749221Z","last_seen":"2026-03-11T17:01:15.929594Z","times_seen":4070,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/$rpc/google.internal.maps.mapsjs.v1.MapsJsInternalService/InitMapsJwt","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"POST /$rpc/google.internal.maps.mapsjs.v1.MapsJsInternalService/InitMapsJwt HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Goog-Api-Key: AIzaSyCmL18misQw9KdwqGaw3zHkitj8vG6QF2Y\r\nContent-Type: application/json+protobuf\r\nX-Goog-Gmp-Client-Signals: CAkqBzMuNjQuM2FaDhIMCKqcpM0GEICYkcID\r\nX-Goog-Maps-Session-Id: 4FBF2C2F-DF75-4126-970B-CAA76A261BF9\r\nX-User-Agent: grpc-web-javascript/0.1\r\nContent-Length: 26\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":26,"data":"[\"https://www.google.com\"]"}},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/json+protobuf; charset=UTF-8\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 45\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://www.google.com\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length\r\nserver-timing: gfet4t7; dur=11\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27,"size_decoded":0,"mime_type":"application/json+protobuf; charset=UTF-8","magic":"JSON text data","md5":"69a12b88c0f6d565d5327a1d2ffe94d2","sha1":"64ef3e254cc16fb78bbba3f14718eec3fe12c4d1","sha256":"639c31c04af07184b3c34b224b1379f1de6fea8f9e96397e83946cd369a48d9b","sha512":"395b328d477d285be1640030bbeabfdba160b9129d6109e9e6a2a70119a59a6b72227b0e03620cbf3b074efd61d8386d3b37ed493cc4dfaf702d992d5f057035","ssdeep":"","tlshash":"f680000008c8c8a080228008f0008c8abe0c3a02bee202038a8200020080020000800b","first_seen":"2026-03-04T16:02:08.354092Z","last_seen":"2026-03-05T16:54:15.562495Z","times_seen":254,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 43136\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 09:10:24 GMT\r\nexpires: Tue, 02 Mar 2027 09:10:24 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 18 Feb 2026 19:51:37 GMT\r\ncontent-type: font/woff2\r\nage: 244265\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43136,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43136, version 1.0","md5":"665db5e157d2138835c4037c971ff3a4","sha1":"41ca6b7e4818eb81531d8006ff7ddd971c640879","sha256":"1404ca348bd75ef836f4dd8b6f2cc719458642d1237c368296b2fc652dca47dc","sha512":"6c999466673c9873b1b112d6ab95c7cecb99467ea156e3e046b54c5f3d109c3845b05cbb2a0245d178430c7b2ceacd5110f7d8faf7e041100f44852b0c29fe9a","ssdeep":"768:tMTmVhyXCrekkraPAjrWMMWD3UJmw0FRwoglekm+hQ7//geceSF/mEQBPMAmDu5:cmHkCrHvPAjrWMMI3UJswogl4j7/hSlW","tlshash":"f9130231eb70ee59962c903454e7fda9433b1457d731aca80e99a1ce6f8103454facec","first_seen":"2026-02-19T22:27:43.350598Z","last_seen":"2026-04-04T15:50:23.17118Z","times_seen":62358,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.674Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 43136\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 09:10:24 GMT\r\nexpires: Tue, 02 Mar 2027 09:10:24 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 18 Feb 2026 19:51:37 GMT\r\ncontent-type: font/woff2\r\nage: 244265\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43136,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43136, version 1.0","md5":"665db5e157d2138835c4037c971ff3a4","sha1":"41ca6b7e4818eb81531d8006ff7ddd971c640879","sha256":"1404ca348bd75ef836f4dd8b6f2cc719458642d1237c368296b2fc652dca47dc","sha512":"6c999466673c9873b1b112d6ab95c7cecb99467ea156e3e046b54c5f3d109c3845b05cbb2a0245d178430c7b2ceacd5110f7d8faf7e041100f44852b0c29fe9a","ssdeep":"768:tMTmVhyXCrekkraPAjrWMMWD3UJmw0FRwoglekm+hQ7//geceSF/mEQBPMAmDu5:cmHkCrHvPAjrWMMI3UJswogl4j7/hSlW","tlshash":"f9130231eb70ee59962c903454e7fda9433b1457d731aca80e99a1ce6f8103454facec","first_seen":"2026-02-19T22:27:43.350598Z","last_seen":"2026-04-04T15:50:23.17118Z","times_seen":62358,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/roboto/v51/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 47208\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 03 Mar 2026 19:59:32 GMT\r\nexpires: Wed, 03 Mar 2027 19:59:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 118917\r\nlast-modified: Wed, 18 Feb 2026 19:52:51 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":47208,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 47208, version 1.0","md5":"2465bec3a1d5ad40ceb1828a07763d2f","sha1":"656fca193330ac8ec592a0942f4e7d718fa69cbf","sha256":"14f23757c6b41b4b6c0b967ca3fa74ff47a868728158373461c4e6e4b6368f19","sha512":"171195e97870d0794a5762cb3324c2994542a534f4e8ec490400f5667527c48c0c2814071fe9449f4d78169b2d35228466cfadea81229f6ebddf791dd3fb2099","ssdeep":"768:/FAcvRO+HWzD3hVYA6By+jNbKulKiuJ+YAnmWjKiXN0EoGlknbxWuFYCrJRSx89Z:33sD38k+jYulvuUHnmTq0bGlyFWuFYiV","tlshash":"6123f16ca80df34596fae4f76b11fcebf248bc9177c5ee10278c864d8575aa5cc28241","first_seen":"2026-02-19T22:36:20.820122Z","last_seen":"2026-04-04T15:55:41.720405Z","times_seen":3820,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:32.431Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ncontent-length: 3340\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 10:50:11 GMT\r\nexpires: Thu, 04 Mar 2027 10:50:11 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 20 Apr 2022 14:24:23 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nage: 65481\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6225,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2bd5c073a88b83ed74db88282a56ddfb","sha1":"d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650","sha256":"ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09","sha512":"5c6c4a92e93fc0f6a675658cc84f6187fdebd3eee94efd07e24658736cba598f3bc7156b19834b13fb44c1d43fcb7df9fcca7f0a453037e30da76ba8f4b23b89","ssdeep":"96:+R2K3Z4n7tyVwip82hezk6227gLFoXhu1XuE20ot+pVY3YptWDzOzgXK3Zx:ql3KnxyGGMzb7noR20NTww33","tlshash":"c1d1e6f19309d815cd6a83d8cd9b8002aa1f25ddd50ac6cc7639fb3bd1a50eb1d2d7a4","first_seen":"2023-04-06T21:34:37Z","last_seen":"2026-04-04T15:49:11.821692Z","times_seen":57745,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/whats.css","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /whats.css HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 09 Mar 2025 09:56:56 GMT\r\netag: \"86a-67cd65e8-4647b91a4db358f9;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 707\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2154,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"1352eb2988054b24d79ae8b2826784f2","sha1":"9b40b06d95ec182a96b013dfde0c31442effacde","sha256":"9bd6187b5de3ef7105d1d22980954b57ba8fc1fe7628c8a45f40a339e252e973","sha512":"8620e7141e78c37cfa84a89dcc0e2f0b2c928349e08e1127caf87c22d7ec1a3889e56590104abdb609fe99552e5e00a25b8edb2f7fd1dac0ffd9e744a47b9f42","ssdeep":"","tlshash":"9e4101a5eb449089633762d67b765f108e7404b5eb1304edfaee2ac8974412c53236dc","first_seen":"2025-10-02T03:47:01.022363Z","last_seen":"2026-03-05T05:02:04.692436Z","times_seen":4,"resource_available":false,"data":null}},"time_used":398,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":398,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/js/webflow.069902445.js","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /js/webflow.069902445.js HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 09 Mar 2025 09:57:56 GMT\r\netag: \"9c66b-67cd6624-c8f900abee8b1b82;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 80213\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":640619,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (51522)","md5":"f630ead94c1304c4ab1588f890b3001a","sha1":"163720d9202dd790cbc946a759b47c6a94e930ee","sha256":"f65c212c93fe7c5029da1b067323bfdca6a7b952bbc19da6636345883d69b2c5","sha512":"a559abbc3b0ee5a01974cd7807f7273a89ba072b029dbd72fcf2624d5d3a8de67d196ac61a897fa5750ab649c33ad4a658d653aec1423e69682695ab3088a4db","ssdeep":"6144:cHEeFzyRX/ifIYr+R96TSGKrkMzqXCJSk14Qy:cHEeFoifIYrowTjKAMzqSJU","tlshash":"2dd49420f5b725775187f664beb24b86673052c81342991c4c8dedbc6a3e8748326efe","first_seen":"2023-07-19T19:32:37Z","last_seen":"2026-04-04T05:07:16.991123Z","times_seen":47,"resource_available":true,"data":null}},"time_used":1050,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":586,"receive":464,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Oswald:200,300,400,500,600,700%7CRoboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic%7CLora:regular,italic,700,700italic%7CNoto+Serif:regular,italic","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.218Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /css?family=Oswald:200,300,400,500,600,700%7CRoboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic%7CLora:regular,italic,700,700italic%7CNoto+Serif:regular,italic HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 05 Mar 2026 05:01:29 GMT\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\ncache-control: private, max-age=86400, stale-while-revalidate=604800\r\nlast-modified: Thu, 05 Mar 2026 05:01:29 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":100686,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"d6ddea30e625d0b4c9e70c8b033e7341","sha1":"9a77d9d2d67151ff03ff88f130455374a53abeb8","sha256":"817e1a7b3ce1662d235405e90f2b94057d2506a6eeda9b21ebdf6752639301e5","sha512":"ce993106bd21e89145137e39bca9a7ae4ddedea6fd1e7185d22abf039f5b734b3ba050fcddec4a97dc9dd966688b3e0540e75342e70b119ba435a214c8c02a56","ssdeep":"768:Ihz4Lw2PRbHq5FcEJDcsrlj7b9pFdF9FAFNFgBFUKF7FnFwJpK5g9UEf7h4YXogR:IVuPIPdE9YIWHHIHTxj","tlshash":"02a35fa1041b9440ab831ce233ce7e35ee4f92547140d075abfd9b6bedeada2527835c","first_seen":"2026-02-25T05:08:47.660167Z","last_seen":"2026-04-04T05:07:16.887757Z","times_seen":7,"resource_available":false,"data":null}},"time_used":210,"timings":{"blocked":93,"dns":2,"connect":10,"send":0,"wait":24,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/notoserif/v33/ga6saw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_FXP0RgnaOg9MYBNLg_cIrqs.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.142.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/notoserif/v33/ga6saw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_FXP0RgnaOg9MYBNLg_cIrqs.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 15664\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 05 Mar 2026 00:25:01 GMT\r\nexpires: Fri, 05 Mar 2027 00:25:01 GMT\r\ncache-control: public, max-age=31536000\r\nage: 16588\r\nlast-modified: Fri, 05 Sep 2025 21:50:32 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15664,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 15664, version 1.0","md5":"882c6b9ae38ee92dd665b1af3199d645","sha1":"8684cd170b1633fb7123bb1ca0d11ff3d5645a64","sha256":"a7386f772de25b62a3a449fa5d9f3e09916b65cf6a6dfc52f5a103c276fee157","sha512":"432626d109ec4043a17411c30c621be10b7a2f9aeab8845d4ef4840e9c2bbbc5f1a62674cade5eb4e66535c9fcd7e7a2a7f79c7a38564344269c5ddbf6628732","ssdeep":"384:+zhhI5rMXF0X3cLZTvKAeziYIXPm4i/JJ:6TIuXy813eCfm9/JJ","tlshash":"b562c09438e2aeac10a150f6fc7bf64d5003c632ca39457cb5a8c506bb65e0cec6623e","first_seen":"2025-03-12T14:07:47.874242Z","last_seen":"2026-04-04T05:07:16.97627Z","times_seen":350,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":71,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/search_impl.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:30.749Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/search_impl.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 1322\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:46:30 GMT\r\nexpires: Tue, 02 Mar 2027 17:46:30 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213300\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3586,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (565)","md5":"e9ed7857cafe194e072d57fee8f3cf49","sha1":"f64efd0316da79158a9881bf9224350139e08710","sha256":"1a302685f8beafd2ff31e1f484d5e98db978c6390a4682845d951d2b81e180d1","sha512":"839204b45f649d1c768ae445231d42bf9d13c805bdcf539cbe97783d69a9346b990903b467a47eefe79de610ab759b52c15ae09b4ab9e3a3e2ef2fd7ce5247a0","ssdeep":"","tlshash":"d37161b461153583026900e05de98208211cd6ceb60ec8f6bfa8af029efddd793f1af4","first_seen":"2026-03-02T17:59:05.715854Z","last_seen":"2026-03-11T17:01:15.916571Z","times_seen":3363,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Google+Sans+Text:400\u0026text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93\u0026lang=en","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /css?family=Google+Sans+Text:400\u0026text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93\u0026lang=en HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 05 Mar 2026 05:01:31 GMT\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\ncache-control: private, max-age=86400, stale-while-revalidate=604800\r\nlast-modified: Thu, 05 Mar 2026 04:07:12 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":237,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"4dfc0d26d0b09a6c8c7722cfc40e0de8","sha1":"79b3d937e5177c26419b2a86a10d235a33392141","sha256":"aca7b17e3ce5a18ceb308ce41418c5ecd6734b97441ffdf2b55febe2d1d2ff39","sha512":"8e6d4d5042d7d6f4b407b7d09b5ee73d49867f0a542ed933b43c6191fa866a8f58f7611d41bc8bb7422caa84cd8ab0977fbb9d4e0e19f54404a5af1ee08b259f","ssdeep":"","tlshash":"89d097262aa1b64a12201c87734e3c3a5c4c0014310242b86aaf0c848ce44a842907bd","first_seen":"2026-02-18T00:07:43.582527Z","last_seen":"2026-04-04T15:53:26.270916Z","times_seen":18177,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":47,"dns":0,"connect":0,"send":0,"wait":21,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/controls.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.404Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/controls.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 26620\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 04 Mar 2026 22:47:16 GMT\r\nexpires: Thu, 04 Mar 2027 22:47:16 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 22455\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":103002,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1782)","md5":"c9975759a3d84e62df43917eae9213cd","sha1":"3dd78c2221ecd3b050dc2b73cdc01cb6dc426d9c","sha256":"2ed381214f5273a77cc76608bd0d44f6c09a839663fb343ed9cce7303b5fb10a","sha512":"c460243ad0b1e3f5ad4de4880e6f6098792701fb88924c39fa4b1c862b39d61719134505d3a8857c204e106bb57fee35c0e0067a5fa50513231ebb4bddf1aeb7","ssdeep":"3072:cIyZE6hmGmVERay1WIT7CugO1LTqd/qcm+uf//lNmps2V0EU0bODvFvvNXaYXIwI:PyGfyRay1WIT7CugO1LT2/qcm+uf/dNc","tlshash":"b7a3d6b0322a2237cdf5c5cda12b56056168d15df20246ae3dbcdce766edc8722ba734","first_seen":"2026-03-02T17:59:05.719672Z","last_seen":"2026-03-11T17:06:33.568917Z","times_seen":3272,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":9,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"places.googleapis.com/$rpc/google.maps.places.v1.Places/GetPlace","fqdn":"places.googleapis.com","domain":"places.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.798Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"POST /$rpc/google.maps.places.v1.Places/GetPlace HTTP/1.1\r\nHost: places.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: Bearer eyJhbGciOiJSUzI1NiIsImtpZCI6IjU4YTZjMzQ4MDFhYTdmZWU1YThiNzAwNTJhMmExZTI1ZjhkMjVjMzEiLCJ0eXAiOiJKV1QifQ.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.L1DnFzXro8T0OYQhUd4_X7TFSVQQKO2SslZZTY0AOywEJRJ0YZ84Zo-Z7OQlGlFbmLP65uOpzlKZ56VACoFA7oFX61WiZM4eQZRNAegX5w5cdfuxkwxrQ-xXyhGuEk9mRSqTn7xFSrxAmPBbYUAjpBWrsQbIafQFcz7-uloJJ6VR7QChWAaguIwHmWkowmoUa9n-wKGXlbCTLVJYYHnLxn6GHgZ-Www9tA87Is-c9mQ-zX8UxyuIjJ5gUc50noLvjiPB-GqCXVsWlQbg19Ry9V9nF5p6EN9Gsr6rkMCe95CeWE9TpX_yxjXfNpr3FgmJmkLB4mNM4seszyR79FVRCA\r\nX-Goog-FieldMask: location,viewport,business_status,regular_opening_hours,utc_offset_minutes,accessibility_options,display_name,formatted_address,google_maps_links,google_maps_uri,price_level,price_range,primary_type_display_name,rating,user_rating_count,photos\r\nX-Goog-Api-Key: \r\nContent-Type: application/json+protobuf\r\nX-Goog-Maps-API-Salt: op-places-js\r\nX-Goog-Gmp-Client-Signals: CAkqBzMuNjQuM2FaDhIMCKucpM0GEIDn9uMB\r\nX-Goog-Maps-Session-Id: 4FBF2C2F-DF75-4126-970B-CAA76A261BF9\r\nX-User-Agent: grpc-web-javascript/0.1\r\nContent-Length: 48\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":48,"data":"[\"places/ChIJp2OnqppYwokR-UztD_YLm14\",\"en\",\"US\"]"}},"response":{"raw":"HTTP/2 200 OK\r\nvary: *, origin, referer, x-origin\r\ncontent-type: application/json+protobuf; charset=UTF-8\r\ncontent-encoding: gzip\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 1013\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://www.google.com\r\ntiming-allow-origin: https://www.google.com\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: vary,content-encoding,date,server,content-length,vary,vary,vary, Server-Timing\r\nserver-timing: gfet4t7; dur=45\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2113,"size_decoded":0,"mime_type":"application/json+protobuf; charset=UTF-8","magic":"JSON text data","md5":"140dbcddedfa91b624ef6ccb6c6cf072","sha1":"11c89104b683fc1add124be7017cce7f07e1903c","sha256":"e1a7b81bf8bce1c09f81e0d7231951c95405267a8bcaa447425746e138c80270","sha512":"199ff3338bd7e02db0604d13ccbb683db05dc6c2528ea778845b4c1db2bde327e1d11148b09cb092137fbefe88ff02c57d7768e56e7be2b2375c6ddf6401a62f","ssdeep":"","tlshash":"c241008354044df2df0887e8953929983b7d2037da8aeb75a0d86cd68c61de7962178d","first_seen":"2026-03-05T05:02:04.701994Z","last_seen":"2026-03-05T05:02:04.701994Z","times_seen":1,"resource_available":false,"data":null}},"time_used":60,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":59,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/element/log?format=json\u0026hasfast=true\u0026authuser=0","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:42.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"POST /element/log?format=json\u0026hasfast=true\u0026authuser=0 HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://phonixtrade.ltd/\r\nX-Goog-AuthUser: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1169\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1169,"data":"[[1,null,null,null,null,null,null,null,null,null,[null,null,null,null,null,null,\"TE_20260303\",null,null,[4,0]]],1871,[[1772686892433,null,null,null,null,null,null,\"[null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,\\\"no\\\",null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,[1,\\\"te\\\",\\\"76ACB90F-4C0B-40FB-9495-CBBF923D4448\\\",[\\\"https://phonixtrade.ltd\\\",null,[\\\"\\\",[],[],null,null,[\\\"navigation\\\",\\\"h2\\\",[],[],[],[null,108000000],[null,110000000],[null,336000000],[null,336000000],[null,778000000],[null,551000000],null,[1,208000000],[1,209000000],10846,10178,51372]],[\\\"translate:page_load_to_initialized\\\",[1,209000000],[4,153000000],null,[]]]]]\",null,null,1,null,null,null,0,null,null,null,null,null,1]],1772686902435]"}},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: https://phonixtrade.ltd\r\ncross-origin-resource-policy: cross-origin\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-Playlog-Web\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-encoding: gzip\r\ndate: Thu, 05 Mar 2026 05:01:42 GMT\r\nserver: Playlog\r\ncontent-length: 131\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":131,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"JSON text data","md5":"ca0b7e866005f6774d284b9f438ebfd2","sha1":"53644f5ee3640189bdb223473ba6a2d46606c556","sha256":"502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358","sha512":"939c4526c623db033ad40bfdc6c8848a1dcd0ca797f17fbbd89fbec1b49dededc16e89084b3759e62fa0ffc8fe896980b10a1ff8daee22736a70b08f1ee13e2f","ssdeep":"","tlshash":"58c08c50330469e1080e82c8c0026858228c903b46708cf10bbd68125d3234a1004854","first_seen":"2023-04-05T03:14:56Z","last_seen":"2026-04-04T15:49:50.655266Z","times_seen":478997,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/js/webfont.js","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /js/webfont.js HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 09 Mar 2025 09:57:56 GMT\r\netag: \"3384-67cd6624-cea2246275d21c05;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 5106\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":13188,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2134)","md5":"7c96a5f11d9741541d5e3c42ff6380d7","sha1":"d3fa2564c021cf730e58ffddb138cf6b57ed126e","sha256":"81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee","sha512":"23c162a2e268951729b580e5035ad6ca9969cfcc5ce58a220817b912e76b38be6c29c3ca7680cb4e8198863d95a72ea65bd06ff7189b5c8475e4c1ce501aeab1","ssdeep":"384:i11kqRm4UjryX2DfatZrT80NCGz5r2zItrX:iEqRm4cy338m7d","tlshash":"7942c65d7652b26a825280f2177f060b9576fa2ab844c0bc7a89d8d46c74db8037ff7c","first_seen":"2023-03-07T01:03:17Z","last_seen":"2026-04-04T15:46:31.625571Z","times_seen":48401,"resource_available":true,"data":null}},"time_used":410,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":410,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.google.com/translate_a/element.js?cb=googleTranslateElementInit","fqdn":"translate.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.143.142","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.693Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:36:38 GMT","end":"Mon, 27 Apr 2026 08:36:37 GMT"},"fingerprint":{"sha1":"72:34:3C:CB:18:C1:2B:09:8C:14:7C:8A:5E:F9:36:8E:AC:A5:39:BF","sha256":"B3:D4:27:15:99:07:11:68:02:2E:99:B1:A2:49:72:AA:3C:7A:B5:AA:E0:E1:F2:BF:0B:6D:81:F2:F6:81:3E:09"}}},"request":{"raw":"GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1\r\nHost: translate.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":82405,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2068)","md5":"bab57e9eacd645c44e43ea0b31282d12","sha1":"08b12a252a4834b96f86bfa7f8ffd4f21b68738e","sha256":"a85b20f6b9982c663fed259622342021a0bff4d1370e1d47abd085432be5e7a0","sha512":"87cd13b2bb8ed61570c3279298d8c9454eaa4d91bd326c4cf3b4ad6c8b54642040ea50053508e90e3d724540d94044188d1c4757e23fefe4ce0a037086be19fb","ssdeep":"1536:XrZ25Pjg9rw8mh8K0/0uUd+v+CLKBV2dwQ66zCduigi+iuwNWSb:XU5nh8K0/D+CLKBkGJ+i1b","tlshash":"e283b78cb6a674618267f5b5413f000fb23f599df8084cacb288d8e2adb5948417bf7d","first_seen":"2026-03-05T05:00:45.728206Z","last_seen":"2026-03-05T05:03:04.809347Z","times_seen":6,"resource_available":true,"data":null}},"time_used":586,"timings":{"blocked":275,"dns":8,"connect":10,"send":0,"wait":28,"receive":0,"ssl":244},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/logo.png","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:28.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/logo.png HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:28 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 31 Mar 2025 09:37:58 GMT\r\netag: \"bae9-67ea6276-e05ad83c74980c89;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 47849\r\ndate: Thu, 05 Mar 2026 05:01:28 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":47849,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2048x286, components 3","md5":"b82dc3b74155c91e9b0ec7035294ab66","sha1":"0b59ea78af791a67e8dab43eb652bb11e4a8052a","sha256":"8ede6bb96f251df371313ef3b88a814aad25d8d2706f4a4101e948a3c52307c1","sha512":"ab6bb04b944de2d36a96ae6af80ffc1eaba1ec41acd55d2e25133ad882b2f111b5a06512a853ac8e3375037e055d96ba70e8fcd64738e51bc75af6f7e016947b","ssdeep":"768:Ty407lwsHXcHJ69lenVl/bblScHt8g8NofjLXp2EpyZ+F2sBdfo81ra2idtT6:TyLe0EVl/Pgcfh22yAvoMjidQ","tlshash":"af239c76f7c3f7400b532a9ca07d3db30b9806d5a2c16d230a632d22b5a4f3a959717e","first_seen":"2026-03-05T05:02:04.705114Z","last_seen":"2026-03-05T05:02:04.705114Z","times_seen":1,"resource_available":false,"data":null}},"time_used":813,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":603,"receive":210,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/$rpc/google.internal.maps.mapsjs.v1.MapsJsInternalService/GetPlaceWidgetMetadata","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.322Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"OPTIONS /$rpc/google.internal.maps.mapsjs.v1.MapsJsInternalService/GetPlaceWidgetMetadata HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,x-goog-api-key,x-goog-gmp-client-signals,x-goog-maps-session-id,x-user-agent\r\nReferer: https://www.google.com/\r\nOrigin: https://www.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\naccess-control-allow-origin: https://www.google.com\r\nvary: origin, referer, x-origin\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT\r\naccess-control-allow-headers: content-type,x-goog-api-key,x-goog-gmp-client-signals,x-goog-maps-session-id,x-user-agent\r\naccess-control-max-age: 3600\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\ncontent-type: text/html\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=10\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":22,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/3a/places_impl.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d8436.146411215903!2d-73.9691685184291!3d40.781649005836485!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x89c2589aaaa763a7%3A0x5e9b0bf60fed4cf9!2s225%20Central%20Park%20West%2C%20New%20York%2C%20NY%2010024!5e1!3m2!1sen!2sus!4v1612426792309!5m2!1sen!2sus","date":"2026-03-05T05:01:31.410Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/3a/places_impl.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.google.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 14025\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Mar 2026 17:48:30 GMT\r\nexpires: Tue, 02 Mar 2027 17:48:30 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 01 Mar 2026 08:38:08 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 213181\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":52464,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (7938)","md5":"9167be4a2a893410b252d674c5df8865","sha1":"0f2d4d7ce0390065323fe6a726c5d6f9482e0c05","sha256":"1c718d36325da3101d99fd154de68c25b6e12263ac9ce2f184219742c9894dd3","sha512":"b5c194355d85376c10b2523ed9bfba7eacf228247aeaf9e19ccc9d716120f784af44cd3df75a07592734f5cd0664bf9a26774b6967a217f4bd2b0eb08dd9fa7d","ssdeep":"768:/k36NdlYfQwxNOXBHIuzutRYQPu/V3TP5u/R6FSvqXU7iQh5u/r6N/3M/SaAmDDt:8KKYQPuRzuq/1WBtZhWmBUxMV6","tlshash":"3c336e8431a3b0da477168d5c477024bf369adc0f89e8a98f9ae49617af0c8781f17f4","first_seen":"2026-03-02T17:59:05.742563Z","last_seen":"2026-03-11T17:06:33.56722Z","times_seen":2466,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phonixtrade.ltd/img/nfp.jpg","fqdn":"phonixtrade.ltd","domain":"phonixtrade.ltd","tld":"ltd"},"ip":{"addr":"198.251.81.49","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:29.349Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.phonixtrade.ltd","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 10:40:27 GMT","end":"Tue, 02 Jun 2026 10:40:26 GMT"},"fingerprint":{"sha1":"3C:75:B5:79:7E:B0:5F:DD:D5:15:E9:98:B5:50:2D:F3:DA:6F:88:8D","sha256":"F4:9E:6F:6C:D1:77:C4:A8:CC:F2:E3:4F:5F:1D:6E:C6:80:8A:15:36:85:F3:40:0C:58:BD:D2:07:28:02:80:6B"}}},"request":{"raw":"GET /img/nfp.jpg HTTP/1.1\r\nHost: phonixtrade.ltd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://phonixtrade.ltd/\r\nCookie: PHPSESSID=092816e902447dbab7abf03893bdc117\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Thu, 12 Mar 2026 05:01:29 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 09 Mar 2025 09:57:34 GMT\r\netag: \"1a7fb4-67cd660e-899ea91f3861b99a;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 1736628\r\ndate: Thu, 05 Mar 2026 05:01:29 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1736628,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1333, components 3","md5":"8c02e189d7117aa359e600feed2baf81","sha1":"d3e92f83dc7cfc816c728a6abcffdb2cec8a25b4","sha256":"549c0a8a9a1fffe92938c8fe3d6ceb5dbc22d4dad7101f508afffbd472ac7c6d","sha512":"62e3062d746a0c755074ed3b643b24b3744e14b8209c5b1df319b6eea207c78e34b42bdb22f3d7dc50f02bbeced7a1fa266e8b2b632fcee160304937f90de6e9","ssdeep":"24576:e8/NLoDvLoZZyfRDFpfdCoTdsuKTRnocu:3oDvGyfRnf4oitTW","tlshash":"77253380109b75763a875dce06755b1f2b6b46eb0e42a904322fee4a979d0f40748fdf","first_seen":"2025-10-02T03:47:01.038239Z","last_seen":"2026-03-05T05:02:04.707209Z","times_seen":23,"resource_available":false,"data":null}},"time_used":2341,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1747,"receive":594,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"phonixtrade.ltd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"widget-v3.smartsuppcdn.com/assets/main-c5ThC_K-.js","fqdn":"widget-v3.smartsuppcdn.com","domain":"smartsuppcdn.com","tld":"com"},"ip":{"addr":"185.76.9.27","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://phonixtrade.ltd/","date":"2026-03-05T05:01:31.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1857279285.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:54:02 GMT","end":"Wed, 15 Apr 2026 06:54:01 GMT"},"fingerprint":{"sha1":"02:18:EB:88:15:84:86:93:22:4A:F0:99:0A:1A:DA:F8:ED:54:F0:09","sha256":"25:3A:01:58:46:1C:69:99:5F:71:B3:05:79:0C:92:FA:E6:AB:B4:80:5B:F1:06:58:1B:AF:DE:8E:96:30:BF:F8"}}},"request":{"raw":"GET /assets/main-c5ThC_K-.js HTTP/1.1\r\nHost: widget-v3.smartsuppcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://phonixtrade.ltd\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 05:01:31 GMT\r\ncontent-type: application/javascript\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31536000, public, immutable\r\netag: W/\"69a543fc-453a9\"\r\nexpires: Tue, 02 Mar 2027 08:04:17 GMT\r\nlast-modified: Mon, 02 Mar 2026 08:02:04 GMT\r\nx-77-nzt: EwwBuUwJGwH3kckDAAwBuUwKCQH3GQAAAAwBw7WvBgG3AAAAAA\r\nx-77-nzt-ray: fdb541231a2d203f2b0ea9697195ad1f\r\nx-77-cache: HIT\r\nx-77-age: 248209\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: stockholmSE\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":283561,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (28071)","md5":"fcd469aa001be1dfd30d0962c705391c","sha1":"87b8c021a1232a7ba7cd2d482113782215313b9f","sha256":"df06e0821c7c9aaa47dc040afcefc59ff8743c8beec02bed3ce656cfa9163020","sha512":"1c344e4bea46a7c81544ced75a2c75c38aa64ad7ddf395c1a0beb293373d339fbb4aea0b0b13864028be791060a40eb12d557d01c7e13169264712b416f91304","ssdeep":"6144:AsJU8SN+jtxjR/ZgQub5/rLmPh+WVcq9kNp:AwU8SN1b5/rL+HV3up","tlshash":"5e544ad47295b43443a700e5507f2006b23e5c29a809c068f6adddf67db99c9a2b7fbc","first_seen":"2026-03-02T08:25:26.037318Z","last_seen":"2026-03-10T05:00:21.849653Z","times_seen":431,"resource_available":true,"data":null}},"time_used":147,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":145,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}