{"report_id":"02891792-fc86-4560-8f8d-7e609074dc92","version":6,"status":"done","tags":[],"date":"2026-03-05T13:50:05Z","url":{"schema":"http","addr":"poringa.live","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"103.224.182.215","port":0,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"title":"poringa.live","dom":{"size":12992,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (12832)","md5":"7b314b30ed039bdcbd786bf6b503bdb8","sha1":"9eeb547d3cb1e68ba8f1422e74d7d3fb93a28c88","sha256":"ef09cdde491a8e9a8ec96375eb2a46baebf2c42993adade3be823e561c6972c4","sha512":"bd38a9e9f8f9c03136cc244efd50f0e9571243b50f7dafb76ac9dc75c943c0356e65bafcfaee0e68a514d413902706f427505da8e727d3aee3bf27a32de5452d","ssdeep":"192:92A7NZkcBwK5FbeDLmL4x8L1W0zucuR/wKBEUbpG3ckCLGAvYuR/wKBEUbpG3ckS:MckVLmLHL1XlyIUbzyAvYyIUbXUBa","tlshash":"0742e51616344804b9cd0042ee7c2ece1ba61c7b7c5d3a1cbaceab54d1ee16f9c568f2","dom_hash":"domhashd3a50d736f55f73d0def38f88e7c6bf9","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"poringa.live","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"103.224.182.215","port":0,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-09T13:50:05Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":2}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T13:50:01Z","timestamp":1772718601,"ip_dst":{"addr":"Client IP","port":45168,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"34.251.101.162","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"severity":"low","alert":"ET INFO Observed ZeroSSL SSL/TLS Certificate","source":"{\"timestamp\":\"2026-03-05T13:50:01.633790+0000\",\"flow_id\":1587868905048169,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"34.251.101.162\",\"src_port\":443,\"dest_ip\":\"172.18.0.49\",\"dest_port\":45168,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2031231,\"rev\":3,\"signature\":\"ET INFO Observed ZeroSSL SSL/TLS Certificate\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2020_11_23\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_12_01\"]}},\"tls\":{\"subject\":\"CN=*.primecirclenet.com\",\"issuerdn\":\"C=AT, O=ZeroSSL, CN=ZeroSSL ECC Domain Secure Site CA\",\"serial\":\"36:5E:83:AA:A6:DD:00:EA:EA:1E:D9:30:DE:9C:BD:80\",\"fingerprint\":\"10:cd:ce:40:54:75:ed:33:2b:ea:d8:63:1d:3f:b6:67:59:16:7b:8e\",\"sni\":\"obseu.primecirclenet.com\",\"version\":\"TLS 1.2\",\"notbefore\":\"2026-01-29T00:00:00\",\"notafter\":\"2026-04-29T23:59:59\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"80d47c47e3ce91bc3bd0a026dbd1664d\",\"string\":\"771,49196,5-65281-16\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":6,\"bytes_toserver\":1217,\"bytes_toclient\":3915,\"start\":\"2026-03-05T13:50:01.526441+0000\"}}"}],"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"l.cdn-fileserver.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"l.cdn-fileserver.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"l.cdn-fileserver.com","ip":{"addr":"172.67.181.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-08","domain_rank":962880,"first_seen":"2025-04-11T15:28:22.753596Z","last_seen":"2026-03-02T02:04:56.666965Z","alert_count":2,"request_count":1,"received_data":861,"sent_data":927,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"yfdpco1.com","ip":{"addr":"208.91.196.46","port":80,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"domain_registered":"2025-03-20","domain_rank":2753637,"first_seen":"2025-07-30T06:43:08.0267Z","last_seen":"2026-03-01T15:10:42.63031Z","alert_count":0,"request_count":1,"received_data":9861,"sent_data":640,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"obseu.primecirclenet.com","ip":{"addr":"34.251.101.162","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"domain_registered":"2026-01-28","domain_rank":0,"first_seen":"2026-03-04T09:51:25.656484Z","last_seen":"2026-03-04T09:51:25.656484Z","alert_count":0,"request_count":3,"received_data":4402,"sent_data":3192,"comment":"","tags":null,"fingerprints":null},{"fqdn":"poringa.live","ip":{"addr":"103.224.182.215","port":443,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"domain_registered":"2023-10-14","domain_rank":0,"first_seen":"2021-04-19T08:58:44Z","last_seen":"2024-05-19T00:08:56Z","alert_count":0,"request_count":5,"received_data":36255,"sent_data":2453,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]},{"fqdn":"ww38.poringa.live","ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"domain_registered":"2023-10-14","domain_rank":0,"first_seen":"2026-03-05T13:50:05.616293Z","last_seen":"2026-03-05T13:50:05.616293Z","alert_count":0,"request_count":4,"received_data":16808,"sent_data":2011,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"euob.primecirclenet.com","ip":{"addr":"52.84.50.85","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-01-28","domain_rank":0,"first_seen":"2026-03-04T09:51:25.652211Z","last_seen":"2026-03-04T09:51:25.652211Z","alert_count":0,"request_count":1,"received_data":121523,"sent_data":454,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"introduction_type":"eval","is_inline":false,"md5":"e5d8c139688b25ef77b263d88ea99150","sha1":"7abc9c61c4966543f66d150c0155bfac575f86a7","sha256":"53e5f34ac520035c7f124076d1e68c70a85c83cf68a339fa713b872b54126148","sha512":"1cd4eb192d987ea1b21f3b553eea3881c807f8bf4a5299982675d57314a0eaa084db1722c38d02eb73178660ecb1ca3667a795a512527f843f2526dc0a99dc20","ssdeep":"","tlshash":"7440000000003000033c0000000000c0000c00000000000000000c00030000000c0000","size":7,"data":"","first_seen":"2023-03-07T01:20:41Z","last_seen":"2026-04-04T15:47:51.645624Z","times_seen":332464,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"introduction_type":"eval","is_inline":false,"md5":"6559111e4eae643ce013ce0821e91a02","sha1":"fa1086c9aa2cb2d14f5c13bceefe21511bcdae5a","sha256":"d72255f7e5ea4dfdf9821df800356367d0bc7df07ecd103bb660018cb1e4f400","sha512":"a6e3e096076dc152b69e95709dad8925c9c2799c23ad226b9ce7b6ee78936bea7300b66c92821ea0728ce7433d4f53787f27f5e7101f97e4d882be0a461fc051","ssdeep":"","tlshash":"407000000380020020c80233a200882af228003c00030200c008888800a808002080c2","size":25,"data":"","first_seen":"2023-03-07T01:20:41Z","last_seen":"2026-04-04T15:47:51.64649Z","times_seen":332364,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poringa.live/","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"103.224.182.215","port":443,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"c1a447ee9da25bf732275575e8d71987","sha1":"771d52aa8f478bddf399738746da3527c468bbd7","sha256":"2f3a5132b0246a46159a100cc4c152e37a3559bd2de4113c869bc10e1d2d76e3","sha512":"b5ea2c89c8514570a7a58b70851f5658702b18c7ba8e73268b2538e679efde42db702e76c61095e9e608b9596ea68c9b937652d56f7172525b56f59ce64dfabc","ssdeep":"","tlshash":"d6f0d45df5dd78267538206f8ef8540ed17b014801cda97cd00577189d8105ff119cd7","size":508,"data":"","first_seen":"2026-03-05T13:50:08.726687Z","last_seen":"2026-03-05T13:50:08.726687Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"be6fde822b36a273108b6af682bf606b","sha1":"96b6d23db9f6a2e34cea1c5f638bace96749a852","sha256":"d56b7ffb26f649b4770af7f6f4686fbb669da6e560148e14dd4500b3d45df8d2","sha512":"a6d043da5089c004f4a9ffd543382c92b6988bf22b53f356533b2126bd0c9a631edab8a5028bc712c09c4e94036219232574774ad86c0ec51e1a0aeee1e25ec4","ssdeep":"","tlshash":"b62100ca58f644196bb370ad8e0e484474315c5f6299db067d0c02903f6c639ff767e6","size":1280,"data":"","first_seen":"2026-03-05T13:50:08.728109Z","last_seen":"2026-03-05T13:50:08.728109Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"4b525cf8ebd962811007b8d5664ed332","sha1":"3d6e339a2e51071280db0f7e0e72f4beff1b7e3f","sha256":"9a2fc2de09ddd5dbe83a33b037c4519972a252103614203019dec30522301fdd","sha512":"b8a7dfd8f65660c948daea9a5177f217a66dc3246bcc7acfefadf6c35c761208f9a99c73cd960e6081e0765b370ffbb178151bf792784c05de5c822b56ebb936","ssdeep":"","tlshash":"79c08c7b3c8220304edf725e281c93883860c206a883a202fc2c08ed4ff1e47323ab58","size":164,"data":"","first_seen":"2025-10-01T08:32:45.366407Z","last_seen":"2026-04-04T15:39:44.026923Z","times_seen":59453,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"introduction_type":"eval","is_inline":false,"md5":"889ca9e2c79a3ce7aaadbcdfd0ce4ef5","sha1":"b05c2c051bae71f80cb8c289e5a42d4f96d323fa","sha256":"6477acf082d26199b6ce8346b93149b1b999233d9fe76b0340ebf43317cf98f8","sha512":"122a494d50a5e8077cdda40e8d6edb442bb9d89fff078852aad7f84fe24f1c58fe693f0388ca6c9453d1b33036da0b9c4e9fb394a18268e254d306ffc2ca57a3","ssdeep":"","tlshash":"46a002d4b4ed8125564583390104d91cf936c934c0d5701873f0466ca6e700a53610b2","size":62,"data":"","first_seen":"2023-03-07T01:20:41Z","last_seen":"2026-04-04T15:47:51.644598Z","times_seen":332411,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"yfdpco1.com/sk-park.php?pid=9PO15V947\u0026dn=poringa.live\u0026ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0\u0026requrl=http%3A%2F%2Fww38.poringa.live%2F\u0026al=en-US%2Cen%3Bq%3D0.5","fqdn":"yfdpco1.com","domain":"yfdpco1.com","tld":"com"},"ip":{"addr":"208.91.196.46","port":80,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"introduction_type":"scriptElement","is_inline":true,"md5":"ca88bba5534bdc6d0c0a80f504c3ce98","sha1":"c746b808760533725bdd7fc893ab66c2a2b85701","sha256":"6029a24d72bfa653873421a4c1c3af2a9d239a34faca7ae42fb2f2d6253b48e5","sha512":"d1ecfcec2f0f6ddcf0230f6b6f641735cd7ac644f72fdf9f8cb12b2406d7696e57634d2335b8ba9adbf3e998cfc517ae918d1415646a9bfef72f4e4efb597809","ssdeep":"192:SuR/wKBEUbpG3ckCLGAvYuR/wKBEUbpG3ckIQB1vcweY:SyIUbzyAvYyIUbXUBT","tlshash":"9702e85222749c6099ce0041df7e2ecf65eb1d3f6c6d380d8ac88454527e66f8e568f2","size":8746,"data":"","first_seen":"2026-03-05T13:50:08.73126Z","last_seen":"2026-03-05T13:50:08.73126Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poringa.live/js/fingerprint/iife.min.js","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"103.224.182.215","port":443,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"63f9fd621d1fbd53b7c5856e58c11ccd","sha1":"a46973c2fbdbfeb159e0d717a90f88307e274012","sha256":"c6bc28686490aba34a53ab3b709afa1fd73c21e60feb25608b09f23efe170089","sha512":"d4df433c7368ec078fbc473398a4ab21e6da20950ac4db34338623296887db40320b05b9bde6130e43d2b55c82b81a56b60bab0d6a4c97df54a0cb7a8f09325b","ssdeep":"384:XhQYTcHRx9vfQxcuK83ERxXYxMvtTpIBNwBUZXLew5gc+RW7+5ERNFaqE8E0QI+V:XSbHRTArOGSoyISuNwxJzZbPePKe9y","tlshash":"6cf207d8b2c3b02d227378ba497f6006b63abd55641c4803d57be5c178a4e5a813bfb8","size":34240,"data":"","first_seen":"2023-05-01T16:20:27Z","last_seen":"2026-04-04T15:53:07.586556Z","times_seen":35275,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"introduction_type":"eval","is_inline":false,"md5":"b326b5062b2f0e69046810717534cb09","sha1":"5ffe533b830f08a0326348a9160afafc8ada44db","sha256":"b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b","sha512":"9120cd5faef07a08e971ff024a3fcbea1e3a6b44142a6d82ca28c6c42e4f852595bcf53d81d776f10541045abdb7c37950629415d0dc66c8d86c64a5606d32de","ssdeep":"","tlshash":"5430000000000000000000000000300c00000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:44Z","last_seen":"2026-04-04T15:47:51.642885Z","times_seen":353085,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"euob.primecirclenet.com/sxp/i/636f8b858f681acb7bfa6f583a96630a.js","fqdn":"euob.primecirclenet.com","domain":"primecirclenet.com","tld":"com"},"ip":{"addr":"52.84.50.85","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8f5c3b5717196b4b373fec31fae1976e","sha1":"b92b37d6ec2d7bf5610394cea623c56e7c0ff0af","sha256":"e5558497011affa45944a8414b2682bf58da02ba5c69a8f142271ca3d52cbbd7","sha512":"307a69711c9dc8541d8383af49ef88c85a9447c0d21767433d64d24f4fddd21750a067e686675a0f2e0d156e8e89dd203b10b1276de5717a15a51606bdcca5ec","ssdeep":"1536:5wxwb5bdwL+pRFz9FSUsqLonqNYgetcVPkx2cnYteolbFr3rd6TcWmuZUfFi8Ai/:5mH+dzzVP9ftrdruZ5QZ3faA8rO","tlshash":"c5c3d6ddb2e27025439324a5157f410ae27b2e543c4b8290d17ee9d4ac7ce8e817bfac","size":120997,"data":"","first_seen":"2026-03-04T09:51:31.049997Z","last_seen":"2026-03-08T23:15:11.599947Z","times_seen":1894,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"yfdpco1.com/sk-park.php?pid=9PO15V947\u0026dn=poringa.live\u0026ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0\u0026requrl=http%3A%2F%2Fww38.poringa.live%2F\u0026al=en-US%2Cen%3Bq%3D0.5","fqdn":"yfdpco1.com","domain":"yfdpco1.com","tld":"com"},"ip":{"addr":"208.91.196.46","port":80,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://ww38.poringa.live/","date":"2026-03-05T13:50:00.890Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /sk-park.php?pid=9PO15V947\u0026dn=poringa.live\u0026ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0\u0026requrl=http%3A%2F%2Fww38.poringa.live%2F\u0026al=en-US%2Cen%3Bq%3D0.5 HTTP/1.1\r\nHost: yfdpco1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww38.poringa.live/\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Thu, 05 Mar 2026 13:50:25 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nx-sc-h: 21-53xc\r\nvia: 1.1 google\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":9648,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (9481)","md5":"037fcfc4bd6837dbe86dc379ebdca7f7","sha1":"ed2b5b478b09249b32253ee709cf7576bf086ffd","sha256":"b7b4469e5330fca1fbbdd8a80dadbbbd0909a2960a0a1b7771b13628c46d60cf","sha512":"e817ec35afa25aa9e4833cee3963260ef0323e057b244860751598515a704caa8a17f024caf6dfbd3d13c1f50362377aa82d84a8fc5b73f83d88e77a17e8bbe2","ssdeep":"192:fbK97NPuR/wKBEUbpG3ckCLGAvYuR/wKBEUbpG3ckIQB1vcwe/:2fyIUbzyAvYyIUbXUBI","tlshash":"fc121a5212789c5498cd0041ef7e2ecf65eb2d3f5c6d380c8acdc4a5626e66f8e568f2","first_seen":"2026-03-05T13:50:08.716062Z","last_seen":"2026-03-05T13:50:08.716062Z","times_seen":1,"resource_available":false,"data":null}},"time_used":740,"timings":{"blocked":157,"dns":27,"connect":129,"send":0,"wait":426,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"obseu.primecirclenet.com/ct","fqdn":"obseu.primecirclenet.com","domain":"primecirclenet.com","tld":"com"},"ip":{"addr":"34.251.101.162","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://ww38.poringa.live/","date":"2026-03-05T13:50:01.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.primecirclenet.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Thu, 29 Jan 2026 00:00:00 GMT","end":"Wed, 29 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"10:CD:CE:40:54:75:ED:33:2B:EA:D8:63:1D:3F:B6:67:59:16:7B:8E","sha256":"0E:A6:F7:74:71:23:FF:55:50:64:33:31:67:9A:4B:BA:ED:FB:8C:15:AF:37:3E:B5:46:DD:01:F8:6E:88:5C:CE"}}},"request":{"raw":"POST /ct HTTP/1.1\r\nHost: obseu.primecirclenet.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 4426\r\nOrigin: http://ww38.poringa.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww38.poringa.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":4426,"data":"id=92098\u0026url=http%3A%2F%2Fww38.poringa.live%2F\u0026sf=0\u0026tpi=\u0026ch=AdsDeli%20-%20iFrame\u0026uvid=c6a533af2f42678c63248e8265df8ed3af1537f9\u0026tsf=0\u0026tsfmi=\u0026tsfu=\u0026cb=1772718601503\u0026hl=3\u0026op=0\u0026ag=2881387774\u0026rand=73628208982815180500802001019227591618265098209816112576117227290161181902157031101559182712\u0026fs=1280x1024\u0026fst=1280x1024\u0026np=win32\u0026nv=\u0026ref=\u0026ss=1280x1024\u0026nc=0\u0026at=\u0026di=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\u0026dep=0\u0026pre=0\u0026sdd=\u0026cri=uy7xBcJoDI\u0026pto=1182\u0026ver=65\u0026gac=-\u0026mei=\u0026ap=\u0026fe=1\u0026duid=1.1772718601.9HapfS2FMolM8WZ6\u0026suid=1.1772718601.YUEE8L8BnfVtTnYg\u0026tuid=1.1772718601.Hlntc5LPWdxiPyax\u0026fbc=-\u0026gtm=-\u0026it=5%2C399%2C94\u0026fbcl=-\u0026gacl=-\u0026gacsd=-\u0026rtic=-\u0026rtict=-\u0026bgc=-\u0026spa=1\u0026urid=0\u0026ab=\u0026sck=-\u0026io=aGA2Oi15fzZz"}},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: http://ww38.poringa.live\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-encoding: gzip\r\ncontent-type: application/json\r\ndate: Thu, 05 Mar 2026 13:50:01 GMT\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\npragma: no-cache\r\nset-cookie: cg_uuid=462e9c3d1c8f39e4ec50568a173e89d7; Max-Age=29030400; Path=/; Expires=Thu, 04 Feb 2027 13:50:01 GMT; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: http://ww38.poringa.live\r\ncontent-length: 1086\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3230,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"d10bd608326a99a3571b212aea8ef30e","sha1":"a093abcfd8464266e1230ff887ed3738a341c619","sha256":"b972e4620b6b5c10938086429a75ccaa4c92519e0f374604da21a3269850b58a","sha512":"8b3c4c7be90b9fd79524f3d8570616f1182ff89cf3fd1bd2e37410f165c0ed91899c963fe602a8bdaf1323ebd417319a48e6701a380184297644266e86698328","ssdeep":"","tlshash":"2061e9e87a58fc10a6ef7d737ba9e1b0ae53253a865716ea1074140d059b360ee02048","first_seen":"2026-03-05T13:50:08.717321Z","last_seen":"2026-03-05T13:50:08.717321Z","times_seen":1,"resource_available":false,"data":null}},"time_used":341,"timings":{"blocked":124,"dns":17,"connect":33,"send":0,"wait":92,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"obseu.primecirclenet.com/mon","fqdn":"obseu.primecirclenet.com","domain":"primecirclenet.com","tld":"com"},"ip":{"addr":"34.251.101.162","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://ww38.poringa.live/","date":"2026-03-05T13:50:02.776Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.primecirclenet.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Thu, 29 Jan 2026 00:00:00 GMT","end":"Wed, 29 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"10:CD:CE:40:54:75:ED:33:2B:EA:D8:63:1D:3F:B6:67:59:16:7B:8E","sha256":"0E:A6:F7:74:71:23:FF:55:50:64:33:31:67:9A:4B:BA:ED:FB:8C:15:AF:37:3E:B5:46:DD:01:F8:6E:88:5C:CE"}}},"request":{"raw":"POST /mon HTTP/1.1\r\nHost: obseu.primecirclenet.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 2583\r\nOrigin: http://ww38.poringa.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww38.poringa.live/\r\nCookie: cg_uuid=462e9c3d1c8f39e4ec50568a173e89d7\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2583,"data":"e=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\u0026cri=uy7xBcJoDI\u0026sf=0\u0026dc=OTE1LT1KLTo6YDotOjotOktmfWRkLTpLOjo5LTpLOzo7OC06Szk6PDktOks5Ozk5LTpLOTo4Oy06Szk7OTktOks5OTA7LTpLOC06Szk%2FLTpLOTw4Oy06Szk8ODwtPUwuOzk1LT9KLTo6fy06Oi07STk%2FOi06Sy06OmAtOjotO0k8Oi06Sy06OmpXLTo6LTtJPS0%2FTC4%2FOTUtP0otOjphZmstOjotO0k5LTpLLTo6alctOjotO0k4LT9MLjk8OTUtP0otOjp7LTo6LTtJOS06Sy06OmpXLTo6LTtJOC0%2FTC45PTE1LT9KLTo6bTgtOjotO0ktOjp%2BJm9tfEppfHxtenEtOjhhey06OGZnfC06OGktOjhufWZrfGFnZi06Oi06Sy06OmpXLTo6LTtJOS0%2FTC47Oj41LT1KLT9KLTo6ai06Oi07STgtOkstOjp7LTo6LTtJLTo6OS06Oi0%2FTC06Sy0%2FSi06OmotOjotO0k4LTpLLTo6ey06Oi07SS06OjktOjotP0wtPUwuPTo4NS0%2FSi06OngtOjotO0ktOjpfYWY7Oi06Oi06Sy06OmQtOjotO0ktPUotOjptZiVdWy06Oi06Sy06Om1mLTo6LT1MLTpLLTo6YGstOjotO0k8MC06Sy06On9vfi06Oi07SS06OkVte2ktOjotOkstOjp%2Fb3otOjotO0ktOjpkZH5leGF4bS06Oi06Sy06OmpXLTo6LTtJOz8tP0wuMD88NS0%2FSi06OnstOjotO0k4LTpLLTo6bS06Oi07SS06Olh9amRha0NtcUt6bWxtZnxhaWQtOjhhey06OGZnfC06OGxtbmFmbWwtOjotOkstOjpqVy06Oi07STgtP0w%3D\u0026cp=1\u0026gtm=-\u0026gac=-\u0026uvid=c6a533af2f42678c63248e8265df8ed3af1537f9\u0026tb=1\u0026ich=1\u0026ws=1280x1024\u0026wos=1280x1024\u0026ver=13\u0026fi=\u0026ti=1006\u0026mo=0\u0026pn=2450\u0026spn=1444\u0026fp=455"}},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: http://ww38.poringa.live\r\ncontent-type: application/json\r\ndate: Thu, 05 Mar 2026 13:50:02 GMT\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/json","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":38,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poringa.live/","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"103.224.182.215","port":443,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T13:49:42.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"churrasco-pg.bet","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Feb 2026 09:00:39 GMT","end":"Mon, 25 May 2026 09:00:38 GMT"},"fingerprint":{"sha1":"E0:9E:FB:A3:F2:C7:1A:9C:32:7D:D4:F7:44:19:74:22:DC:D9:2B:09","sha256":"93:4A:98:04:E6:B0:69:05:E0:8F:AC:0C:2A:A2:FB:D9:CD:FA:17:B5:C1:0A:E5:1F:AC:C9:3C:3C:CF:FD:25:86"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Thu, 05 Mar 2026 13:49:43 GMT\r\nserver: Apache\r\nset-cookie: __tad=1772718583.1480784; expires=Sun, 02 Mar 2036 13:49:43 GMT; Max-Age=315360000\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 565\r\ncontent-type: text/html; charset=UTF-8\r\nconnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1052,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"5d5508412df08ea7969ba51af61a0d06","sha1":"d34e08ee42cc518bf5aeeb31e89c84f2f1d0e9ad","sha256":"12a15e59b0eb0758dcddc2f505ba7afab952a4afd5602f81c0ebe9087bf76f70","sha512":"cdb300f152020fffebb131e8618eb12f3683323fc01a8595211328ca2afa1f028f0f114cd85759881a188086293cdfb5751f959ad79c5ad78fec8c7d88851d39","ssdeep":"","tlshash":"2911251efd95d8167124148d8af8b40ee0b7324c42dddd3ce085f7649dc128dda299ca","first_seen":"2026-03-05T13:50:08.719432Z","last_seen":"2026-03-05T13:50:08.719432Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1263,"timings":{"blocked":531,"dns":174,"connect":168,"send":0,"wait":200,"receive":0,"ssl":186},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poringa.live/js/fingerprint/iife.min.js","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"103.224.182.215","port":443,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://poringa.live/","date":"2026-03-05T13:49:43.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"churrasco-pg.bet","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Feb 2026 09:00:39 GMT","end":"Mon, 25 May 2026 09:00:38 GMT"},"fingerprint":{"sha1":"E0:9E:FB:A3:F2:C7:1A:9C:32:7D:D4:F7:44:19:74:22:DC:D9:2B:09","sha256":"93:4A:98:04:E6:B0:69:05:E0:8F:AC:0C:2A:A2:FB:D9:CD:FA:17:B5:C1:0A:E5:1F:AC:C9:3C:3C:CF:FD:25:86"}}},"request":{"raw":"GET /js/fingerprint/iife.min.js HTTP/1.1\r\nHost: poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://poringa.live/\r\nCookie: __tad=1772718583.1480784\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Thu, 05 Mar 2026 13:49:44 GMT\r\nserver: Apache\r\nlast-modified: Tue, 22 Oct 2024 03:26:38 GMT\r\netag: \"85c0-62508564b3780\"\r\naccept-ranges: bytes\r\ncontent-length: 34240\r\ncontent-type: text/javascript\r\nconnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":34240,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (33896), with CRLF line terminators","md5":"63f9fd621d1fbd53b7c5856e58c11ccd","sha1":"a46973c2fbdbfeb159e0d717a90f88307e274012","sha256":"c6bc28686490aba34a53ab3b709afa1fd73c21e60feb25608b09f23efe170089","sha512":"d4df433c7368ec078fbc473398a4ab21e6da20950ac4db34338623296887db40320b05b9bde6130e43d2b55c82b81a56b60bab0d6a4c97df54a0cb7a8f09325b","ssdeep":"384:XhQYTcHRx9vfQxcuK83ERxXYxMvtTpIBNwBUZXLew5gc+RW7+5ERNFaqE8E0QI+V:XSbHRTArOGSoyISuNwxJzZbPePKe9y","tlshash":"6cf207d8b2c3b02d227378ba497f6006b63abd55641c4803d57be5c178a4e5a813bfb8","first_seen":"2023-05-01T16:20:27Z","last_seen":"2026-04-04T15:53:07.586556Z","times_seen":35275,"resource_available":true,"data":null}},"time_used":1070,"timings":{"blocked":358,"dns":1,"connect":171,"send":0,"wait":350,"receive":2,"ssl":186},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poringa.live/favicon.ico","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://poringa.live/","date":"2026-03-05T13:49:44.466Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://poringa.live/\r\nCookie: __tad=1772718583.1480784\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":1,"timings":{"blocked":0,"dns":1,"connect":158,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T13:50:00.335Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ww38.poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Mar 2026 13:50:00 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile\r\nAccept-Ch-Lifetime: 30\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nVia: 0.0 Caddy\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_V169kiMxPxLl2Zxl+vbfcCvbUgGenSikqcY99mUcojiP1cmK3SbrmBMNXArU7A6ghuC/jTov1eXshfFS7wimJw==\r\nX-Domain: poringa.live\r\nX-Pcrew-Blocked-Reason: hosting network\r\nX-Pcrew-Ip-Organization: Blix Solutions\r\nX-Redirect: skenzo\r\nX-Subdomain: ww38\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15503,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (448)","md5":"d6896ffcc044697ed3c359e31255f5d9","sha1":"ec9eb54506258921c2633db3029c578e9500c003","sha256":"94d5f272f0f0207e8f5cf10a789abe4b0d7b569e738a1e02e2004cd6430609eb","sha512":"8878d0162ca5c1e7726fbcd4384ad862b7f8350a0761df81df34fbabd5605d681253cac9f66e73f271e127c1c568c11b2f69fcb915e23121ca146e9dc85073e5","ssdeep":"192:BR8pKfsTxcYoHSiF57zA5GYJymOJdt+/eq0llYxw8YoHsfOBro2Tc/qGsy:BexcYoHSiF5fno/rYoHsfO2/Z","tlshash":"4a62a7436be31519b11bc0a98f9aa74532289107d60fcd6cfaec77a8df4c19461a3bdc","first_seen":"2026-03-05T13:50:08.721485Z","last_seen":"2026-03-05T13:50:08.721485Z","times_seen":1,"resource_available":true,"data":null}},"time_used":433,"timings":{"blocked":104,"dns":1,"connect":103,"send":0,"wait":223,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww38.poringa.live/chronos?dune=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0.p1-JQFsL3509Uzlu7LIUzRz4CyjJnpjS6dPRIAUa9iA2HtInXqpmRw.5_QOjWf1RN7vfjAXFHjAyA.AHBA-HcbPDfKQhROwCxVcniB-PvelW6BcvYNzD1MslK69m1-hZX8wKldbdrPYm6JrMliOnktgvyZWZGkuqG2WG9AwoHxkrmOUdslFFvKa-LcNL9kier1wM5K-eccBIOddSEklHWMKYX0G66zr_4TtZ0VtME4b6nREltuf2yFjV_jsxaVdhcyrGwRSk7RCgwT9QLuwHmuJGzr_BAGjZE0Iw.zdUvl8RlSUmrF2c_RFGxTw\u0026t=69a98a08\u0026token=c6a533af2f42678c63248e8265df8ed3af1537f9","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"http://ww38.poringa.live/","date":"2026-03-05T13:50:00.748Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /chronos?dune=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0.p1-JQFsL3509Uzlu7LIUzRz4CyjJnpjS6dPRIAUa9iA2HtInXqpmRw.5_QOjWf1RN7vfjAXFHjAyA.AHBA-HcbPDfKQhROwCxVcniB-PvelW6BcvYNzD1MslK69m1-hZX8wKldbdrPYm6JrMliOnktgvyZWZGkuqG2WG9AwoHxkrmOUdslFFvKa-LcNL9kier1wM5K-eccBIOddSEklHWMKYX0G66zr_4TtZ0VtME4b6nREltuf2yFjV_jsxaVdhcyrGwRSk7RCgwT9QLuwHmuJGzr_BAGjZE0Iw.zdUvl8RlSUmrF2c_RFGxTw\u0026t=69a98a08\u0026token=c6a533af2f42678c63248e8265df8ed3af1537f9 HTTP/1.1\r\nHost: ww38.poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://ww38.poringa.live/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nServer: nginx\r\nDate: Thu, 05 Mar 2026 13:50:00 GMT\r\nContent-Type: text/html\r\nContent-Length: 146\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"9fe3cb2b7313dc79bb477bc8fde184a7","sha1":"4d7b3cb41e90618358d0ee066c45c76227a13747","sha256":"32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864","sha512":"c54ad4f5292784e50b4830a8210b0d4d4ee08b803f4975c9859e637d483b3af38cb0436ac501dea0c73867b1a2c41b39ef2c27dc3fb20f3f27519b719ea743db","ssdeep":"","tlshash":"2cc08c26351e2c0c96a322b402c36a50d092c3304c5a19004600420371c31168ac3315","first_seen":"2023-04-05T07:27:09Z","last_seen":"2026-04-04T15:48:34.432098Z","times_seen":75508,"resource_available":true,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"obseu.primecirclenet.com/tracker/tc_imp.gif?e=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\u0026cri=uy7xBcJoDI\u0026ts=267\u0026cb=1772718601770","fqdn":"obseu.primecirclenet.com","domain":"primecirclenet.com","tld":"com"},"ip":{"addr":"34.251.101.162","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww38.poringa.live/","date":"2026-03-05T13:50:01.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.primecirclenet.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Thu, 29 Jan 2026 00:00:00 GMT","end":"Wed, 29 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"10:CD:CE:40:54:75:ED:33:2B:EA:D8:63:1D:3F:B6:67:59:16:7B:8E","sha256":"0E:A6:F7:74:71:23:FF:55:50:64:33:31:67:9A:4B:BA:ED:FB:8C:15:AF:37:3E:B5:46:DD:01:F8:6E:88:5C:CE"}}},"request":{"raw":"GET /tracker/tc_imp.gif?e=37dfbd8ee84e00126decc034e2418a9c9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d57138d642f17071a10acf9f29f674d8481dc0e7f3c4fff2b7f5284328a669257350526955a515e32070aceb73f4877be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebff079ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b226537a30ca946c75ca92560c294279550cf48a2e347f52a3f2182bddfff12997e25f704e29ada2a193ca72eccfc248b5038e523d65cceb92a9e471d280f061856b4a95b9c3330751b06267b6d04b26b786ac25915aa600e79b0ade5d9f9a6dce392984db728926cf8cfaf98eefe31b22ea3de5a9f03b2f4baecf71c2a648b1595444864f5081ccc3d8c6f88220d82dc0deedc838a03c7a3ec4206bb792806820dee331e443ecb75d9578a83d0c0b58cf22b408dfd1a572b4c7608710a7c19cde64af574f6af1483f553e113e88ec2df441d4ed892fa29273d6966c82c2a6be33cfa0e91f3e47dbbb0c1481f95f144da7bcb87ab93992ed40f2e328b660bd379753c809d0a93ddb0720e5aa8e7b393f616e36190852f3b59e66c003a94449442bffb547d9981912f7c08efaea0fc09b99a3da85a79621492ee755c5f3003a9149771ac9625a766ef17aa77019c3f5a806ff15df5983d9729bde49fd256676321e6e57d999b0c936695484194292d1debab8cc530480c8e123d29c7607b8b546743099d8881e33ab35c71fc908e954f60ec98a57a1a838e2879a86c9033393bf6832c62ff9d3d2fe41c5336a040f96745104e4e14d85ed14ca9b93d4468ddad62104365bac7df650e847b8806996304b3d537a203df3508e9d210afa3c91b5ff35c5dd12cf2726ed0376319eead91648b132a6cc02d00631004abb3b3090f6813dd95d3f869742e2cdd7fa8041da59493057b62e634096ce4900e620f5a6923f85c1e8064f60b033637144bd4b0fb5c2b7464682682782cbc41484\u0026cri=uy7xBcJoDI\u0026ts=267\u0026cb=1772718601770 HTTP/1.1\r\nHost: obseu.primecirclenet.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww38.poringa.live/\r\nCookie: cg_uuid=462e9c3d1c8f39e4ec50568a173e89d7\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-type: image/gif\r\ndate: Thu, 05 Mar 2026 13:50:01 GMT\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\npragma: no-cache\r\ncontent-length: 43\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"db04c7b378cb2db912c3ba8a5a774ee3","sha1":"dee34bd86c3484d31002182aa2b7caa4699126b8","sha256":"98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a","sha512":"826225fc21717d8861a05b9d2f959539aad2d2b131b2afed75d88fbca535e1b0d5a0da8ac69713a0876a0d467848a37a0a7f926aeafad8cf28201382d16466ab","ssdeep":"","tlshash":"6490000bca888002caa2c0302b8883022b88b0320228832e80bc30a8ee3b3a20c02000","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-04-04T15:45:10.649893Z","times_seen":355781,"resource_available":true,"data":null}},"time_used":37,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"poringa.live/?tr_uuid=20260306-0049-4353-8a76-3246983e851b\u0026fp=-7","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"103.224.182.215","port":80,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T13:49:44.788Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /?tr_uuid=20260306-0049-4353-8a76-3246983e851b\u0026fp=-7 HTTP/1.1\r\nHost: poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __tad=1772718583.1480784\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\ndate: Thu, 05 Mar 2026 13:49:45 GMT\r\nserver: Apache\r\nlocation: https://poringa.live/?tr_uuid=20260306-0049-4353-8a76-3246983e851b\u0026fp=-7\r\ncontent-length: 0\r\ncontent-type: text/html; charset=UTF-8\r\nconnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":526,"timings":{"blocked":171,"dns":1,"connect":171,"send":0,"wait":183,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ww38.poringa.live/","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T13:49:46.119Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ww38.poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":7200,"timings":{"blocked":7200,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"poringa.live/?tr_uuid=20260306-0049-4353-8a76-3246983e851b\u0026fp=-7","fqdn":"poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"103.224.182.215","port":443,"asn":133618,"as":"Trellian Pty. Limited","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T13:49:45.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"churrasco-pg.bet","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Feb 2026 09:00:39 GMT","end":"Mon, 25 May 2026 09:00:38 GMT"},"fingerprint":{"sha1":"E0:9E:FB:A3:F2:C7:1A:9C:32:7D:D4:F7:44:19:74:22:DC:D9:2B:09","sha256":"93:4A:98:04:E6:B0:69:05:E0:8F:AC:0C:2A:A2:FB:D9:CD:FA:17:B5:C1:0A:E5:1F:AC:C9:3C:3C:CF:FD:25:86"}}},"request":{"raw":"GET /?tr_uuid=20260306-0049-4353-8a76-3246983e851b\u0026fp=-7 HTTP/1.1\r\nHost: poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __tad=1772718583.1480784\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\ndate: Thu, 05 Mar 2026 13:49:45 GMT\r\nserver: Apache\r\nlocation: http://ww38.poringa.live/\r\ncontent-length: 0\r\ncontent-type: text/html; charset=UTF-8\r\nconnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":1296,"timings":{"blocked":330,"dns":1,"connect":157,"send":0,"wait":636,"receive":0,"ssl":169},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"euob.primecirclenet.com/sxp/i/636f8b858f681acb7bfa6f583a96630a.js","fqdn":"euob.primecirclenet.com","domain":"primecirclenet.com","tld":"com"},"ip":{"addr":"52.84.50.85","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww38.poringa.live/","date":"2026-03-05T13:50:00.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.primecirclenet.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Thu, 29 Jan 2026 00:00:00 GMT","end":"Sat, 27 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"77:CB:09:91:B7:EA:42:3C:3E:84:33:70:0A:98:69:44:32:8B:1F:96","sha256":"DF:34:95:1F:9C:A1:61:3F:8F:6A:34:E9:94:51:D8:E0:06:6A:32:14:97:BE:01:16:4E:02:BB:87:9F:8A:1D:34"}}},"request":{"raw":"GET /sxp/i/636f8b858f681acb7bfa6f583a96630a.js HTTP/1.1\r\nHost: euob.primecirclenet.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww38.poringa.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 44765\r\ncontent-encoding: gzip\r\nserver: Caddy\r\ndate: Thu, 05 Mar 2026 09:50:15 GMT\r\ncache-control: max-age=43200\r\nexpires: Thu, 05 Mar 2026 21:50:15 GMT\r\netag: \"1d8a5-uSs31uwte/VhA5TOpiPFbnwP8K8\"\r\nvary: accept-encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 8c3a87d110aff35fe17513b9a9ad30cc.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: Hz_ARbhY9ra5HyfZutUuYNuUOw5Us2LLCifFCsO9YW9dNAcnVJgclw==\r\nage: 14385\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":120997,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"data","md5":"8f5c3b5717196b4b373fec31fae1976e","sha1":"b92b37d6ec2d7bf5610394cea623c56e7c0ff0af","sha256":"e5558497011affa45944a8414b2682bf58da02ba5c69a8f142271ca3d52cbbd7","sha512":"307a69711c9dc8541d8383af49ef88c85a9447c0d21767433d64d24f4fddd21750a067e686675a0f2e0d156e8e89dd203b10b1276de5717a15a51606bdcca5ec","ssdeep":"1536:5wxwb5bdwL+pRFz9FSUsqLonqNYgetcVPkx2cnYteolbFr3rd6TcWmuZUfFi8Ai/:5mH+dzzVP9ftrdruZ5QZ3faA8rO","tlshash":"c5c3d6ddb2e27025439324a5157f410ae27b2e543c4b8290d17ee9d4ac7ce8e817bfac","first_seen":"2026-03-04T09:51:31.049997Z","last_seen":"2026-03-08T23:15:11.599947Z","times_seen":1894,"resource_available":true,"data":null}},"time_used":146,"timings":{"blocked":70,"dns":23,"connect":1,"send":0,"wait":2,"receive":2,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"l.cdn-fileserver.com/bping.php?vgd_oreqf=one\u0026vgd_oresf=one\u0026vgd_wlstp=0\u0026cc=NO\u0026lper=100\u0026ssld=%7B%22QQNN%22%3A%22Ia%22%2C%22QQN75%22%3A%22mQjm%22%2C%22QQ8E%22%3A%22%22%2C%22QQQN%22%3A%229A%22%7D\u0026vgd_cage=13\u0026prid=8PR11258V\u0026vi=1772718601810157576\u0026hvsid=00001772718601270015326356488735\u0026sc=03\u0026wsip=170763811\u0026mspa=0\u0026wshp=0\u0026r=1772718601355\u0026cid=8CU6073RK\u0026requrl=http%3A%2F%2Fporinga.live\u0026vgd_rpth=%2Fola\u0026gdpr=1\u0026vgd_tsce=L1159\u0026vgd_cdv=O2799\u0026vgd_l2type=dmola\u0026vgd_setup=c21\u0026crid=848515096\u0026ugd=4\u0026lf=6\u0026vgd_asn=50304\u0026vgd_len=529\u0026vgd_end=1","fqdn":"l.cdn-fileserver.com","domain":"cdn-fileserver.com","tld":"com"},"ip":{"addr":"172.67.181.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://yfdpco1.com/sk-park.php?pid=9PO15V947\u0026dn=poringa.live\u0026ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0\u0026requrl=http%3A%2F%2Fww38.poringa.live%2F\u0026al=en-US%2Cen%3Bq%3D0.5","date":"2026-03-05T13:50:01.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn-fileserver.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 16:34:52 GMT","end":"Tue, 28 Apr 2026 17:33:19 GMT"},"fingerprint":{"sha1":"F3:1F:AE:F5:F8:55:3C:E0:73:9D:53:9F:50:2C:79:55:B2:A1:33:D1","sha256":"50:7A:11:63:E8:59:A1:60:B9:7A:1C:11:46:F4:E5:9E:5A:10:E9:46:AD:96:82:92:F4:32:FE:23:EC:45:AC:B9"}}},"request":{"raw":"GET /bping.php?vgd_oreqf=one\u0026vgd_oresf=one\u0026vgd_wlstp=0\u0026cc=NO\u0026lper=100\u0026ssld=%7B%22QQNN%22%3A%22Ia%22%2C%22QQN75%22%3A%22mQjm%22%2C%22QQ8E%22%3A%22%22%2C%22QQQN%22%3A%229A%22%7D\u0026vgd_cage=13\u0026prid=8PR11258V\u0026vi=1772718601810157576\u0026hvsid=00001772718601270015326356488735\u0026sc=03\u0026wsip=170763811\u0026mspa=0\u0026wshp=0\u0026r=1772718601355\u0026cid=8CU6073RK\u0026requrl=http%3A%2F%2Fporinga.live\u0026vgd_rpth=%2Fola\u0026gdpr=1\u0026vgd_tsce=L1159\u0026vgd_cdv=O2799\u0026vgd_l2type=dmola\u0026vgd_setup=c21\u0026crid=848515096\u0026ugd=4\u0026lf=6\u0026vgd_asn=50304\u0026vgd_len=529\u0026vgd_end=1 HTTP/1.1\r\nHost: l.cdn-fileserver.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://yfdpco1.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Mar 2026 13:50:01 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\naccept-ch: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\ncache-control: max-age=0, no-cache, no-store\r\nexpires: Wed, 04 Mar 2026 13:50:01 GMT\r\npragma: no-cache\r\nvia: 1.1 google\r\nstrict-transport-security: max-age=63072000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=A9T40ngbG9X5%2B1t98Ag%2BCFIMVHhVi8K10zqPE%2FAFyHHtRBALu0TR3dgvSXOMVXrUuXSEwxyCKUG8LePo%2Fa63CY2WbCiaydlawJOBYlaPPuGAHRKN\"}]}\r\nserver: cloudflare\r\ncf-ray: 9d79965be996dcff-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 87a, 1 x 1","md5":"6f1d74c7168076c7666246504a8c03f2","sha1":"00656377deb1a4393e0cf0055385b08b2b81b46c","sha256":"8ac1703c1c34b2be426deda409d39258f82fae17f13e645f377f337a954aedde","sha512":"e502484faa0dc2a1f23c7f715879db654f29d0af1d6f616467d3d1fc578c2d16fccaacd76c4a5ecae8451dc912323473559d29edbd322fe85b8f1e83a7cdf2f3","ssdeep":"","tlshash":"53900447f1401103d135403007075340070c5030145403050071507ddc1d7553d07410","first_seen":"2025-03-07T21:51:05.009549Z","last_seen":"2026-04-04T15:47:51.627224Z","times_seen":143133,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":38,"dns":1,"connect":8,"send":0,"wait":130,"receive":1,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"l.cdn-fileserver.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"l.cdn-fileserver.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ww38.poringa.live/favicon.ico","fqdn":"ww38.poringa.live","domain":"poringa.live","tld":"live"},"ip":{"addr":"185.53.179.200","port":80,"asn":61969,"as":"Team Internet AG","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww38.poringa.live/","date":"2026-03-05T13:50:00.883Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ww38.poringa.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww38.poringa.live/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Mar 2026 13:50:00 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 0\r\nLast-Modified: Wed, 11 Sep 2024 11:38:26 GMT\r\nConnection: keep-alive\r\nETag: \"66e18132-0\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T15:49:33.06692Z","times_seen":13337345,"resource_available":true,"data":null}},"time_used":111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}