{"report_id":"035c4a06-e10e-48a9-b9fe-db3d5f2f3913","version":6,"status":"done","tags":[],"date":"2026-03-03T19:25:08Z","url":{"schema":"https","addr":"m2s8j.r.ag.d.sendibm3.com/mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL","fqdn":"m2s8j.r.ag.d.sendibm3.com","domain":"sendibm3.com","tld":"com"},"ip":{"addr":"1.179.112.197","port":0,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"France","country_code":"FR"},"final":{"url":{"schema":"https","addr":"iconicweekly.com/?a=2373\u0026s1=Comcast_Sanjip","fqdn":"iconicweekly.com","domain":"iconicweekly.com","tld":"com"},"title":"Offer Not Available","dom":{"size":624,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"63964c55ad3143221c1a3b6b6920549c","sha1":"732e7455136537c802c847b2a349d08243652c89","sha256":"9849d75f1f72bdbe89d140e25bbb72789aca45ec1f416da0d798c457efc4904f","sha512":"657c570dd38eaf545499f9989bf316afa0f0054e41ffc8ff23943f5004a76910169d12c1853b89602dac8c15f0ce29ba756999361ada458cbafe7621fbfb6fb5","ssdeep":"","tlshash":"d2f062aacb0e020a302983884d2567d546cc846bd65f0ed0bc06a4b8eccb813c49b3dc","dom_hash":"domhashc62a37b44caf2ab86d1d29e24c294e35","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"m2s8j.r.ag.d.sendibm3.com/mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL","fqdn":"m2s8j.r.ag.d.sendibm3.com","domain":"sendibm3.com","tld":"com"},"ip":{"addr":"1.179.112.197","port":0,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"France","country_code":"FR"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-07T19:25:08Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"iconicweekly.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"sibautomation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"m2s8j.r.ag.d.sendibm3.com","ip":{"addr":"1.179.112.197","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"France","country_code":"FR"},"domain_registered":"2015-08-28","domain_rank":0,"first_seen":"2026-03-03T18:57:52.175894Z","last_seen":"2026-03-03T18:57:52.175894Z","alert_count":0,"request_count":2,"received_data":1297,"sent_data":1051,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"visioninsightcenter.org","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-29","domain_rank":0,"first_seen":"2026-03-03T18:57:52.174564Z","last_seen":"2026-03-03T18:57:52.174564Z","alert_count":0,"request_count":1,"received_data":1272,"sent_data":531,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}]},{"fqdn":"expedated.com","ip":{"addr":"54.68.22.37","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2020-08-17","domain_rank":0,"first_seen":"2026-02-25T15:50:04.452643Z","last_seen":"2026-02-25T15:50:04.452643Z","alert_count":0,"request_count":1,"received_data":1181,"sent_data":435,"comment":"","tags":null,"fingerprints":null},{"fqdn":"iconicweekly.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-03-08","domain_rank":5458107,"first_seen":"2023-09-20T21:13:27Z","last_seen":"2026-03-03T18:57:52.910727Z","alert_count":3,"request_count":3,"received_data":9281,"sent_data":1400,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"sibautomation.com","ip":{"addr":"141.101.90.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-01-20","domain_rank":29079,"first_seen":"2017-01-21T15:10:10Z","last_seen":"2026-02-25T20:18:47.12333Z","alert_count":1,"request_count":1,"received_data":2853,"sent_data":548,"comment":"","tags":null,"fingerprints":[{"name":"Sails.js","description":"","website":"https://sailsjs.org","common_platform_enumeration":"","icon":"Sails.js.svg","categories":["Web frameworks"]},{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"in-automate.brevo.com","ip":{"addr":"172.64.150.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"1999-09-10","domain_rank":161262,"first_seen":"2023-05-23T10:45:40Z","last_seen":"2026-02-25T21:54:49.536711Z","alert_count":0,"request_count":1,"received_data":215,"sent_data":524,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"m2s8j.r.ag.d.sendibm3.com/mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL","fqdn":"m2s8j.r.ag.d.sendibm3.com","domain":"sendibm3.com","tld":"com"},"ip":{"addr":"1.179.112.197","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"e8bfe87791bc4d933c26460873c31458","sha1":"06778c539ed81ba990d12be6c778af59c6f35898","sha256":"be6eeda0bdad06ee1ad652e03d868c216bb25d8e5e3ddf2d2ba62a33eb911794","sha512":"e849de055f401735066ad54010e80eb80d6122735a7d04492f51a2d9a1732b746aef33500d9c1cad975a873e2db24ef43796b7fdc18a5557ba858010a4d80d93","ssdeep":"","tlshash":"cae026a8f94a2142b39391231bba108d98ba364358eb30842132e301391271c33b28c4","size":320,"data":"","first_seen":"2026-03-03T18:57:56.211656Z","last_seen":"2026-03-03T19:25:09.151118Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m2s8j.r.ag.d.sendibm3.com/mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL","fqdn":"m2s8j.r.ag.d.sendibm3.com","domain":"sendibm3.com","tld":"com"},"ip":{"addr":"1.179.112.197","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"France","country_code":"FR"},"introduction_type":"eventHandler","is_inline":false,"md5":"420204d4378453af37a48fd67bb5fb6b","sha1":"0bbb949cdbddbf3fe4c45bb5d369c41a2ade3620","sha256":"e9095c91e9ef4f62984933b3b2093409ca5138f47cb39f3d76d16aa57fd38020","sha512":"25d162984205b9946e158449d737853711dcad607522c5b82d4bc020066977984c7dcd993ad01672298d43c139482b2dcbdf3fd30da7715a74b330ee91c67fd8","ssdeep":"","tlshash":"527000c03000f0000c030333000000fc0c3030c300f3300cc0000c00f03000003f3030","size":18,"data":"","first_seen":"2023-05-19T12:31:35Z","last_seen":"2026-04-04T12:13:14.935892Z","times_seen":8121,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sibautomation.com/cm.html?id=10503217#trans=0\u0026user_id=1","fqdn":"sibautomation.com","domain":"sibautomation.com","tld":"com"},"ip":{"addr":"141.101.90.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9a39c9da5f5aa02ec4969dca7ecd5491","sha1":"7b1d3d072126085ced54b6b9174409cdf9f084ff","sha256":"ca1eb6fc0ec5a3e2852ce05ecfce703f7048cb21a5a4fa069f61e2e17beb3e41","sha512":"7d2606932ee763cd4953896aade98b5395e620f12852df8a4d4e05c13809b627fde84f7644a82e12f07a7285085cfc9a16a39094f58e4c674e03332b51b70a8e","ssdeep":"","tlshash":"8e415400a3605039450770a8cf9f964dee7c1a521132e115f10ce8d89ef89ae46ff9fe","size":2327,"data":"","first_seen":"2026-03-03T18:57:56.216158Z","last_seen":"2026-03-03T19:25:09.152579Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"m2s8j.r.ag.d.sendibm3.com/mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL","fqdn":"m2s8j.r.ag.d.sendibm3.com","domain":"sendibm3.com","tld":"com"},"ip":{"addr":"1.179.112.197","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T19:24:46.933Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.r.ag.d.sendibm3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 23:02:03 GMT","end":"Sat, 30 May 2026 23:02:02 GMT"},"fingerprint":{"sha1":"C2:B8:B4:0B:8F:D5:89:48:8A:B6:62:5A:5A:A9:1D:FC:82:C7:14:63","sha256":"40:C0:73:D4:D2:7B:2D:3C:45:36:6D:3B:F8:CF:CE:90:9E:51:16:D2:D2:B5:0F:8B:CD:A6:BE:17:1C:A9:C3:AF"}}},"request":{"raw":"GET /mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL HTTP/1.1\r\nHost: m2s8j.r.ag.d.sendibm3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=utf-8\r\ndate: Tue, 03 Mar 2026 19:24:47 GMT\r\nx-content-type-options: nosniff\r\nx-sib-server: gke-public-cluster-v2-1-179-112-136\r\nx-xss-protection: 1\r\ncontent-length: 728\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":728,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"422d644ecb231c4ba46636cc755f3bf3","sha1":"1171436eb878050821ba92f00bddf270e9c1f6bf","sha256":"4cb02aad995ec38f2425e51f26f5d2fce30f29ca2c3e410c2bc743d4ff2ec089","sha512":"4d96c02e7b978a62226b436bac31ae157066b4e607d8d67ffd3820516d396ffe552353bd92469b34ed0c446d79e23777aa4eb39cfdbc2e3897812f70c969ed53","ssdeep":"","tlshash":"9001c0d8bd8112127362525319fa30dd68f7364724db68902171e312bf6276cb7f36d4","first_seen":"2026-03-03T18:57:56.195393Z","last_seen":"2026-03-03T19:25:09.147235Z","times_seen":2,"resource_available":true,"data":null}},"time_used":365,"timings":{"blocked":141,"dns":80,"connect":29,"send":0,"wait":69,"receive":0,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"visioninsightcenter.org/ccce9fdd418a9f444094/c9f691aead0e2abd11","fqdn":"visioninsightcenter.org","domain":"visioninsightcenter.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T19:24:47.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"visioninsightcenter.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 27 Jan 2026 15:45:48 GMT","end":"Mon, 27 Apr 2026 16:44:13 GMT"},"fingerprint":{"sha1":"9B:C8:0B:DC:24:AD:91:2D:75:D0:B8:BF:8E:AC:FC:93:3C:65:6D:C2","sha256":"92:0C:C6:1B:AD:2C:46:F7:D4:3B:7F:DD:74:C4:BF:82:D7:51:6E:DE:C2:46:4C:63:58:E7:97:9B:BA:0C:FE:60"}}},"request":{"raw":"GET /ccce9fdd418a9f444094/c9f691aead0e2abd11 HTTP/1.1\r\nHost: visioninsightcenter.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 03 Mar 2026 19:24:48 GMT\r\ncontent-type: text/html\r\nlocation: http://expedated.com/?a=2373\u0026c=43621\u0026p=r\u0026s1=Comcast_Sanjip\r\nserver: cloudflare\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6IgM46xBZaOqhslpuhu5ggQcl4Ap%2FY8UHaRSebXx1r%2FqzjivvNqWsjB%2Fpy81cYLRsML6%2B7wGYz8wPrYWTTHbFrANmov978wM4WW2Y4QyudKMoX2F8iaT\"}]}\r\ncf-ray: 9d6b05fe5b85ea60-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]}],"data":{"size":644,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T12:49:17.462299Z","times_seen":13332134,"resource_available":true,"data":null}},"time_used":695,"timings":{"blocked":61,"dns":10,"connect":8,"send":0,"wait":575,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"expedated.com/?a=2373\u0026c=43621\u0026p=r\u0026s1=Comcast_Sanjip","fqdn":"expedated.com","domain":"expedated.com","tld":"com"},"ip":{"addr":"54.68.22.37","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T19:24:48.326Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /?a=2373\u0026c=43621\u0026p=r\u0026s1=Comcast_Sanjip HTTP/1.1\r\nHost: expedated.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\ndate: Tue, 03 Mar 2026 19:24:48 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 170\r\ncache-control: private\r\nlocation: http://iconicweekly.com/?a=2373\u0026s1=Comcast_Sanjip\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nset-cookie: sid=HXfyLirjFnz3QtOtzbUrU1tphLhBvW2ofaqaduSOX2BU57j0uFC85g==; domain=.expedated.com; path=/; HttpOnly\ntrk=v4779T+5JUgD25MQGTxMnVtphLhBvW2ofaqaduSOX2BU57j0uFC85g==; domain=.expedated.com; expires=Fri, 03-Mar-2028 19:24:48 GMT; path=/; HttpOnly\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":644,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T12:49:17.462299Z","times_seen":13332134,"resource_available":true,"data":null}},"time_used":644,"timings":{"blocked":193,"dns":25,"connect":170,"send":0,"wait":255,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iconicweekly.com/?a=2373\u0026s1=Comcast_Sanjip","fqdn":"iconicweekly.com","domain":"iconicweekly.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T19:24:48.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iconicweekly.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 00:52:08 GMT","end":"Sun, 24 May 2026 01:47:26 GMT"},"fingerprint":{"sha1":"BA:44:9D:16:AA:C9:41:29:2C:49:98:40:A2:8E:E1:28:69:53:85:70","sha256":"5A:12:59:A2:4A:23:C0:5F:80:5E:94:E2:EE:F2:39:9C:F9:A2:78:36:0A:A3:4B:1E:B5:8F:E5:F9:82:B8:84:56"}}},"request":{"raw":"GET /?a=2373\u0026s1=Comcast_Sanjip HTTP/1.1\r\nHost: iconicweekly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 03 Mar 2026 19:24:48 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Mon, 24 Mar 2025 17:30:19 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DF0fiWC70PWjkiWMFlPYYpmo4cnaWCVkSDd95eflXGqnvKHI%2BUAoWj%2BNIaJuxn%2Bi8Yy7UnrKSSoV1WeXxIZE0uVs%2BZ0wVNtLhfiq9SPFPWU%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9d6b06056c518a33-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":644,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"f1da15e2d3157a491cfbd462df487a73","sha1":"85f219b931657ece1ca2488fc9c6d77973fe3a87","sha256":"643a4c7058761112a12b3ec30f21e4d44050075db92548eaee0c8b8036702ab7","sha512":"0b5c12ec0e3e893e290ad481a76a9fda8e5d8912b5c240280e9f3a30dadd7ed14bc58d3373bfc0af967f003d57ba606d2291c9db57985e1257548208c0c1cad4","ssdeep":"","tlshash":"ecf023aa8f0e0605301443c84d5567d5418e449bd54f0ed07c46a478edc6816c45b3dc","first_seen":"2025-05-30T23:39:20.861245Z","last_seen":"2026-04-01T19:54:24.273276Z","times_seen":776,"resource_available":true,"data":null}},"time_used":216,"timings":{"blocked":40,"dns":0,"connect":8,"send":0,"wait":134,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"iconicweekly.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iconicweekly.com/favicon.ico","fqdn":"iconicweekly.com","domain":"iconicweekly.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iconicweekly.com/?a=2373\u0026s1=Comcast_Sanjip","date":"2026-03-03T19:24:49.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"iconicweekly.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 00:52:08 GMT","end":"Sun, 24 May 2026 01:47:26 GMT"},"fingerprint":{"sha1":"BA:44:9D:16:AA:C9:41:29:2C:49:98:40:A2:8E:E1:28:69:53:85:70","sha256":"5A:12:59:A2:4A:23:C0:5F:80:5E:94:E2:EE:F2:39:9C:F9:A2:78:36:0A:A3:4B:1E:B5:8F:E5:F9:82:B8:84:56"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: iconicweekly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iconicweekly.com/?a=2373\u0026s1=Comcast_Sanjip\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 502 Bad Gateway\r\ndate: Tue, 03 Mar 2026 19:24:49 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 6417\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nreferrer-policy: same-origin\r\nx-frame-options: SAMEORIGIN\r\npriority: u=6,i=?0\r\nserver: cloudflare\r\ncf-ray: 9d6b06074b208b20-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"502","status_text":"Bad Gateway","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6417,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (396)","md5":"abb51c3a741361836df71b1c47c118dc","sha1":"1d5535258e986413fa87a67e467fb3355b27c861","sha256":"94aea15e6967247b1f3e0cdcbad0e77e0fe6475b3c27ce8cfb4616e8f56735c6","sha512":"a851ec75bbe2536eb3fa2ca906c2c56947dd9724a5a8197af4a757221c73f1fea6d822007de80e2221b2aba3b257f6a9a5f5af8ce837dd80ab84eef8a55209c7","ssdeep":"96:1j9jwIjYjVDK/D9KUn5G4Fh8/G4FZ54424Fw+skKmtmniz7RLlWaQxP:1j9jhjYjRK/Br5eRx6VMnz71lxeP","tlshash":"4ed15371b1f512b610a3829236a5eb5a79e0c213cbef4594b3ddc2731f9ee86a903194","first_seen":"2026-03-03T19:25:09.149317Z","last_seen":"2026-03-03T19:25:09.149317Z","times_seen":1,"resource_available":false,"data":null}},"time_used":118,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":117,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"iconicweekly.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sibautomation.com/cm.html?id=10503217#trans=0\u0026user_id=1","fqdn":"sibautomation.com","domain":"sibautomation.com","tld":"com"},"ip":{"addr":"141.101.90.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://m2s8j.r.ag.d.sendibm3.com/mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL","date":"2026-03-03T19:24:47.352Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sibautomation.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 19:48:31 GMT","end":"Sun, 19 Apr 2026 20:48:28 GMT"},"fingerprint":{"sha1":"E5:38:8E:BA:CB:36:47:5D:3F:35:75:12:30:1C:50:A8:46:80:A1:F3","sha256":"BA:9F:CE:01:EF:FE:FF:ED:4E:57:76:B9:6D:1B:0A:EC:13:E9:10:A1:B6:0C:16:F6:02:2C:02:21:71:AC:88:A8"}}},"request":{"raw":"GET /cm.html?id=10503217 HTTP/1.1\r\nHost: sibautomation.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m2s8j.r.ag.d.sendibm3.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 03 Mar 2026 19:24:47 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: gzip\r\nx-powered-by: Sails \u003csailsjs.com\u003e\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-envoy-upstream-service-time: 11\r\nage: 17895\r\nexpires: Tue, 03 Mar 2026 21:24:47 GMT\r\ncache-control: public, max-age=7200\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\ncf-ray: 9d6b05fcdf19f184-CDG\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Sails.js","description":"","website":"https://sailsjs.org","common_platform_enumeration":"","icon":"Sails.js.svg","categories":["Web frameworks"]},{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2429,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (512)","md5":"5cf90ba8804e8d6542617645f8bb6ae8","sha1":"a30c5a8e10ac58bb51362ee48a8da6b035dcbd43","sha256":"464c326e2892591362eb82aba7204df9c3c8ae93abd73f5ae5f7dead3ea9855f","sha512":"e28c60fa869860c12a8ae33673a21fffe87bc817cfad0d6e52878d410f7c2ebe154388ee6fc61036e83ef2b58dadaf3fc7c72902a9507efb2908d4156854edd2","ssdeep":"","tlshash":"b141540463505039450370a4cf9f964ded7c1a521172d114f20ce8e89ee8aae46ff9fd","first_seen":"2026-03-03T18:57:56.207205Z","last_seen":"2026-03-03T19:25:09.15035Z","times_seen":2,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":123,"dns":33,"connect":1,"send":0,"wait":52,"receive":0,"ssl":90},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"sibautomation.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m2s8j.r.ag.d.sendibm3.com/favicon.ico","fqdn":"m2s8j.r.ag.d.sendibm3.com","domain":"sendibm3.com","tld":"com"},"ip":{"addr":"1.179.112.197","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m2s8j.r.ag.d.sendibm3.com/mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL","date":"2026-03-03T19:24:47.364Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.r.ag.d.sendibm3.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 01 Mar 2026 23:02:03 GMT","end":"Sat, 30 May 2026 23:02:02 GMT"},"fingerprint":{"sha1":"C2:B8:B4:0B:8F:D5:89:48:8A:B6:62:5A:5A:A9:1D:FC:82:C7:14:63","sha256":"40:C0:73:D4:D2:7B:2D:3C:45:36:6D:3B:F8:CF:CE:90:9E:51:16:D2:D2:B5:0F:8B:CD:A6:BE:17:1C:A9:C3:AF"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: m2s8j.r.ag.d.sendibm3.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m2s8j.r.ag.d.sendibm3.com/mk/cl/f/sh/1f8JIKXwHGYox0GpK5hxAySfZp/g-ibdF3gZ_xL\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-type: image/x-icon\r\ndate: Tue, 03 Mar 2026 19:24:47 GMT\r\netag: \"68123390-0\"\r\nlast-modified: Wed, 30 Apr 2025 14:28:32 GMT\r\nserver: nginx\r\nx-content-type-options: nosniff\r\nx-sib-server: gke-public-cluster-v2-1-179-112-142\r\nx-xss-protection: 1\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T12:49:17.462299Z","times_seen":13332134,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"in-automate.brevo.com/cm?uuid=67165b79-7276-4d02-ae37-2ad9fe6b6413\u0026client_id=10503217\u0026trans=0\u0026user_id=1","fqdn":"in-automate.brevo.com","domain":"brevo.com","tld":"com"},"ip":{"addr":"172.64.150.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://sibautomation.com/cm.html?id=10503217#trans=0\u0026user_id=1","date":"2026-03-03T19:24:47.639Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"brevo.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 13:27:16 GMT","end":"Sun, 03 May 2026 14:27:12 GMT"},"fingerprint":{"sha1":"C3:B1:80:7F:0F:74:59:56:50:71:7E:70:34:C6:A6:E8:41:B8:E6:55","sha256":"CA:A4:3C:68:B2:F4:0D:44:4F:4C:30:79:3B:44:B6:D2:FC:ED:C0:7E:F9:3E:9F:AD:15:A2:58:91:D5:CA:0F:E7"}}},"request":{"raw":"GET /cm?uuid=67165b79-7276-4d02-ae37-2ad9fe6b6413\u0026client_id=10503217\u0026trans=0\u0026user_id=1 HTTP/1.1\r\nHost: in-automate.brevo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://sibautomation.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://sibautomation.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Tue, 03 Mar 2026 19:24:47 GMT\r\ncf-ray: 9d6b05fe0909c272-OSL\r\naccess-control-allow-origin: *\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T12:49:17.462299Z","times_seen":13332134,"resource_available":true,"data":null}},"time_used":230,"timings":{"blocked":44,"dns":22,"connect":1,"send":0,"wait":141,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"iconicweekly.com/?a=2373\u0026s1=Comcast_Sanjip","fqdn":"iconicweekly.com","domain":"iconicweekly.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T19:24:48.792Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /?a=2373\u0026s1=Comcast_Sanjip HTTP/1.1\r\nHost: iconicweekly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Tue, 03 Mar 2026 19:24:48 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nLocation: https://iconicweekly.com/?a=2373\u0026s1=Comcast_Sanjip\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lq0%2BMoA6%2F7prq6EXiR2GQ3PsDLeO10JyzNlUQGPaDx3Y7Pa2dynvfCpSXFfjWTluhSmBdwKeLrSsPGTTllHztGE%2F27BrrzPnI%2FgrDcm13BU%3D\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9d6b0605088a1243-ARN\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":644,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T12:49:17.462299Z","times_seen":13332134,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":8,"dns":0,"connect":8,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-03","alert":"Sinkholed","trigger":"iconicweekly.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}