{"report_id":"06a35014-bedc-4a99-820f-3fc1d5a4101e","version":6,"status":"done","tags":[],"date":"2026-03-27T15:20:05Z","url":{"schema":"https","addr":"edexpress24.com/","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":0,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"final":{"url":{"schema":"https","addr":"edexpress24.com/","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"title":"Cheap Online Pharmacy - edexpress24.com","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"edexpress24.com/","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":0,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-01T15:20:05Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"edexpress24.com","ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"domain_registered":"2025-04-07","domain_rank":0,"first_seen":"2025-07-16T13:20:16.710063Z","last_seen":"2025-08-04T21:48:05.964287Z","alert_count":220,"request_count":55,"received_data":2409336,"sent_data":80262,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.6.3","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery Migrate:1.2.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"true-serv.net","ip":{"addr":"80.82.76.51","port":443,"asn":202425,"as":"IP Volume inc","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-10-06","domain_rank":0,"first_seen":"2025-12-13T11:37:48.212658Z","last_seen":"2026-03-26T10:42:56.804091Z","alert_count":0,"request_count":3,"received_data":6669,"sent_data":1497,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"edexpress24.com/design_12/js/app.js?v=1764598224","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"b9743db83dc04515529d5166f3d814eb","sha1":"a29e40b793fc875877a4e1cba5ae442ef22479a0","sha256":"b1a5a5ade4d1039faf2c5384408fdc933b60f9f619104a8b8a3f1ea2bd3fc384","sha512":"39424180bbb9b4eb77fb9fe2939897866adfb722811952cbc1a005216e6696f3279fd76eb6f221f160726b152c9451c5cddef7cc008b55fdc40a62061d870cc8","ssdeep":"768:Yuo7Q3Mpoqo7Eu+REo0yY40ga06CeKGJPuWXS4oTlMEw453w4pp:Yuo7Q36oqo7E9REo0yAg3GrQ+S4aDw4H","tlshash":"4f13e89836f91d32417b61ae4acf82c63721800ba406fe5879ac76d81fccb6455f2be5","size":44137,"data":"","first_seen":"2025-12-07T12:22:08.39377Z","last_seen":"2026-04-25T09:43:43.642991Z","times_seen":29,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":true,"md5":"541ed2772de6bcef0b33845692c5ef10","sha1":"963644a266b0b1cbae52f604e96307da3bdcd4c9","sha256":"0a2cb16fa1d920fb2bc3ce4dfbf95a52547149eb3f2cd8a1ae901d0137d5c0f7","sha512":"3fbba2470189b408e6de0c70985cf065e2d17de23dd18549550f52bed82df1ff531684a89430f02a7146277c5548826895531fa51762f785cfc84538cf685954","ssdeep":"","tlshash":"43c02b7702238a020f348492f3c330c062409a0f2881e0c1f3ccc03a0b813134cee0cd","size":177,"data":"","first_seen":"2026-03-27T15:20:08.950736Z","last_seen":"2026-03-27T15:20:08.950736Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":true,"md5":"bda526d1660ab48d18b1accf22394b6a","sha1":"c3492fbd1b1653c37f7610b01b253830e149b419","sha256":"85fd490eeb200a87237a09c106a954533d7e2650629b249188604c3bdb506ec2","sha512":"3e949b2ef8d955cb548f1089b0c6b6ef35b0e581ad74084a6d41e9dce16efbd3c44a1e38c0c928d1fdc1b3f4b5f53d489f39ef18eb21b270f1ea3171f39fa0b5","ssdeep":"","tlshash":"e3b002ef561720ae41438066bf0bc1231321284b325bc28cf60c4364ffc278982cdacc","size":102,"data":"","first_seen":"2025-06-07T21:32:50.705276Z","last_seen":"2026-04-25T09:43:43.689483Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/vendor/jquery/autocomplete.js?v=1745330742","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"4a83ee758f381fcb405d73e13fe2ae8a","sha1":"fdcf9393c23a160f9a4d377d160a149aec3d89e6","sha256":"7713b1408c5ef697ee020a23d7da6177bd5763366abdbc79576a4f062cdcfbb7","sha512":"6c8afb86e7030a3944ec00a441634e762f03e0a268e361231ca38913a9c6f20223543c8a48fd31df5855b72e4b1faa671ce7ebf94cce47760a575c15f9640949","ssdeep":"192:YySfRwwCN6awOIo/I77iAsOAvMz56fvpbVTlciuv3Up7iGylbcev+fbEzoI:ZSfRwWaoIMF4bVTlcJkp7fylf+zEn","tlshash":"a37267e0f78d231e42ab31e9285d10cc523ce672568c4c57fd6859e861a4934b3fbea6","size":16227,"data":"","first_seen":"2024-10-21T00:13:46.129234Z","last_seen":"2026-06-15T04:51:45.554438Z","times_seen":408,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/vendor/intl-tel/js/intlTelInput.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"a97199470729279ec430a7030a57a339","sha1":"998a84f10a8be032e8b18d0704455f7f9d97a47e","sha256":"2bed97ed508285f2b959cf568bd242f5917946fbac3059a82ba1485ccb982d9c","sha512":"2cd915fa9b922aa3d497469c710024c5be02b7461aca99901cd5a2810ee340195d66821c352d450d5f47e98e3ba02b5d575a3cf7768c2f86f11bb073fefc1d3f","ssdeep":"768:A03rXNX+I4SAGFEMQAQBtDGRIRGDd624Nn33R:AWxmMQAQTD3GDduR","tlshash":"0bd2c7aaa32457376afd82a2b0f61643afaf35440a44182d7caccece1185ed371f5774","size":30816,"data":"","first_seen":"2025-03-21T07:58:29.582859Z","last_seen":"2026-06-15T04:51:45.589254Z","times_seen":95,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/js/all_js.js?v=1774015990","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"526b80725f7e7cfa033c92c66b05689f","sha1":"10cc319ef4b9c6ee1b6188f0749cca1337c9d813","sha256":"364166290d1ec48a36be6ef60dffa39f65ff095874b2f740a892bd921f8449fd","sha512":"80a6c2fcdb5a9f0a9c3b9242e1db6242081026c5c70b035bfb80f4b2f44b0dcc20300fb25ec06981c7b896736d37240bfe92759d74644783d5b1681ed01dc34d","ssdeep":"192:VrO4AOwEU6QymYOCoZT1OBD49sG8yrC6g40SCvr6iurCi1rqi4rKtrKyeriyVra7:V/iTtIz2lgE2Fgj","tlshash":"4142cc9575fa0c21d9b7a4796eff53412e3ca00b93819f09b41c1f81ef04668b972b8e","size":12697,"data":"","first_seen":"2026-03-22T08:01:15.427392Z","last_seen":"2026-03-27T16:19:41.007368Z","times_seen":86,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/vendor/jquery/init.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"c7194ed5223eaccafdda9cfbb6a9caea","sha1":"37850a6d03199052fc281fe6f9f2a6faab29420d","sha256":"b84685cac666ffcd5a8b89977731e3e6c6837c785f02fce5cf991560627fc568","sha512":"bd7d3793f69fcb3a4d6afc31457d2b93edb7f8d6acf7b2c15f0148df38f2f4fd44da61deb9c0b23c587b8b767d7f18a11bb99d3f276df2b9482c25c6467e1613","ssdeep":"","tlshash":"1c31832225e29152142b34bdcbef51053e29d0bf2e0db906751c8f904f9c63da271bc8","size":1702,"data":"","first_seen":"2025-08-21T00:00:44.598808Z","last_seen":"2026-06-15T04:51:45.588634Z","times_seen":339,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/js/jquery-migrate-1.2.1.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"eb05d8d73b5b13d8d84308a4751ece96","sha1":"743052320809514fb788fe1d3df37fc87ce90452","sha256":"1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d","sha512":"7b68a43a22a41404a2ff58e0da6a237492cad0fc3e56d216980802b4d5fb483895262a7e049340d6670002bdf899ba88c319239e60d0aae1ac31d98556b0ad6e","ssdeep":"96:tBySz91Gwyk35YrfBewIt9jKLKDs2SFNK7wIDBRANyCfVJ45NI:zySzvGw/35YbMx9jKLKD3UIDBR8VVUq","tlshash":"3fe196dc72aab5611ffa30a8503bd21b72b25aec140d95a4f08ccde5392cc5d413ab7e","size":7199,"data":"","first_seen":"2023-03-07T01:02:56Z","last_seen":"2026-06-17T09:33:30.277984Z","times_seen":23690,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"true-serv.net/static/statistics/assets/js/v1/main.js","fqdn":"true-serv.net","domain":"true-serv.net","tld":"net"},"ip":{"addr":"80.82.76.51","port":443,"asn":202425,"as":"IP Volume inc","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"04020a69985d942353d2aeaec0112470","sha1":"73e1822c26d4ef886c048c65052bf1d13ba4957a","sha256":"8acf451dabe760bc2b66653878b37e5bbf73532d10e6479e63d418d6b3d5b677","sha512":"f3774de158beb5224c1cc03b929476144de3405abf29abc46b3a224ee7c6dc4974b67e2914525cd21a92bd26601d22fb6e6f51fe806833af555bd289659bcd53","ssdeep":"96:epHkXUdPCYnaJ0fNArznF9FVqu4mhvIyRWDNCkZC2fFjTQT4znaOBnZdZyt:eFkXUdPCYn3fNGnVqu4kvIyY3VFjT6kE","tlshash":"f3b1c6d07992103507f41562817a1321b17a2f63b489e8e9f6bd0d973e32757e2fae4c","size":5554,"data":"","first_seen":"2025-12-10T09:05:26.236971Z","last_seen":"2026-06-15T04:51:45.576537Z","times_seen":261,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/vendor/custom-select/custom-select.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"ac121632acf1cc2b49ff26f1b3da7bda","sha1":"42c3e09c59fe089cedb0fcb28d6073a51b3bdd0c","sha256":"c8e9771a8657cb80d7be1c0ffb8107b9b2aa965d1b943e27c66827da9a71831a","sha512":"4ef5c7d87e616e5ef72ef4be512c8e6542cab995f55dc004398342de5807e73a1494310165d797a06ca78d2824dfd12042ce80c3c9fa327870b59eefc9f52db6","ssdeep":"192:27OVXnXefsxTuTPjmCjTTBPJCmSiTTJOfZnSnWisSSpvijbh/rm5bJmUQmI1cpjm:27OVXsgVi1ZbfRsbc6KTJ","tlshash":"d222e888335073f61ddf48fb81aea947b4b3dfa9d00a84a0641dcc9828e8d854177dbd","size":10717,"data":"","first_seen":"2023-10-17T14:06:08Z","last_seen":"2026-06-15T04:51:45.581206Z","times_seen":208,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":true,"md5":"02f377108df514c0374ce1bf6fd06562","sha1":"3c407078b1b5eaa8cb938ff30a9a8748c5c380d5","sha256":"deed873b4e2b1da98632e8620084c1d543d6b8957040305ce29ab496c9034b76","sha512":"a8b856d525d6ef1d4e57e16925045c2f6c5956eb09657bd026de6b57eb6ac0a4a4f6ba7054fc116487eaf5a09805ca2292fac50608ddee302ce12f39379cbb56","ssdeep":"","tlshash":"53510aa6023f5d0254548b9273c72b093001665f7780cbbabb9dcf668f43ad19db3a8d","size":3055,"data":"","first_seen":"2026-03-27T15:20:08.954547Z","last_seen":"2026-03-27T15:20:08.954547Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/vendor/jquery/jquery-3.6.3.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"30792621ca010e3c5d5f98162629439f","sha1":"9bc5b058a9e9fe3820484290bd0810681072e448","sha256":"448ef0632211ba18d7c1557a6d22250820ac3b4465ba2e73b7137f4dc4a31a12","sha512":"a11aa53ac62fbf37277796ffe2eb7d94c89ad60290861fa3acecf545d095ede4402c51399c6589956a002685cc31c2ff4854846c2719d280d69c9b33c3779f68","ssdeep":"1536:ENjxXU9rnxD9o5EZxkMVC6YLtg7HtDuU3zh8cmnPMEgWzJvBQUmkm4M5gPtcNRQA:EcqmCU3zhINzfmR4lb3e34UQ47GKb","tlshash":"039318ddb2c6b06247a770ba407f610ff236199d684d4400f169d8e9bc78a4a827bf7d","size":89946,"data":"","first_seen":"2023-03-13T14:09:05Z","last_seen":"2026-06-16T11:51:42.731863Z","times_seen":3135,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/vendor/just-validate.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"introduction_type":"scriptElement","is_inline":false,"md5":"5999ea06cbb02d9f509d7127f581ca57","sha1":"353b584854cfb425f4da8446734b1f5557d32eb2","sha256":"29d1548e149452387bacf862a93dc3049a1f63b90cb972d6091641d477734592","sha512":"9320ce7503b230e62b4dc62a4078e802091a4a8e5fe28f7495ffec44f1bcbe6aa56e4b1ded1824e5854992e11d52319596b70a866486a74b24eb33d5a5107090","ssdeep":"768:VkW++JZ/wbtODUsl8dJorXESRAwgJMgp81UuVvwnCByfDwty0HD/h7PCByCrCagl:mCCDSXrRAwgJMg5s5Y3gk56D","tlshash":"41d2d706267149234dd94aeae08b9543b3d0375da914a4ccf73decfb8a8dec630536b6","size":29666,"data":"","first_seen":"2024-10-04T14:22:46Z","last_seen":"2026-06-17T06:29:15.47883Z","times_seen":1297,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"edexpress24.com/","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-27T15:19:39.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nSet-Cookie: js_stat_aff_id=1957; expires=Sat, 27 Mar 2027 15:19:40 GMT; Max-Age=31536000; path=/; secure; samesite=lax\njs_stat_design_id=12; expires=Sat, 27 Mar 2027 15:19:40 GMT; Max-Age=31536000; path=/; secure; samesite=lax\ntm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; expires=Fri, 27 Mar 2026 17:19:40 GMT; Max-Age=7200; path=/; secure; samesite=lax\ntm_initial_referrer=no%20referrer; expires=Sat, 27 Mar 2027 15:19:40 GMT; Max-Age=31536000; path=/; secure; samesite=lax\ntm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; expires=Fri, 27 Mar 2026 17:19:40 GMT; Max-Age=7200; path=/; secure; samesite=lax\nXSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:40 GMT; Max-Age=7200; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:40 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.6.3","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery Migrate:1.2.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":1406170,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3341)","md5":"5df1a881aaf91f23de3aba9e1e175456","sha1":"1d6d8405ef343f6196edbee6c11cf1dda9525e47","sha256":"091e368b80c7152061f82865dd8085b8d913e31f9a802a581d5937dc470f56fc","sha512":"71a3f1987d03f90eb91fef9cc38d471826027f1a4aede2c0caeb502688f742fa8c6c431b6fcfb3fc4d61e29de4571a93e7249d1e2216b7584c5196799bd2e17c","ssdeep":"1536:q1NKXWxo7LT+/VdrxNSTmNfYju5WxvEyXEPaExTELaEtxERJElIEBUE1JE7JEPI+:yQmxoCJOx+mxou","tlshash":"be257a6344f1252b466295c316f9a724f8d24913eec0b241bbec15ea6fabd937b03c5c","first_seen":"2026-03-27T15:20:08.875746Z","last_seen":"2026-03-27T15:20:08.875746Z","times_seen":1,"resource_available":false,"data":null}},"time_used":744,"timings":{"blocked":98,"dns":49,"connect":23,"send":0,"wait":517,"receive":27,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/css/style.css?v=1773135806","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/css/style.css?v=1773135806 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: text/css\r\nContent-Length: 105557\r\nLast-Modified: Tue, 10 Mar 2026 09:43:26 GMT\r\nConnection: keep-alive\r\nETag: \"69afe7be-19c55\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":105557,"size_decoded":0,"mime_type":"text/css","magic":"Algol 68 source, Unicode text, UTF-8 text","md5":"b9da574812daf3a626392276832a3e81","sha1":"29eb0533d9ff58e813efda02f90384c367b24faf","sha256":"f9998c590311de6fb033cbd697118a034f173bdcf618c72d933119922cc8e008","sha512":"e93fba981f70c57d4b716ac88245732ca581492c13cd7aa8ae6105313abfa28a2e233ca598ef6c11c4aa8e6a8dcf76b16bacc1bb8cd4d6cf97132515ed0a369a","ssdeep":"1536:9dXA114WYrRF4QbeMMF1KbAK/acBeA2K213fpCTnGlxmkMR+cIOQotwJVah:9BjXYah","tlshash":"e7a36344a67226287877992c67db5ac8133cd403cc0edb9ebbd365188fce6d175a2b4c","first_seen":"2026-03-13T10:39:27.262093Z","last_seen":"2026-03-27T16:17:03.375143Z","times_seen":11,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":68,"dns":0,"connect":0,"send":0,"wait":23,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/vendor/jquery/jquery-3.6.3.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.568Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /vendor/jquery/jquery-3.6.3.min.js HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 89946\r\nLast-Modified: Tue, 22 Apr 2025 14:05:42 GMT\r\nConnection: keep-alive\r\nETag: \"6807a236-15f5a\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":89946,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"30792621ca010e3c5d5f98162629439f","sha1":"9bc5b058a9e9fe3820484290bd0810681072e448","sha256":"448ef0632211ba18d7c1557a6d22250820ac3b4465ba2e73b7137f4dc4a31a12","sha512":"a11aa53ac62fbf37277796ffe2eb7d94c89ad60290861fa3acecf545d095ede4402c51399c6589956a002685cc31c2ff4854846c2719d280d69c9b33c3779f68","ssdeep":"1536:ENjxXU9rnxD9o5EZxkMVC6YLtg7HtDuU3zh8cmnPMEgWzJvBQUmkm4M5gPtcNRQA:EcqmCU3zhINzfmR4lb3e34UQ47GKb","tlshash":"039318ddb2c6b06247a770ba407f610ff236199d684d4400f169d8e9bc78a4a827bf7d","first_seen":"2023-03-13T14:09:05Z","last_seen":"2026-06-16T11:51:42.731863Z","times_seen":3135,"resource_available":true,"data":null}},"time_used":121,"timings":{"blocked":70,"dns":0,"connect":0,"send":0,"wait":24,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/brands/brand-06-72w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.596Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/brands/brand-06-72w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 2344\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-928\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":2344,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fc3445316bb8ad006804efcbd4179cee","sha1":"10d7664355b353370414083d64586f3fc5df139a","sha256":"dfac89565f841c3f2065d97824c89b63478353eba4bad534c474e6f787f3bedd","sha512":"c20dad5eecd8cc756e7cace3a7ec53eb6eea407028b93decc414a62f3f5af55e238ec2f8cce1e56811a69f4780a0cdf44db7b2e5cd9865c5ba147bb484c0b52b","ssdeep":"","tlshash":"9d411a7e43a06604fc9dd9e43220271fb0eb9a13008c86788a6ba01cedf924f17167e1","first_seen":"2025-06-07T21:32:50.698555Z","last_seen":"2026-04-25T09:43:43.655244Z","times_seen":43,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":120,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/icons/cart.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/icons/cart.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 869\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-365\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":869,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7b052a4b61bd5e9fc591238c0dfd4184","sha1":"5560ea446cf0bf0d664cc2a299e80898fd7d1bcf","sha256":"24315f452583476ebcaa4f7fdb67bd543c78d926655081d8a9bab6657685bd23","sha512":"c91a67ae608e333a6c74a323b49c04fde7ec45017a4035abdb56af70bccf305799df86a0d96654d774aba95f5963926a6e831193b567e8826967018d2ba47cb1","ssdeep":"","tlshash":"ec11af7081eb9558811983e4ee1060303b0661f7dac94651f5ccabaaff2c88a451a9d4","first_seen":"2025-06-07T21:32:50.662398Z","last_seen":"2026-04-25T09:43:43.563718Z","times_seen":43,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":126,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/vendor/custom-select/custom-select.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.574Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/vendor/custom-select/custom-select.min.js HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 10717\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-29dd\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":10717,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (9042)","md5":"ac121632acf1cc2b49ff26f1b3da7bda","sha1":"42c3e09c59fe089cedb0fcb28d6073a51b3bdd0c","sha256":"c8e9771a8657cb80d7be1c0ffb8107b9b2aa965d1b943e27c66827da9a71831a","sha512":"4ef5c7d87e616e5ef72ef4be512c8e6542cab995f55dc004398342de5807e73a1494310165d797a06ca78d2824dfd12042ce80c3c9fa327870b59eefc9f52db6","ssdeep":"192:27OVXnXefsxTuTPjmCjTTBPJCmSiTTJOfZnSnWisSSpvijbh/rm5bJmUQmI1cpjm:27OVXsgVi1ZbfRsbc6KTJ","tlshash":"d222e888335073f61ddf48fb81aea947b4b3dfa9d00a84a0641dcc9828e8d854177dbd","first_seen":"2023-10-17T14:06:08Z","last_seen":"2026-06-15T04:51:45.581206Z","times_seen":208,"resource_available":true,"data":null}},"time_used":112,"timings":{"blocked":88,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/vendor/intl-tel/js/intlTelInput.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/vendor/intl-tel/js/intlTelInput.min.js HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 30816\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-7860\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30816,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (30454)","md5":"a97199470729279ec430a7030a57a339","sha1":"998a84f10a8be032e8b18d0704455f7f9d97a47e","sha256":"2bed97ed508285f2b959cf568bd242f5917946fbac3059a82ba1485ccb982d9c","sha512":"2cd915fa9b922aa3d497469c710024c5be02b7461aca99901cd5a2810ee340195d66821c352d450d5f47e98e3ba02b5d575a3cf7768c2f86f11bb073fefc1d3f","ssdeep":"768:A03rXNX+I4SAGFEMQAQBtDGRIRGDd624Nn33R:AWxmMQAQTD3GDduR","tlshash":"0bd2c7aaa32457376afd82a2b0f61643afaf35440a44182d7caccece1185ed371f5774","first_seen":"2025-03-21T07:58:29.582859Z","last_seen":"2026-06-15T04:51:45.589254Z","times_seen":95,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":91,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/js/all_js.js?v=1774015990","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.619Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /js/all_js.js?v=1774015990 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 12697\r\nLast-Modified: Fri, 20 Mar 2026 14:13:10 GMT\r\nConnection: keep-alive\r\nETag: \"69bd55f6-3199\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":12697,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"526b80725f7e7cfa033c92c66b05689f","sha1":"10cc319ef4b9c6ee1b6188f0749cca1337c9d813","sha256":"364166290d1ec48a36be6ef60dffa39f65ff095874b2f740a892bd921f8449fd","sha512":"80a6c2fcdb5a9f0a9c3b9242e1db6242081026c5c70b035bfb80f4b2f44b0dcc20300fb25ec06981c7b896736d37240bfe92759d74644783d5b1681ed01dc34d","ssdeep":"192:VrO4AOwEU6QymYOCoZT1OBD49sG8yrC6g40SCvr6iurCi1rqi4rKtrKyeriyVra7:V/iTtIz2lgE2Fgj","tlshash":"4142cc9575fa0c21d9b7a4796eff53412e3ca00b93819f09b41c1f81ef04668b972b8e","first_seen":"2026-03-22T08:01:15.427392Z","last_seen":"2026-03-27T16:19:41.007368Z","times_seen":86,"resource_available":true,"data":null}},"time_used":88,"timings":{"blocked":65,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/vendor/jquery/init.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /vendor/jquery/init.js HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 1702\r\nLast-Modified: Fri, 12 Sep 2025 11:45:18 GMT\r\nConnection: keep-alive\r\nETag: \"68c407ce-6a6\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":1702,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text","md5":"c7194ed5223eaccafdda9cfbb6a9caea","sha1":"37850a6d03199052fc281fe6f9f2a6faab29420d","sha256":"b84685cac666ffcd5a8b89977731e3e6c6837c785f02fce5cf991560627fc568","sha512":"bd7d3793f69fcb3a4d6afc31457d2b93edb7f8d6acf7b2c15f0148df38f2f4fd44da61deb9c0b23c587b8b767d7f18a11bb99d3f276df2b9482c25c6467e1613","ssdeep":"","tlshash":"1c31832225e29152142b34bdcbef51053e29d0bf2e0db906751c8f904f9c63da271bc8","first_seen":"2025-08-21T00:00:44.598808Z","last_seen":"2026-06-15T04:51:45.588634Z","times_seen":339,"resource_available":true,"data":null}},"time_used":99,"timings":{"blocked":76,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/dm-sans-bold.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/dm-sans-bold.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 28068\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-6da4\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":28068,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 28068, version 1.0","md5":"995e12dda65ab14204a34b641440a6c0","sha1":"4c190cb04ca8fee270fadfe1a8565bcbbbed962d","sha256":"68a4f10d3e7c90fcea246d1feb2069e4a146379bcf27e4a62a6ffade89ad713b","sha512":"3bc600160b4674a9e7a6c3771e4691a32244edd9032ac95b6c9d97af8a5dd96a91434bed9fc9d210b21fac753c7095a1178943cbafdffd5e7807dc0be798028d","ssdeep":"768:4vXJ4zEzzxh4fsLZIMvtNfqZGvZvBSn0khpOP9F:4RRMNMlps2RQn0ck9F","tlshash":"25c2e18eff692d1fe460546af48589648d7492602e3a29717f1c8bf3a3f0fc1d4291d1","first_seen":"2025-06-07T21:32:50.660566Z","last_seen":"2026-06-05T21:56:27.785543Z","times_seen":192,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":29,"dns":0,"connect":23,"send":0,"wait":46,"receive":1,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/svg/logo.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.582Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/svg/logo.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 28789\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-7075\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28789,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e4675c634c986e017db28fb5ff89137d","sha1":"03971db407202dffad54f4f8977f8cfe13b06d34","sha256":"a1b25e56bb7ebb80953661f5c822bc6af86a45d7fa24a210523729834a96a09b","sha512":"11487a2ba5ae36a46a03984394e5dea83cfa99f08041bf454da90cf55fc7486a2325ce3e189c4d8262ae929b4ad16336ddaf8f1cebfb833079f7b1606ff5611b","ssdeep":"384:B//ZsPY5nEfBgDtXCHjawzT4LSlIk3sOEcGAxsymiBLq3VGcFPiheH5U3uHlhmNo:BSA5uqJXCD9/IkCcLsymML4Boe6uFhr","tlshash":"33d2c7da73f9a3e0f406ffe49bd654393e2719fb7a21ce35c3665d50ba5209c4888850","first_seen":"2025-06-07T21:32:50.668888Z","last_seen":"2026-04-25T09:43:43.628519Z","times_seen":43,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":105,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/brands/brand-03-45w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/brands/brand-03-45w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1030\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-406\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1030,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"474b9255fe0b5824afb3201396bc5bbc","sha1":"ff8460a33b76d07352f57cc29e5eb4ae760df9ab","sha256":"519d44a38fa2346cd5ea5f29a8f19ace33ec9764a2f53ca57dbaaed0003e02a9","sha512":"5a05e4a337257f390eaf39a866da56c1a3b0a00e4bef9fa79ff3e9f82264224372e2911d3418300d40718f60ccc611cc8cc066fcae33ffbc8b2cb94395eb53d4","ssdeep":"","tlshash":"5511a8035996572cfc790b306917a0052475855f014f7813e8f06c3d220262f1299b8d","first_seen":"2025-06-07T21:32:50.64783Z","last_seen":"2026-04-25T09:43:43.607079Z","times_seen":43,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":118,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/pub_images/checkup_img/black/checkup_big.png","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /pub_images/checkup_img/black/checkup_big.png HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nContent-Type: image/png\r\nContent-Length: 12139\r\nLast-Modified: Tue, 22 Apr 2025 14:05:42 GMT\r\nConnection: keep-alive\r\nETag: \"6807a236-2f6b\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":12139,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 80, 8-bit colormap, non-interlaced","md5":"06cc1105ba68975b392e42c4a9b66a24","sha1":"d7f9867342ce0ad888be264336ca93b56ee3b1f5","sha256":"a679858039ff003c97b3641ab43c4365c09bd42884c8bd933a9ad7020028b163","sha512":"6c9fbeeac9922e373a78e6d6b7a16572960ea19e7aed9d3b4cc93c51a2d3858fea9baa612ba4c74b6c0515721e302fc901e5bf56fc71cbf5a2abe7203ead3b01","ssdeep":"192:ESVEpMJDXLbTAdq8D/DHja7LBnZsQJrWd8lSqEByWyCaWS8PaHZz/Q7ELULg:D+pOzfUdhLDHWJn5rWdqE8Bb8PYtpULg","tlshash":"9042c05a0d51a4ea2eb619c0ca11508c987a4c093e3cbc849eb0b683113ff4dd5d886f","first_seen":"2025-11-22T18:20:55.563283Z","last_seen":"2026-04-25T09:43:43.580578Z","times_seen":30,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/brands/brand-05-56w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.594Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/brands/brand-05-56w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1688\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-698\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1688,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"dbc95f6e403410d9314b5419cbed1007","sha1":"be31ed0da6970d6794f2d23301ccab4de79ba653","sha256":"ce68be1d38e08ae7e2476fa4eac79fd0d9421d24e05ba857ed9694db212320c4","sha512":"3bc7f4154aceabbafd424b852171a7d64425c3be38761298161fa6928a5ec57172c1ae41158f24401144668cd0ba291569e7b5935f00f27ed9a4520ac76f9caf","ssdeep":"","tlshash":"a831fabba2341c31ce11d539291759d3067731980afa9ea77340852ac25e7eab4c09c8","first_seen":"2025-06-07T21:32:50.670467Z","last_seen":"2026-04-25T09:43:43.678Z","times_seen":43,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":120,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"true-serv.net/static/statistics/assets/js/v1/main.js","fqdn":"true-serv.net","domain":"true-serv.net","tld":"net"},"ip":{"addr":"80.82.76.51","port":443,"asn":202425,"as":"IP Volume inc","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"true-serv.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 13:15:53 GMT","end":"Wed, 03 Jun 2026 13:15:52 GMT"},"fingerprint":{"sha1":"CD:01:B7:7F:21:FE:96:66:7D:02:F7:1B:BC:08:1D:32:48:41:BC:21","sha256":"2D:88:2A:C5:A0:C1:8E:AD:EB:AD:D0:C8:C4:38:DC:CA:C9:AB:42:BF:AB:F9:8A:4A:7B:39:40:F0:93:64:A9:ED"}}},"request":{"raw":"GET /static/statistics/assets/js/v1/main.js HTTP/1.1\r\nHost: true-serv.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nCache-Control: no-cache\r\nContent-Type: application/javascript; charset=utf-8\r\nEtag: W/\"f9a74312-5554-gzip\"\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nX-Xss-Protection: 1; mode=block\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 2364\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5554,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5553)","md5":"04020a69985d942353d2aeaec0112470","sha1":"73e1822c26d4ef886c048c65052bf1d13ba4957a","sha256":"8acf451dabe760bc2b66653878b37e5bbf73532d10e6479e63d418d6b3d5b677","sha512":"f3774de158beb5224c1cc03b929476144de3405abf29abc46b3a224ee7c6dc4974b67e2914525cd21a92bd26601d22fb6e6f51fe806833af555bd289659bcd53","ssdeep":"96:epHkXUdPCYnaJ0fNArznF9FVqu4mhvIyRWDNCkZC2fFjTQT4znaOBnZdZyt:eFkXUdPCYn3fNGnVqu4kvIyY3VFjT6kE","tlshash":"f3b1c6d07992103507f41562817a1321b17a2f63b489e8e9f6bd0d973e32757e2fae4c","first_seen":"2025-12-10T09:05:26.236971Z","last_seen":"2026-06-15T04:51:45.576537Z","times_seen":261,"resource_available":true,"data":null}},"time_used":125,"timings":{"blocked":30,"dns":0,"connect":27,"send":0,"wait":31,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/svg/icons/sprite.svg?t0q3xoa5","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.752Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/svg/icons/sprite.svg?t0q3xoa5 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 44850\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-af32\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":44850,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"40edc2ff63296c6ea1efa52d89fc6600","sha1":"646246bc6aa359c8a4caea6b9ca6810f70c663a2","sha256":"e53199d5870616e4016bf693c80dbe5da87670152bd9176498b8c8c237036998","sha512":"7335f941882d47d42994f429c1b135e22a5ee4d225c7531d41093f24e86129118f9028d2ee3ba02cf6aea4b7c5268dcae18589de93bd21bab648a2e7ecdfa439","ssdeep":"768:8YnZcuRbydeCBu+ItkBez3rEwz3rEgQaL:WlBu76ubRbtQA","tlshash":"a013b9f6a3e8a3d4d543dbb5ee277060717f34fb3bd5cb4482a45a90aa2505d898dcc0","first_seen":"2025-06-07T21:32:50.638439Z","last_seen":"2026-04-25T09:43:43.611061Z","times_seen":43,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/svg/icons/search.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.793Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/svg/icons/search.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/design_12/css/style.css?v=1773135806\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 446\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-1be\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":446,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c51de86166504c3992f99e206d122865","sha1":"c8b26291f87a0788d19e6f2c1147556c7a5cab52","sha256":"57c238e0dd094fd8828705e36725997a921c4976160c8460c0b2c0fc788b2902","sha512":"53fc327b29384e012a2c0ce350494a95784dde1095a29ed2c9b52514b8e8c32d2b77db476998e4b1d21867f6d665704d57ecaef0419340b35e91b8d1c29ba695","ssdeep":"","tlshash":"7cf0e5ba53a9ccacbe930768e78332b6e0ab603304442bd884729539d56514e6d3bddc","first_seen":"2025-06-07T21:32:50.645251Z","last_seen":"2026-04-25T09:43:43.637616Z","times_seen":43,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"true-serv.net/statistics/v1/collect/visit","fqdn":"true-serv.net","domain":"true-serv.net","tld":"net"},"ip":{"addr":"80.82.76.51","port":443,"asn":202425,"as":"IP Volume inc","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.782Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"true-serv.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 13:15:53 GMT","end":"Wed, 03 Jun 2026 13:15:52 GMT"},"fingerprint":{"sha1":"CD:01:B7:7F:21:FE:96:66:7D:02:F7:1B:BC:08:1D:32:48:41:BC:21","sha256":"2D:88:2A:C5:A0:C1:8E:AD:EB:AD:D0:C8:C4:38:DC:CA:C9:AB:42:BF:AB:F9:8A:4A:7B:39:40:F0:93:64:A9:ED"}}},"request":{"raw":"POST /statistics/v1/collect/visit HTTP/1.1\r\nHost: true-serv.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nContent-Type: application/json\r\nContent-Length: 758\r\nOrigin: https://edexpress24.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":758,"data":"{\"schema_version\":\"aff_pageview/1.0.0\",\"sdk_version\":\"aff-collector-js/0.1.0\",\"event_id\":\"d5f79fac-c3d0-4040-a805-65b753615fd2\",\"event_type\":\"pageview\",\"client_ts\":\"2026-03-27T15:19:41.636Z\",\"visit_id\":\"cd541dff-b89d-4c7b-ad51-07cfab5c13c9\",\"session_id\":\"05bfc6cd-ccba-49f0-a3ba-1d91b814398c\",\"is_uniq\":true,\"landing_url\":\"https://edexpress24.com/\",\"referrer_url\":\"no referrer\",\"aff_id\":\"1957\",\"click_id\":null,\"utm_source\":null,\"utm_medium\":null,\"utm_campaign\":null,\"utm_term\":null,\"utm_content\":null,\"network_click_id\":null,\"sub1\":null,\"sub2\":null,\"sub3\":null,\"sub4\":null,\"sub5\":null,\"sub6\":null,\"sub7\":null,\"sub8\":null,\"sub9\":null,\"sub10\":null,\"store_theme\":\"12\",\"keyword\":null,\"language\":\"en-US\",\"tz_offset_min\":0,\"screen_w\":1280,\"screen_h\":1024,\"dpr\":24}"}},"response":{"raw":"HTTP/1.1 202 Accepted\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nAccess-Control-Allow-Origin: *\r\nContent-Type: text/plain; charset=UTF-8\r\nVary: Origin\r\nX-Request-Id: aNqBcyctdAOGgkxxjDgEjWfYTksXszvV\r\nContent-Length: 8\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"Accepted","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":8,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"382ab522931673c11e398ead1b7b1678","sha1":"61a0572c4893ef34311320d84c82df88bea83e11","sha256":"a00fb0c50741f81bb51d35b4475a4357f8039aabd896a21036bc516839401595","sha512":"685c859b43ec0b2f873fb61ff4c48b3748ede3e31bdda719b69b528546f7a1d528216146db9626d1a411dccdd13f3fd155f3d62d3e2ec8090c71f6710ee60641","ssdeep":"","tlshash":"455000003c0000c0000000c000000000c0000000000000c0c000000000c0c000000000","first_seen":"2023-04-11T14:35:59Z","last_seen":"2026-06-15T20:53:50.863889Z","times_seen":2447,"resource_available":true,"data":null}},"time_used":171,"timings":{"blocked":-1,"dns":3,"connect":41,"send":0,"wait":42,"receive":0,"ssl":52},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/dm-sans-medium.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.548Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/dm-sans-medium.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 28348\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-6ebc\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28348,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 28348, version 1.0","md5":"5f329ae2894ac01d1caf5b8b05752845","sha1":"3aa47673b97b9bfea0675fa989206f74dac28909","sha256":"385c1539412c73ce1e6d04894d0bd4dfba3e9d359f9bfd38eade6feafcf55d7b","sha512":"e6c63ccddae014c0ccdb619c0a561fffe41db29aad69400a575e1dfc3b3a180ffdcff7bac59b4719be7f9b9ef92db3585b1af3dfc2d333eafbe0d7f14fc1361b","ssdeep":"768:cYqmj0wVQq1BNwLLF+CYlzIqIshhfRKk9:cxmowVQE3Gx1E81shhfz","tlshash":"ccd2e140e6c492d7931c291d686efb1bd2f8d3f96a57c6084c8f819ebfde6414653242","first_seen":"2025-06-07T21:32:50.658594Z","last_seen":"2026-05-16T03:12:47.814383Z","times_seen":48,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/neue-machina-regular.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.562Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/neue-machina-regular.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 12300\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-300c\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12300,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 12300, version 2.0","md5":"54ed5e054d44f4024cdabc5e5469111b","sha1":"a4cdfd26fde9f26d3a5928b4bb8886dd789b9aa3","sha256":"e4c59dabc94a930b58bef7f916176385e2fdf6aa1143fb46d819934a8b15cd0e","sha512":"bbd13d53aab004c46377e3ff41fcda1a24785b9285a42f447d9427dab62c61dafc0d1d840eb192361ed9b5296b99ad9fa60fe659b6d405066284869899acb587","ssdeep":"192:R0O4L+ojES03UHzxX+U6d7uSldfvATvwYhVCUhGK7+MQ3koMbE3zZ0YQaxF:R0O4L+oEAzx+JtTy0I77+XUY3zZEaX","tlshash":"b642cf6b7cee3d2fc2244a2679609ea5cea21dc237d7be2403a20d15ce581f0578360e","first_seen":"2025-03-21T07:58:29.563715Z","last_seen":"2026-04-28T10:03:55.089107Z","times_seen":75,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":15,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/js/jquery-migrate-1.2.1.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.573Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /js/jquery-migrate-1.2.1.min.js HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 7199\r\nLast-Modified: Fri, 12 Sep 2025 11:45:18 GMT\r\nConnection: keep-alive\r\nETag: \"68c407ce-1c1f\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7199,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (7085)","md5":"eb05d8d73b5b13d8d84308a4751ece96","sha1":"743052320809514fb788fe1d3df37fc87ce90452","sha256":"1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d","sha512":"7b68a43a22a41404a2ff58e0da6a237492cad0fc3e56d216980802b4d5fb483895262a7e049340d6670002bdf899ba88c319239e60d0aae1ac31d98556b0ad6e","ssdeep":"96:tBySz91Gwyk35YrfBewIt9jKLKDs2SFNK7wIDBRANyCfVJ45NI:zySzvGw/35YbMx9jKLKD3UIDBR8VVUq","tlshash":"3fe196dc72aab5611ffa30a8503bd21b72b25aec140d95a4f08ccde5392cc5d413ab7e","first_seen":"2023-03-07T01:02:56Z","last_seen":"2026-06-17T09:33:30.277984Z","times_seen":23690,"resource_available":true,"data":null}},"time_used":103,"timings":{"blocked":80,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/brands/brand-04-69w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/brands/brand-04-69w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1712\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-6b0\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1712,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6c75d38704a96a2aef310444abef6269","sha1":"ff2222d2fc6b33dc8578423a745ff0716cf1fbb6","sha256":"eb3aef01cf7add21255efb4e64e103ce1d77bff7703d00b3c45981ccdb88aa67","sha512":"a2c3a674453cb2c1645e8f0e14217c9f56e8d635c20508f4dee8bbfca06c0f9b9ea10171b89a40b0a34449f5addf8ac03391866b2de43cf0cf933e4814edae48","ssdeep":"","tlshash":"1e3108bc8b8e81e9af9b845b265e2411e8a9ad000b692646e05870c305a89229cd6c33","first_seen":"2025-06-07T21:32:50.680953Z","last_seen":"2026-04-25T09:43:43.635639Z","times_seen":43,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":122,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/pub_images/pay_icons/sprite_gray.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.753Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /pub_images/pay_icons/sprite_gray.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 78905\r\nLast-Modified: Tue, 22 Apr 2025 14:05:42 GMT\r\nConnection: keep-alive\r\nETag: \"6807a236-13439\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":78905,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"951ee74c618969f273027ba070046e8f","sha1":"f9fda0093309b2e1d4d4fee2f3efb85c0b815222","sha256":"830b2de54839a5a23be1ac976b2464d85b4c4988eefc1cbca3c5b0a8b30f8312","sha512":"f528110c23c43c6b7783662a02a21fda9df38b9dad93d8fbb465e75a897a7d4257bd5be96e8eceeb3f23810c4ca67715a6700bb1c4447a6fa710c0685d565efa","ssdeep":"768:OgdS8BtZ1d7wl6xKa2BnsXBIxJXcQWGrG8XkXX5PjfYRR3mWqwI1D+no83n7MMOt:OB61NXMsWxol8Un5SRWWZIl+nMcb0","tlshash":"9b7351e7a3e4b3e0e006e3f4d51694753aa738fe3626cb4947d46e91a75602d88cdcc2","first_seen":"2025-06-07T21:32:50.640593Z","last_seen":"2026-04-25T09:43:43.679631Z","times_seen":43,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/svg/icons/rating-star.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/svg/icons/rating-star.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/design_12/css/style.css?v=1773135806\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1032\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-408\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1032,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"64712299064da56d8259745749f2c517","sha1":"921aba40f3aeb856459f0f5ddbc237951a1ce2fd","sha256":"9709053c16d353e9bc4bcd8e5ec6bca589ea30c039072da319fc322fc568a92a","sha512":"c736279820ae2d682c0e9290d1ede6c945fcbeb965eaf7cb8f56f4dd36329a9a5972c97642548961b18ec89e62b68b421c377074d7e9462b20c01204ca343ecf","ssdeep":"","tlshash":"691175f6d248edf2f00de364c5278c0520a674f59ac743a14111db16e5230d36859ec4","first_seen":"2025-06-07T21:32:50.609668Z","last_seen":"2026-04-25T09:43:43.632988Z","times_seen":43,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/vendor/custom-select/custom-select.min.css","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.564Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/vendor/custom-select/custom-select.min.css HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: text/css\r\nContent-Length: 1324\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-52c\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1324,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (1322), with no line terminators","md5":"3c220b3aefc2c0241c3132b1b7bd362a","sha1":"1d079afa013e58983ad3032553edb1f891c5c8ab","sha256":"a8145b0eedd924967a8986742b4dd829c7dc67cee49515f348717613a9f4bc0a","sha512":"963f2932cfecf9404df7f9a664c7af3fbe64510aeec14cdb6a34c2a08e0893d6f6be807216fdac11ec8e9f8b95a1d18821288b1113fbe7d87900c0a8ae0e798b","ssdeep":"","tlshash":"df21ab249a2004bdb0afcebfdcc572c81523f721d0320aefb305ea9046c9d5e503255e","first_seen":"2024-12-01T02:55:35.566859Z","last_seen":"2026-06-15T04:51:45.568854Z","times_seen":159,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/icons/icons.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/icons/icons.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 16006\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-3e86\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":16006,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"574374eac8423e9f26aa69346163c9da","sha1":"5b9f2f3adfa1316f22f97b6db58f27a8638328ff","sha256":"aba7a1e783802b72a25d5634006025c490f5c182da5d2403e3ef92f86ad4e579","sha512":"4d479918efdca8f0459359f5f64d491fd9fd1f32fd193d300674d54a451eb7ca932586ae7b9da4bfa5fcc310350ed5b385d222877f93809f126a9afe216bb1cd","ssdeep":"192:0MzAs34mONmp/+hzq+Rh9meX66U5ydM60bLgGGUO/GsQG3MOv+:0wONmRembLgLxGA3MY+","tlshash":"8a7273faa39cd6cc94034b6afe353814763ea0fa36d1c894996d8be5d2618dcc907d90","first_seen":"2024-12-01T02:55:35.597864Z","last_seen":"2026-06-15T04:51:45.578447Z","times_seen":187,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/set_images/edexpress24_levitra","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /set_images/edexpress24_levitra HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6Ikh2N2kxN0l0UXlJNXdMQkRyV0tkMlE9PSIsInZhbHVlIjoiMnM5bjRoVU1PMUc0ZWZxMVdjUHhKbHo4TWI4OTNXa0dBV3hzeWdkRlZiQ0Y2d0ZkbkZLdkJPSjFHbzdnT25GdXF6YXJiYTd6dDRKbnFnbHluQk9pSkNQNU9iRGtFT0JVRGdzS3lwb0hyMEwvL2h4a3BaVTQzL2FVb2xMbEFHaGYiLCJtYWMiOiI3Nzk0OGMzYTM0OGE2ZTYyOTg2MDIxMDY0ZjIzNTE1Zjg5YTFhODQ1NmQ1YWI2ZjI1ZDA4MDhhMTc1OTM2OGRmIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6IndoTFhOa0NWUzQvck9TWU82N3laSEE9PSIsInZhbHVlIjoicjF4QitPTmp2cllERkNkcmNhaklqRDkxZzdSYURhbWlyQWx5MkpuYVpRN0xITVBPVTh3anNGUVAzUWNVZlg5ZVZMSTVNc3RPdWYxSFNOSE5hSHZDUkY4MUVrRlNIRFVYdlU2N256a2tCcnRvQXRjeDNwSDBLMFlHYmtHU0N4UmEiLCJtYWMiOiI3MzMzMTIwYjAyMDNjZDY3MGE3ZTBlZGMyYjIyNjkyNWNkYmI1MTk5NmZkODQ2ZjkxNTMxZDU2ZTczYzJjM2I2IiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12942,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"ed4416d2a5825d1471e94d2c0c185ec6","sha1":"d432f53bbc33cb819715dd423e59001acbff567c","sha256":"5c5aaa8440e8cbb13b6602dd5ecb61b8805a327c132f87fff0635ee2f7f78bfd","sha512":"d42af8f665f564245027595ad7bbe140319ccf0543955a01bcc6ea166de7fbb95033d838c7acbc63b12ec401328b7e78767adb040d02787e6003c692f429c0da","ssdeep":"384:pqc3OpZdRaluivDBEbDpzQHLZlj7eUTDbKHTCQZML2:pqc3OpvTek9OLHN3bAeVS","tlshash":"9642cf62573c0bc46fe86a965496a41c84e13ee07c1f1f9cbe34bef71e9878a2005e42","first_seen":"2025-07-16T13:20:19.202919Z","last_seen":"2026-03-27T15:20:08.90755Z","times_seen":5,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/set_images/edexpress24_rybelsus","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /set_images/edexpress24_rybelsus HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6IjVWWjZrS29TUDVUYzFpamR0YWhqbEE9PSIsInZhbHVlIjoiSGdIaTU5dk8velVwazZhZ2lBZFJMNm9GS2tCRUdkQVprb0N6RHJVTHN2VWJ6Mm41bGFjdEZZSSt2dTNWaWc5TFVtSzNQaG1vbHFVYnhsOXJyK0ZMYnhmeTNPM1dxOXR4b0VpVGloa3JvWHo0OXJRRG9tckZJYXNZWXZFSUlmUVoiLCJtYWMiOiIyZGI3MTllYTAwNGRmMDRkZGJkNmU2ZmNmNTE2OTQwY2I3YTBjZDAyNzZkMGE3NDVlZmQ5MDUyZTM1OTA2MDAzIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6Ikl0Rzk2RnlxSC9UdWhkV3lZRWE3dXc9PSIsInZhbHVlIjoieGZRV2NNdGMrUlVzVTBqVmRXWnVjTEtjMGk0a1ovaUFtZ0Q5bHJTNHRuTnVPNzd5cTBrMnpBN3loNzNubDdPWjFDTXhmS1lHYVFvZWJIdGZQUlFJMXJEV2lxTXNDQjduTVd3a0kzbC9pZElhbWJFeDhHYVJvT2I4a0wzS3NoOUYiLCJtYWMiOiI1ZjA4Mjg4M2JlMTc4Y2NmYzNjYzM4ZTRmMjMxODFjMzA1NzY1YTc0MDM4NGIyMjgyYjEwYjE0YzYzMzczZmRjIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":11402,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"edb44cda9512a92079c890cb029c43ef","sha1":"d10f0345c3988c8c7e9188dafbabe498c0d2c01b","sha256":"17c36ededd9f732b3e36a0ed6668c9d0b5fd32f97de312503da7839a7effc520","sha512":"517697d30a5e99c4989743c94f32cb1105adc6dee6b5638201a5edad3a412e627f41d498f002ac5243d63b28bb7d7277f360f7afbdaf1ae1221de45bf192344e","ssdeep":"192:BSgjnzQeb+wy86hsPfdsRefpOlP3cVbPICJGR1Ogot2Hb2:sgjzQPw6Ond6efpOJc94og","tlshash":"f732d1521dfd3e94ce01066abc29a07477644ddca43f9b95e078457e7e8092f2c0de28","first_seen":"2025-07-16T13:20:19.224825Z","last_seen":"2026-03-27T15:20:08.91014Z","times_seen":5,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/set_images/edexpress24_extra-ed-pack","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /set_images/edexpress24_extra-ed-pack HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6ImxmRTNZS1NIMEtFZjdMR0tXR1JsWFE9PSIsInZhbHVlIjoiT25qY3FEbzlUeHVudE5XclFVcXJtQnBZa3Rock1uNFVBOWVqcGp4UThCTjVCREQrNHlXWEpjYUtKVGpaZ3FXR0xFeittSkgvM0IzSmh6Ui9iUHFEQlFGV0VoNFFOMlBtdEN3cU5Wdk9SdlNiNEhLdGIrdVhTMHFoK2huNDJsZjYiLCJtYWMiOiI2MDFhOTM5ZjVlZDYyMDkxNTYwMTIwZTFkODkxYThlNWRiYTA0OTg3ZmM0YmI2YWI2OTFjMWU3YzMwZmRiMzFiIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6InJyMVRvSFhJUEFsZjlhaVNxWDZjSFE9PSIsInZhbHVlIjoia1JrcWVhQlBvTFV0WjdGcGkvcXB2UnQ4cGc1bUNUU3RYMHMzL01vZ0hmdjd0WHEzeVpzWU5UeU1XOWs5QmRzblhQOEp2L1h6RStZcjNjcXcwNU1RaGk5MXBtaWk3b3Q5NmZBV2ROYnFOREFwOXI4dGQxV2g2MGtrNTFXaGNtM0YiLCJtYWMiOiJkYmMyZWE4ZTc3YzkwOWM5YTlhZjA0NDBjODBiOTFmODE2NWM0MTcyMjg5Yzg0NjFhOTZlOWJlYzFjZTZkYjU5IiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15594,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"0490c75146743ca2be857ce652cbdbc2","sha1":"0d65933b82a97fb547af09224f0ed0be63651eaa","sha256":"df8783af5b79e38b1c6e9dc914c14ec98db6db55661fe5f5101cc572218747f7","sha512":"4ee8bb5bf15e500f6c43273d217cffc82815ba5e7b202c4bd268c1ca4efa3e97ee5e11ec13019644e0a7e480f0a01aa5db1f0e7569be2c40f743fe4a72d1801a","ssdeep":"384:OiUbH00Imsamn1kxcIFYe3wMwZ4tuKwJpl8x8VR2:O/zhs5erqe3wMludpl8xs2","tlshash":"8362e1f61a882070b8d5903958d2e35705518939aee9ce6f7fd875df886e3e10ea27c0","first_seen":"2025-07-16T13:20:19.234107Z","last_seen":"2026-03-27T15:20:08.912395Z","times_seen":5,"resource_available":false,"data":null}},"time_used":183,"timings":{"blocked":94,"dns":0,"connect":0,"send":0,"wait":88,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/set_images/edexpress24_viagra","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /set_images/edexpress24_viagra HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6Imt3VVVyZW4vYm1ZTDAyeTlOd0M4VFE9PSIsInZhbHVlIjoiOVJkaXlCdnZkbEN5YXU0Rm0vK0pjaVRiYkNqZnRXT3c0b2xUQm0vSGZHQ0pqUXFSbUp5cU9pR3FoT3o5Q1JySm9kbVpxK3YyN0Y4T01DeWNheWYwNmMyeWxMRzhRU2Z1ck9DaTVDc3ordWFjS2xIaTRCYzQ5Q1hrZVg3eVI5UTkiLCJtYWMiOiJjNDI4ZDU2OGQ5NDg2NzJmYWE4YTg3OTg4NTczZTI0OTI2YTcxYmI4NTJmYWVkYTA5OTM2YjYzMmMyOGJiMDlmIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6IkVPRDlTMzRSTktWYXcvTVAxMGpVN2c9PSIsInZhbHVlIjoiN1NpelpVVmFYdzdUTHB3cEFPeWJLYmFnNUVTYmIzRnpjRUxpbTRmbTRqb0hwdnlWMWFWSkNseUU5eXdYdFZwaFhnNkF1VzRqbGhhdG1EbWVyakxQMk1QSzRaaDBHRC81a0pyakpzWng4RUVsZGYxWUdjQjhTd1kvdkxBcEpvYXEiLCJtYWMiOiIxYjU0Yzc0NjgxOTU0ODQ4YzBjMjVkYmRjZTI3ZTUyMWM1YjI5ZTBlOWZlMGYzY2M1YjhmNjJkZjk1NjRlYmU0IiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18148,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"a824d052ee629f2c089782df17c82b71","sha1":"5a82c708fe77ff40ac28450b63d31771623ebd02","sha256":"83cbb96e32bba1f41eb6c1b573208e0e0df0d081b87cef3f812e1bba860f9df2","sha512":"dbe4e0513f5ca1fae665f23b1d26fa8df7986b8e7655f7a16fec975b3ebb41df22c1b87a82f4b492d90d1f11447e135c054ed0241f0461fc57906371c3bbec9d","ssdeep":"384:lh0yyr7TXc424wWxhfQErJ0jAWeC83NiZZkhbaHR:gnMwxhJJ0jIC8gcbg","tlshash":"9582e1f1e0afb56ba759650c9ea8d625ca2216fd2a1cdcc55c9f3b1b061047c72320aa","first_seen":"2025-07-16T13:20:19.223711Z","last_seen":"2026-03-27T15:20:08.914846Z","times_seen":5,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/layout/sale-113w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/layout/sale-113w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/design_12/css/style.css?v=1773135806\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 5482\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-156a\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5482,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"eef2c452256b83756c7c927c43ca7b32","sha1":"cbe90acbbde3dbac6a4d9d323e15c9b29d0d9029","sha256":"0ec8af92e6dde43686aa20969527f2ac989c107759ae4b65a7ab6a8dbdeb91d8","sha512":"dfb5daa5f5dba3890a889fde0e9e4874ed95be7d817738e3f9302950c0d041b30188923663c31a3f4153f4c8685db00610c35842b126de402c63ca8d6ef25ab5","ssdeep":"96:qJxOBhK3yuOe98uyFcafDpRWkCZVYbmTKsOKxImHBDP4uMVg4bqoCKlue4UlFyRN:qnOD9uOe9ccwphbmimH9P4VqoCKl74+k","tlshash":"11b1af18c0ac599663c768257cf24b1e3003e258d0595c302acdfa6312098872fd1f5e","first_seen":"2025-06-07T21:32:50.621344Z","last_seen":"2026-04-25T09:43:43.685496Z","times_seen":43,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/set_images/edexpress24_cialis","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /set_images/edexpress24_cialis HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6IklsSFF4Q1dHeVJZNWFvSEg0cVNXYUE9PSIsInZhbHVlIjoiOGRlYzRoanA4Q2V4MjBDZDRzNTFJRkxiazgrdnZIUEgzT1QxNmQxcERSRk5ubTJBZXhqNFEzWnBWeG1HMWtUUXFtdE5BTStlcjJTajR5aytOS3ZRckdoSmhBQ2VycTBIZkpIQW4wZmNrL1lPZDBrcERIeU41dVlJWVpnenBkd0ciLCJtYWMiOiJjMjgxYWFmMzVmZTVkNTkwODU5MjViMDFiMTc3NDA3NDc3ZDI3NGU3MGMzNTdlNGIxODc0ZDI5MTkwNTE2MTI2IiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6IlNkd3hMcmFSSi9oNkJ2Z2QrRzk2bGc9PSIsInZhbHVlIjoiRExqZmdnYTJlbHF6Z014WXpZK1BBdlR5bkZuU2M5UGtwZXVRNjIwQnFhWVRpR1VWVDRJVkhOV2loWkZVRSt6NDY2WEI4akpLN0VlSjVKZFhjY2FIVVUwT0ZpeHBvTGxEMlhiK1Y2Q2hDR2tWYi9TTHBiRW9sRXg4bHNFRXBLQVkiLCJtYWMiOiIyMTE0Njk1NzA3NWJkNmVkODZmMzQ4NzcyMWZhMTI0ZDBmMGQyNDVkZTAzOWI4N2IyZGNmNjM4ZDhmM2YwMjJhIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":23246,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"a35c2c09eb92c3bc01c22077da24350d","sha1":"3f500aad4dc76ee8b480cdfb42386afc9639e637","sha256":"f6677222d6b641b83c3c97670c11c2bd17ece6fe10e5cc884781652bcd7c335e","sha512":"37f8dadfeedd738a70251af8e2c715b6aaa0880c5a89d4602541b40c2fa3b1746523d7bda63d0cf65763a545187d2529fce204c8c2582e3bab8aef2dcb11f838","ssdeep":"384:vtY8aFJMcGfWpnryXIScXtgUO7u6gigynuseueR7CtHwi:ORocGfWpW4gU+uZigw/K7CtHt","tlshash":"2da2d0eb55b38740c310986623bad5b6c897339f28fd304776700bab2592cbe1d5cb29","first_seen":"2025-07-16T13:20:19.207408Z","last_seen":"2026-03-27T15:20:08.918121Z","times_seen":5,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/favicon/favicon.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/favicon/favicon.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6ImxmRTNZS1NIMEtFZjdMR0tXR1JsWFE9PSIsInZhbHVlIjoiT25qY3FEbzlUeHVudE5XclFVcXJtQnBZa3Rock1uNFVBOWVqcGp4UThCTjVCREQrNHlXWEpjYUtKVGpaZ3FXR0xFeittSkgvM0IzSmh6Ui9iUHFEQlFGV0VoNFFOMlBtdEN3cU5Wdk9SdlNiNEhLdGIrdVhTMHFoK2huNDJsZjYiLCJtYWMiOiI2MDFhOTM5ZjVlZDYyMDkxNTYwMTIwZTFkODkxYThlNWRiYTA0OTg3ZmM0YmI2YWI2OTFjMWU3YzMwZmRiMzFiIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InJyMVRvSFhJUEFsZjlhaVNxWDZjSFE9PSIsInZhbHVlIjoia1JrcWVhQlBvTFV0WjdGcGkvcXB2UnQ4cGc1bUNUU3RYMHMzL01vZ0hmdjd0WHEzeVpzWU5UeU1XOWs5QmRzblhQOEp2L1h6RStZcjNjcXcwNU1RaGk5MXBtaWk3b3Q5NmZBV2ROYnFOREFwOXI4dGQxV2g2MGtrNTFXaGNtM0YiLCJtYWMiOiJkYmMyZWE4ZTc3YzkwOWM5YTlhZjA0NDBjODBiOTFmODE2NWM0MTcyMjg5Yzg0NjFhOTZlOWJlYzFjZTZkYjU5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 2693\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-a85\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2693,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0630bfe083f156402e591f57400eb91d","sha1":"c2e203f5551bb8f07aada35bc396557373e03d52","sha256":"15296bd8c002c2441ace9c5f069b956afa53f4771a922454063f5a082cda595f","sha512":"cb67dea7447299907a35e69ebb1c66134db9017fa73a9a76a0ace54e43e1f6a6557721fe048a9672836a3022fe8ab81f2a27d7e0f82440dc783ee31cf9d3c3ab","ssdeep":"","tlshash":"ed5140f6e3f662bcb01543c4d926bc78646338e23611d18deaa1b825fb1140f5e49dcb","first_seen":"2025-06-07T21:32:50.690155Z","last_seen":"2026-04-25T09:43:43.680183Z","times_seen":43,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/futura-pt-demi.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/futura-pt-demi.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 30392\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-76b8\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":30392,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 30392, version 1.0","md5":"d70b708d6a0ceaeb2b3c52ab32553ade","sha1":"15bbbb8926021132cf4e0123ab29d1d773f4efb2","sha256":"1245c8d330499ee30028106541e4a1bdc62d93b74d250d4c13ff5a44d5ebee48","sha512":"015248fc20a7700b157d8cfc3dcd56c5c29124af575e9070ef34dca5e91360976c837c07cb23d24050ad6ecf7fa402f18faa39e881ca8891ec9c72f895103d4e","ssdeep":"768:wX7neVoDTqTJE/sL3xFh6/WJdihmTe6WeUma+a42hebrMqwyNa1:KyeetgU3gO6mDsmfahhebBvq","tlshash":"3fd2e127114ecb3fb1f9ef7e9013170daec46fc5a01186795ea40254cd2afb860a65da","first_seen":"2025-06-07T21:32:50.677237Z","last_seen":"2026-04-25T09:43:43.59058Z","times_seen":45,"resource_available":false,"data":null}},"time_used":140,"timings":{"blocked":33,"dns":1,"connect":26,"send":0,"wait":48,"receive":1,"ssl":29},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/futura-pt-book.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.556Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/futura-pt-book.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 28908\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-70ec\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":28908,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 28908, version 1.0","md5":"b82f2e17e770105d57a7d733e80ad66d","sha1":"f8cf8eed84447246357723fbbda813468d42c943","sha256":"8259a84b70a42ecec282b8d20b76317fb0ae50217e603dd63c38b074c5979d71","sha512":"42cab3b1d06d7fe7f328591b2e410c72ec94d8ad87ee2c7a9c56bb044763fdb1ec5e77703a36ec456e8b1b91dce9389d839356f7edcfc77a9ac4825ab31b1137","ssdeep":"768:7JrCdJEUV/S0ReNa2XoDP8M15k12HWpk15OnLwW/EHK:NrC3dhRewCoDNk12HW8QwaEHK","tlshash":"3ed2f19e7bf43edb4ae0767ecb67b48535c73856a2229e55ec0362da3d4fd581000711","first_seen":"2025-06-07T21:32:50.633338Z","last_seen":"2026-04-27T21:28:46.344826Z","times_seen":51,"resource_available":false,"data":null}},"time_used":136,"timings":{"blocked":32,"dns":1,"connect":24,"send":0,"wait":45,"receive":1,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/css/pages.css?v=1745330741","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/css/pages.css?v=1745330741 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: text/css\r\nContent-Length: 32203\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-7dcb\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":32203,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text","md5":"0e5314566ec77b35e586507edb69b095","sha1":"cc53fbd6344cc596e20d5546dde3ed6859176c43","sha256":"9996d43335d30f6b175427a462394d6af1ac3fc2ae0d38a055712c30240f452b","sha512":"68536637a185a976a745049b2e3820040d2dcfa4b8172fe7b39de876d851380afbd0dda410a355f7b6b5ae4152a055797fa02f319b05e9d28c39bd374c0c1e93","ssdeep":"768:7NgmvmrRDINu8FOgsVc7KFX6sO90vIQ49I:7aJSNu8Irc7KFXEAILI","tlshash":"3fe22211bbb125757877d524266ba5c49b1cc102cc0fdaa5bfd3786c8f8c292ba72b4c","first_seen":"2025-06-07T21:32:50.627323Z","last_seen":"2026-04-25T09:43:43.665317Z","times_seen":44,"resource_available":false,"data":null}},"time_used":94,"timings":{"blocked":68,"dns":0,"connect":0,"send":0,"wait":24,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/layout/doctor-275w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/layout/doctor-275w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/design_12/css/style.css?v=1773135806\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 13152\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-3360\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13152,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"0aa04d33ed2a5b017cd1596bb7584279","sha1":"2b508a6fe8a1309942355154a80b37dc0bfc2be4","sha256":"cb924a2ed56fb9bf617d923c5845c06b67510539d43a9546a182570f5e05fc02","sha512":"472c3fa3064c6d26d018bb3e9d6ac6b411b83a24042dd43a32cf975c99fd0da4c661fb3acf86c83976377d8c4bc9db29e24570268b47c155d5a2fb7329501ed6","ssdeep":"192:bo9LnKmbD/pmbsNFpOin8gcnyqvDc11NPV4WhYnTXPHDHEyiqobI+C4XYQIiHlA5:U9LKSDWsnQxyqvQ17V4WGrvj60+C4Hm","tlshash":"1442d09311a8cf152cb83d086f99fc546c6c3836392597a8530c4ac11fba636dcaec39","first_seen":"2025-06-07T21:32:50.623595Z","last_seen":"2026-04-25T09:43:43.640143Z","times_seen":43,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/dm-sans-regular.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.546Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/dm-sans-regular.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 28328\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-6ea8\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28328,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 28328, version 1.0","md5":"ca98bb2544db5658171c343c44c0ab24","sha1":"d4d2d1ede487a5903062851083576b2747254807","sha256":"97d5ca8c202c6fac19c198d0b6521b5cebb714a5bcbb24db8200fdd81b1434fa","sha512":"f154676606a6163ce4cc17b63f687635f59b8ae2ae2b9bbb204d7fbcc168d0805a76a5319fda7234f16d2953df7a34443d0de7503eb77b940021fdd264954846","ssdeep":"768:IejVy3GLyUi3gBQBEJuwCeKDB+k3q0He4kcaleFF:FjVy3GmnBE7CeKt+oq6rQlQ","tlshash":"87d2e1275cad8f41d6e973f5862668e018202fa4c1c6c82c948779d336bb3c1eda161e","first_seen":"2025-06-07T21:32:50.665327Z","last_seen":"2026-06-05T21:56:27.842041Z","times_seen":193,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/icons/wallet.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.586Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/icons/wallet.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 968\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-3c8\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":968,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"15ffd8bca6a522fe64a29eb001bf197b","sha1":"48a6e2b002b4e7b39ecefa5e9c82d6fe96daa76c","sha256":"13cd05ddb68be2cb42160128e3459dfbd9ea5c383ad48d6e50608112d0304f08","sha512":"c3d57da3a29be6f8fbc6137cdb7bf3039d18b7cb906bc71ab0adbf4f344253916e6fbfe3209a442c4f2d4b08724c9965e5dd12e077141457868b4aeb919adf8e","ssdeep":"","tlshash":"8011d0f9e1f4ea61e9038362e5747810f7aa0df2157149d4f15c979adf244c2080d889","first_seen":"2025-06-07T21:32:50.657184Z","last_seen":"2026-04-25T09:43:43.634606Z","times_seen":43,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":106,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/brands/brand-01-49w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/brands/brand-01-49w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1718\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-6b6\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":1718,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c2f4a0914406e60b2391314af908beb5","sha1":"46961cf047f316cc7bed76b5aba145caa74344ef","sha256":"918a05c9afaa190513e332c14145213566864b957d0bd89fa98d20d7edd17beb","sha512":"e6bd9ef184cf4569d279c35f18301794fa3b4cc588875a963959fc9e2c15ca9cc8519378b5487817f74218e96490a140193264face01e16f5a6a9dc33d0a8e5c","ssdeep":"","tlshash":"bd314d72cc4626c98c6a14761bf037132d09784691e1d1c7fc00de83dacda36a707517","first_seen":"2025-06-07T21:32:50.695066Z","last_seen":"2026-04-25T09:43:43.54914Z","times_seen":43,"resource_available":false,"data":null}},"time_used":131,"timings":{"blocked":108,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/products/gift.png","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.597Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/products/gift.png HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/png\r\nContent-Length: 15347\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-3bf3\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":15347,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 245 x 245, 8-bit colormap, non-interlaced","md5":"a39027dd3890c15ce0905471ff867bd1","sha1":"5f23727aeac088991e699a071ab072cc6e2a6a88","sha256":"caa5602d4c9e7bb60a95b14b9230ac5a82b010da4d090be8d2928246d96d3535","sha512":"eeccc9b7987da4c88131f9b003c0644838d67714e47e485deba2e074e35a499eae1934e5ebb5dde612f85ff036b4bfb6476faa71a8cc67d778a57067cd8dd5c5","ssdeep":"384:qKN0wL7Ysje009KlOcgGYVAmMWBgOw2Yaa9Lj6k2MmM2kVkr8dPeY:qRwnY4e0ODVxYHjSMz2kaQdP7","tlshash":"7f62e1d4a16d0ca3d1ac44b4324913feafdc588e9080e8217a9f67d788beddf1e21507","first_seen":"2025-06-07T21:32:50.671887Z","last_seen":"2026-04-25T09:43:43.657875Z","times_seen":41,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":121,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/set_images/edexpress24_trial-ed-pack","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /set_images/edexpress24_trial-ed-pack HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6IloxVDJyenFHNm1uNS9IdG5GUnFnUnc9PSIsInZhbHVlIjoieFdhNnZxQ0dudHZualphZ1I4NDArT3FabzR0Z1R0V0M0YVkxdW9JTTk4UUxMUU5YdSs0S05ISmpEb1dhWGc2YkJmMFpyeDBPT041MHF6S05tclZNVHVURUxpTmhEU0hiN0J6Y0hkTjRMWWYxcDdpTHlqR3gwUHIxTERUK05DaTYiLCJtYWMiOiIxMjJjNDc0ZjFiODhiZWIxZTdkNGZlNjY5ZjdjY2ZiZjBhOTRjY2Y5Mzc0ZWMzODg1OWVhMWY3N2E2MDE1YzY2IiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6IndDNzBSTERWVU00VUF1L0VacVF5YlE9PSIsInZhbHVlIjoiNkkyc3JuY3BkcW5PeHIrUEdkRUVSblc0TUphM1huOHd6YldGWjVxSXFOMi93bmdER1hHdExTRU80Q3I5SGlKY1pwRURSVWpEaTh5bEw3ZFJXWUZUbWkrRG41UGgrVnBLc3JzZGRyb01RclpiMDhlZmtjQWZ4SVFybEdLVXdkOSsiLCJtYWMiOiI1YzhjMzkyNGYzOTgyNjYyNTc4OWVlNjc3YjJkY2JlNGQ0ODIyMTVjZGZmYjY2MWM2NDA5MDQ4YzAzZTdkOTJkIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":15476,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"b126bbc3153ade44720393b718b0393c","sha1":"dbaeedf9ff302efa5a9f6ac6f8765303513c3e68","sha256":"ed57cfd840c1376e8461ef78f602f064b3c376614522349c4e4cd365668981dd","sha512":"fcd3853e8c176067aede04d4bafe1b0ea854a91ecaabdcd3f807a6b5b66cca853fad359c8543dfd7a9674d6d7c0e126d916728d11322c4def33ad80db4aa1a06","ssdeep":"384:biEOfPHAP4KcNFgKmQ74XSqCiE2JjoFm785JbQnmGbRknDHwDs:bWbNFgKX7TJiJ78bbQnJVgjr","tlshash":"1562d0df8c8517c1d4f6d32a2abc68f7045e9a3c67dfdda24ca0ca105d610dd9b32a60","first_seen":"2025-07-16T13:20:19.198727Z","last_seen":"2026-03-27T15:20:08.929274Z","times_seen":5,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/marcellus-regular.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.558Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/marcellus-regular.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 18416\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-47f0\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18416,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 18416, version 1.0","md5":"d917134a42d81614401b7060503f02f9","sha1":"d6b97c087a3e25ae5de0a7b410ee903654cbe7c5","sha256":"948b6ae57fef8a3ac4cee7682d5a0ce54b828e4112ac30daeea9883f2f7083b0","sha512":"726c837619e22a0d5e472d4be491906a9f1e798a41c41cceac74cecf75a28d30fcc0edffb18169e9a0adc8f91002e3fd64197c780d0489ab6e3ad7d45333892e","ssdeep":"384:aopH+Sxc77dG3oug1GtAOb+pwUmioLmloiruv1ccNe0du/pEqr:1xqhGHtAOqzzAmluvWcVdu/","tlshash":"dc82d133e9d8875b58e707f08362b1932b42f180945f1fb1e23629972de3c38c669494","first_seen":"2025-06-07T21:32:50.666695Z","last_seen":"2026-05-31T02:01:24.711439Z","times_seen":55,"resource_available":false,"data":null}},"time_used":140,"timings":{"blocked":32,"dns":1,"connect":28,"send":0,"wait":48,"receive":1,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/vendor/intl-tel/css/intlTelInput.min.css","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.565Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/vendor/intl-tel/css/intlTelInput.min.css HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: text/css\r\nContent-Length: 23299\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-5b03\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":23299,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (23299), with no line terminators","md5":"2c72c3c5a0b4fb9e047153e3d15635b7","sha1":"a4765ed48e6f9190773658e4d24a7b07cffd11d0","sha256":"26cb2a63fbe5de52e3e4bb98b2a9cfa05ae42e600fbd9cef02ed504d38a284d6","sha512":"b65bc07968b7c70c0bcf6dabc675ec826e02f75ed73b7b06c8316706a41881b3fa10877415ecf7f8ecdf2187210b32cd36432001bb836617eb9b48cab25c98be","ssdeep":"192:ei3irHp+aX4P5g9FEnuhph/TVcAVg1cCQ2UZtJVFkDlSjXjF8hy:f3cn4+vhphKAVg1c/2UZtbCDcrjFB","tlshash":"e8a2852709a33429fa27d5a261608eb9372b8c07f4664fba45153e7c92826d41df3ff1","first_seen":"2025-03-21T07:58:29.560844Z","last_seen":"2026-06-15T04:51:45.560235Z","times_seen":96,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":63,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/svg/icons/subscribe.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/svg/icons/subscribe.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/design_12/css/style.css?v=1773135806\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 2702\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-a8e\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2702,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f0205df03f71624c0436202a78615c3f","sha1":"0cd3ee33465be35dd0ce0fbd8ba8db6513652134","sha256":"40fdb403396a3f245ba350a314edcac52e78c5478f570667f2f0c75495f3b008","sha512":"8e864cce2fa3c52abcfe0504ef814a965fe8c75a0747f30ef7cdce3e31bc42ac7fb09c0a27a207b28ba23b369a6f03cd3b954dd3548a5d24126867530f576765","ssdeep":"","tlshash":"4951aa7ee6fa9c72f31cd3a4d7c0a83e606a57e5a680c59040c4bf9de8604d60f18ed6","first_seen":"2025-06-07T21:32:50.673907Z","last_seen":"2026-04-25T09:43:43.555219Z","times_seen":43,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/set_images/edexpress24_super-ed-pack","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /set_images/edexpress24_super-ed-pack HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6IkJLZVlDRjgzVHkrRUJBM2ZzOXBpZ1E9PSIsInZhbHVlIjoiOWkzS2ZQeWlpa1prbmJJT3JGTEJ0cEwxcEgvSXVEK0JSYm5iTWxzL01kbWZKK1dBTHZDSGdXMFhzdHB4blBpME5MbkJDalhoaGJpSll1VkxYUmFXa2dHYldxUk5rTm9valFLQ2FFRjV4cmJkWFpUcWsweDBiMTdRUlg5Uyt2SHMiLCJtYWMiOiJiYWY0NGExOTRjNWY1OGVhMjc1NWU4YzNkZjNjM2U3MjM0OTgxY2NlYzJhZjZkNTZlNmFmMmU3MjMyOGE4MDA1IiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6Ik5YRUdMdWNHdGJtdVA2dWNxSmlITnc9PSIsInZhbHVlIjoiUXBEckxCTnpGY0NkL1lyQitGN2NIT2IzQTN4WWhIOHpqRmhRMVBnTE9YZTBkdHR2ZUZmd2dNTmZHTzltYlVFeUFWQklRTjJ4M3JpZm8reThpWENZZ1A2UTJkK1RFTGt1SzRrWnVjdVZRM3p5azdDUlozYmNWWXJ3dTBnS0pBenMiLCJtYWMiOiIzZDkxZTNiOWFjMDgyZjhjMDdkZGZmMmQyNTM1NzAzNjgwMTljYTIxYWQwZWZjMTAyNjNkZjE4MGEzMGIwMjUyIiwidGFnIjoiIn0%3D; expires=Fri, 27 Mar 2026 17:19:41 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":15534,"size_decoded":0,"mime_type":"image/png","magic":"RIFF (little-endian) data, Web/P image","md5":"74d0a1b1b9aa90254661fd18f2b63e07","sha1":"a26268054f801f3de73eeb355ccf641a1d33b4ce","sha256":"97c587ffe012ceb940f5a0482d71f851d1bcab201cb83b7610f74b559ac056df","sha512":"dce226729f767c0af6e6ffd80c8932d54e815f2ce8662ac0a01c9fde5be3a8bfb2e572695b359f65dcede167006b85135baef84153f6d99315e7d12c8b86fd4b","ssdeep":"384:+kqxn5jT0P2vdWBsi2ZzpYHpJe5KslwAqomrVwmMniQW:+kq5ju2vUyFpYJg5KXvxVwmCW","tlshash":"a862d08dd0c9203504f870ea7c42e6c8f90205b6ea63542e23e98095fb49bdd3de61df","first_seen":"2025-07-16T13:20:19.226298Z","last_seen":"2026-03-27T15:20:08.934226Z","times_seen":5,"resource_available":false,"data":null}},"time_used":131,"timings":{"blocked":10,"dns":0,"connect":0,"send":0,"wait":121,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/icons/planet.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/icons/planet.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1482\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-5ca\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":1482,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a14b36cb3639ba224d06d678b5b05639","sha1":"b7074f432984f2de29cb01ebec83dd5cef4cafe1","sha256":"ddfee360b46d54323b108728d9d7734e1c0b2d72cad240d4bc53da0f1a4783b5","sha512":"c3801db3c3d3bd6b297cd53a4f94b9301e5048e0d04c619bde3bd328ab39f9cc161855993883e20948b8a8152e914713536987b38867018acdd58c07b71117c5","ssdeep":"","tlshash":"db31e0f5b1ddf5dac54a83d8cd62c915757520fbefa61e45738c5fc4a301096084acb4","first_seen":"2025-06-07T21:32:50.653854Z","last_seen":"2026-04-25T09:43:43.647482Z","times_seen":43,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":105,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"true-serv.net/statistics/v1/collect/visit","fqdn":"true-serv.net","domain":"true-serv.net","tld":"net"},"ip":{"addr":"80.82.76.51","port":443,"asn":202425,"as":"IP Volume inc","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.655Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"true-serv.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Mar 2026 13:15:53 GMT","end":"Wed, 03 Jun 2026 13:15:52 GMT"},"fingerprint":{"sha1":"CD:01:B7:7F:21:FE:96:66:7D:02:F7:1B:BC:08:1D:32:48:41:BC:21","sha256":"2D:88:2A:C5:A0:C1:8E:AD:EB:AD:D0:C8:C4:38:DC:CA:C9:AB:42:BF:AB:F9:8A:4A:7B:39:40:F0:93:64:A9:ED"}}},"request":{"raw":"OPTIONS /statistics/v1/collect/visit HTTP/1.1\r\nHost: true-serv.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://edexpress24.com/\r\nOrigin: https://edexpress24.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/1.1 204 No Content\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nAccess-Control-Allow-Headers: content-type\r\nAccess-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\nAccess-Control-Allow-Origin: *\r\nAllow: OPTIONS, POST\r\nVary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-17T09:31:00.786811Z","times_seen":16480402,"resource_available":true,"data":null}},"time_used":216,"timings":{"blocked":83,"dns":1,"connect":40,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/js/app.js?v=1764598224","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/js/app.js?v=1764598224 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 44137\r\nLast-Modified: Mon, 01 Dec 2025 14:10:24 GMT\r\nConnection: keep-alive\r\nETag: \"692da1d0-ac69\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":44137,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"b9743db83dc04515529d5166f3d814eb","sha1":"a29e40b793fc875877a4e1cba5ae442ef22479a0","sha256":"b1a5a5ade4d1039faf2c5384408fdc933b60f9f619104a8b8a3f1ea2bd3fc384","sha512":"39424180bbb9b4eb77fb9fe2939897866adfb722811952cbc1a005216e6696f3279fd76eb6f221f160726b152c9451c5cddef7cc008b55fdc40a62061d870cc8","ssdeep":"768:Yuo7Q3Mpoqo7Eu+REo0yY40ga06CeKGJPuWXS4oTlMEw453w4pp:Yuo7Q36oqo7E9REo0yAg3GrQ+S4aDw4H","tlshash":"4f13e89836f91d32417b61ae4acf82c63721800ba406fe5879ac76d81fccb6455f2be5","first_seen":"2025-12-07T12:22:08.39377Z","last_seen":"2026-04-25T09:43:43.642991Z","times_seen":29,"resource_available":true,"data":null}},"time_used":83,"timings":{"blocked":58,"dns":0,"connect":0,"send":0,"wait":23,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/layout/discount-113w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.807Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/layout/discount-113w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/design_12/css/style.css?v=1773135806\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 5674\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-162a\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":5674,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"98df21b59b27b87f706cbf365f8d3c02","sha1":"c771109777938153a57d23dbe51b1b6ea90ba8b0","sha256":"50135028686c21ba57d31a864e4588267ae806244ff9d3fc8b7efa4a84f5f80e","sha512":"2824d9be9c290be850c01d45783cc38e19e526ce78adc8a09d4644bf6f5e1a70fb8b95693ce4cbc54544986248c3513413189b0df43513cd8de43efe4e6ce1e8","ssdeep":"96:JdU3YxRZCVaA/0Oy+R/m4uH2C+PwsCb2mlbjM2Dp72VYIXC5v1LqoXR/E69p2N:JXvA8Oy+R/VuWC+PwsCKscs72VO5vZ5B","tlshash":"1ec18ed4264e5cab680977b32fb910c7952080dbafe586d8b24e7dd7b34830c46829f4","first_seen":"2025-06-07T21:32:50.606302Z","last_seen":"2026-04-25T09:43:43.65972Z","times_seen":43,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/vendor/jquery/autocomplete.js?v=1745330742","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /vendor/jquery/autocomplete.js?v=1745330742 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 16227\r\nLast-Modified: Tue, 22 Apr 2025 14:05:42 GMT\r\nConnection: keep-alive\r\nETag: \"6807a236-3f63\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":16227,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"4a83ee758f381fcb405d73e13fe2ae8a","sha1":"fdcf9393c23a160f9a4d377d160a149aec3d89e6","sha256":"7713b1408c5ef697ee020a23d7da6177bd5763366abdbc79576a4f062cdcfbb7","sha512":"6c8afb86e7030a3944ec00a441634e762f03e0a268e361231ca38913a9c6f20223543c8a48fd31df5855b72e4b1faa671ce7ebf94cce47760a575c15f9640949","ssdeep":"192:YySfRwwCN6awOIo/I77iAsOAvMz56fvpbVTlciuv3Up7iGylbcev+fbEzoI:ZSfRwWaoIMF4bVTlcJkp7fylf+zEn","tlshash":"a37267e0f78d231e42ab31e9285d10cc523ce672568c4c57fd6859e861a4934b3fbea6","first_seen":"2024-10-21T00:13:46.129234Z","last_seen":"2026-06-15T04:51:45.554438Z","times_seen":408,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":70,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/vendor/just-validate.min.js","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.576Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/vendor/just-validate.min.js HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 29666\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-73e2\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":29666,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (29666), with no line terminators","md5":"5999ea06cbb02d9f509d7127f581ca57","sha1":"353b584854cfb425f4da8446734b1f5557d32eb2","sha256":"29d1548e149452387bacf862a93dc3049a1f63b90cb972d6091641d477734592","sha512":"9320ce7503b230e62b4dc62a4078e802091a4a8e5fe28f7495ffec44f1bcbe6aa56e4b1ded1824e5854992e11d52319596b70a866486a74b24eb33d5a5107090","ssdeep":"768:VkW++JZ/wbtODUsl8dJorXESRAwgJMgp81UuVvwnCByfDwty0HD/h7PCByCrCagl:mCCDSXrRAwgJMg5s5Y3gk56D","tlshash":"41d2d706267149234dd94aeae08b9543b3d0375da914a4ccf73decfb8a8dec630536b6","first_seen":"2024-10-04T14:22:46Z","last_seen":"2026-06-17T06:29:15.47883Z","times_seen":1297,"resource_available":true,"data":null}},"time_used":118,"timings":{"blocked":94,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/brands/brand-02-46w.webp","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/brands/brand-02-46w.webp HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1560\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-618\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1560,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"84a45281fd13c37475948b8f480ef79e","sha1":"1a8b8b942cabe7ce6369288e6d73a92fc53a0ee3","sha256":"b1b961a05769c782bc1f63801ec9c3b4c90311d205f7d689062f6d5882bd5235","sha512":"8ab3af826c0405eaaf0cb184a12ee790c0b2f585d44f3f77a5e165555df101e961fc5ab3328ffa478460c54d3956044e4d231b04b18629a0e03e88ee5376fa74","ssdeep":"","tlshash":"a0310a3d22315f989100c032eb745aa3746089b157034c38a4a95abfad4a9a66f57e70","first_seen":"2025-06-07T21:32:50.64967Z","last_seen":"2026-04-25T09:43:43.648077Z","times_seen":43,"resource_available":false,"data":null}},"time_used":136,"timings":{"blocked":113,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/pub_images/checkup_img/black/checkup_big.png","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.234Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /pub_images/checkup_img/black/checkup_big.png HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nContent-Type: image/png\r\nContent-Length: 12139\r\nLast-Modified: Tue, 22 Apr 2025 14:05:42 GMT\r\nConnection: keep-alive\r\nETag: \"6807a236-2f6b\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12139,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 80, 8-bit colormap, non-interlaced","md5":"06cc1105ba68975b392e42c4a9b66a24","sha1":"d7f9867342ce0ad888be264336ca93b56ee3b1f5","sha256":"a679858039ff003c97b3641ab43c4365c09bd42884c8bd933a9ad7020028b163","sha512":"6c9fbeeac9922e373a78e6d6b7a16572960ea19e7aed9d3b4cc93c51a2d3858fea9baa612ba4c74b6c0515721e302fc901e5bf56fc71cbf5a2abe7203ead3b01","ssdeep":"192:ESVEpMJDXLbTAdq8D/DHja7LBnZsQJrWd8lSqEByWyCaWS8PaHZz/Q7ELULg:D+pOzfUdhLDHWJn5rWdqE8Bb8PYtpULg","tlshash":"9042c05a0d51a4ea2eb619c0ca11508c987a4c093e3cbc849eb0b683113ff4dd5d886f","first_seen":"2025-11-22T18:20:55.563283Z","last_seen":"2026-04-25T09:43:43.580578Z","times_seen":30,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":59,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/marcellus-sc-regular.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.560Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/marcellus-sc-regular.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 18184\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-4708\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18184,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 18184, version 1.0","md5":"a9ee61298f0e8e3f2d35023188349439","sha1":"f7fa44bcc922747291a4af1011efcf2b107c94e0","sha256":"b5a9136f60c4495fb81fac2b62ecd5a0df563814fabf65ace761b8731a670c85","sha512":"b95beb6ab86537edce1824e9d97fa2a092454adc8938765b955ad5a818f50285a973b842a9bb82bb90c18ccd3b50ce7302361e671fa6c29c778caa46e6ccfd11","ssdeep":"384:leT2kxcPq2Ye/EohaXp7XBw4jWo3rDGjsY8Q0t4eVrJFqp8sYwHO6SVbaiVJ29x:leT0q2YecDxXB7h7KgY8Q0RDYjhSxayA","tlshash":"0882e1593622a376dd3c552fcb6d058104fb8c5d26df8c0717a7f9ba82e133d5005e42","first_seen":"2025-06-07T21:32:50.700844Z","last_seen":"2026-04-26T09:13:39.651506Z","times_seen":45,"resource_available":false,"data":null}},"time_used":140,"timings":{"blocked":31,"dns":1,"connect":28,"send":0,"wait":48,"receive":1,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/fonts/plus-jakarta-sans-medium.woff2","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.563Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/fonts/plus-jakarta-sans-medium.woff2 HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edexpress24.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 7828\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-1e94\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7828,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 7828, version 2.4653","md5":"36e7061a2c399d618cbccf2827749467","sha1":"a04b922f29ceb06d8920a5d94f64c7852cb93a15","sha256":"9eefcc9dfc3fa750ca197e60946674697f006b03021bed942ac4b3c66418bcf6","sha512":"18b9c61d8631cb978b489ca7c0c3da911565bb1c117003c50b749925fc1598e4226badf2d88b85cfd21b48c04fbb57a9917e574abc3cf1e012d45c204a8cd691","ssdeep":"192:sEOrYqf+1R1CW/lEdUhPqdfQ38oaucc8o:sEOMqf+1R1VlEdUhidfy8kcE","tlshash":"b7f1a0e442681dac816f957da38d2756b7f6207189eafbd44c4cf17647205d3414533f","first_seen":"2024-12-01T02:55:35.610492Z","last_seen":"2026-05-22T23:45:30.669506Z","times_seen":108,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":38,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/icons/subscribe_mini.svg","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:40.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/icons/subscribe_mini.svg HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6IkJNRjgrV2V6K0JJWFFOUU9hTEsyclE9PSIsInZhbHVlIjoiRDNIYmcvdUk5Z3ZTRDRpV3JpdkliMVpDN0pqR3VJYUxDOVgrQ2RsNnU2NWU3cGZFaW9LbHVQSWxCMndwNFprM2hLM3c3aG1WNmFvODNpYnFxMS8yc1Q1eUdBMkpwb3lrWklVUGJWTkVmWSs2c1hFZHVoQWNwWU5NbThONXhFQmUiLCJtYWMiOiI2NWRjNDJiM2NhOGE5YjU3YmVhYjUyOTE0YjVjZmNlNmJmYjNmNTlmN2U2NTFiZDY0OWQzZGI0MjU5MDUxMDI5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik8rWW1wcFRxQUdDbGsvTFJxMGdWblE9PSIsInZhbHVlIjoiWk9UWEZEV1ExNklZZ1lqb0owTFAyTGswaTIvd1NjeUsxS3doWjNFd3c0b3ErV21GVHBMWldLaTMxTmkwZ3NYWjRMbkYyNkJDR2VPSmw3M1NKOXlmM0RNU0IrRWFvWUx2bHNrZ0dwQnNjK1NrSkphVE9HWFBsVW8rWi9nYVFtU3AiLCJtYWMiOiIyM2ZmZDIxYmM1NWM4ZGIwMmFiNDg1ZmZmNDA2NTE0NGIzMDJiYWEzZDgzMWY2YmE5NGRlOTE2NjdlOTBiYThlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 691\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-2b3\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":691,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bd1acef01c9072881c7fa58325d6020e","sha1":"b6d8f2c2082bff20c3bccdf351114b00fd51fea1","sha256":"f5fdbf0a96e668dc83ac39a24f4f823b961a7e25fe06a2e51017c521b09694c0","sha512":"f0125865273cd323fa37ee11f409e024d77823e019d6b98e24de9ce1ba300e0714c82ab4b634e5324779c508ad6aea990c31eea11160f176c3f974362755b006","ssdeep":"","tlshash":"e1014eee23ccc244aa08db34d1aa25a4d13ab2d51d08c008f2e8bf54ad3853e0809ad4","first_seen":"2023-12-08T22:20:05Z","last_seen":"2026-05-03T08:56:42.342297Z","times_seen":150,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":115,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"edexpress24.com/design_12/images/favicon/apple-touch-icon-180x180.png","fqdn":"edexpress24.com","domain":"edexpress24.com","tld":"com"},"ip":{"addr":"141.98.11.218","port":443,"asn":209605,"as":"UAB Host Baltic","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edexpress24.com/","date":"2026-03-27T15:19:41.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"edexpress24.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Feb 2026 04:07:40 GMT","end":"Tue, 19 May 2026 04:07:39 GMT"},"fingerprint":{"sha1":"47:E3:D7:D9:9C:23:CB:63:99:88:44:23:B1:EA:D9:DC:FD:17:C8:BC","sha256":"74:76:47:F1:65:A4:BC:A1:FF:B3:07:D8:13:8E:84:91:A4:47:71:D2:B8:62:97:5A:D0:C5:30:64:3C:D6:0A:14"}}},"request":{"raw":"GET /design_12/images/favicon/apple-touch-icon-180x180.png HTTP/1.1\r\nHost: edexpress24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edexpress24.com/\r\nCookie: js_stat_aff_id=1957; js_stat_design_id=12; tm_session_id=05bfc6cd-ccba-49f0-a3ba-1d91b814398c; tm_initial_referrer=no%20referrer; tm_visit_data=%7B%22visit_id%22%3A%22cd541dff-b89d-4c7b-ad51-07cfab5c13c9%22%2C%22signature%22%3A%221957%7C%7C%7C%7C%7C%7C%7C%22%2C%22is_uniq%22%3Atrue%7D; XSRF-TOKEN=eyJpdiI6ImxmRTNZS1NIMEtFZjdMR0tXR1JsWFE9PSIsInZhbHVlIjoiT25qY3FEbzlUeHVudE5XclFVcXJtQnBZa3Rock1uNFVBOWVqcGp4UThCTjVCREQrNHlXWEpjYUtKVGpaZ3FXR0xFeittSkgvM0IzSmh6Ui9iUHFEQlFGV0VoNFFOMlBtdEN3cU5Wdk9SdlNiNEhLdGIrdVhTMHFoK2huNDJsZjYiLCJtYWMiOiI2MDFhOTM5ZjVlZDYyMDkxNTYwMTIwZTFkODkxYThlNWRiYTA0OTg3ZmM0YmI2YWI2OTFjMWU3YzMwZmRiMzFiIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InJyMVRvSFhJUEFsZjlhaVNxWDZjSFE9PSIsInZhbHVlIjoia1JrcWVhQlBvTFV0WjdGcGkvcXB2UnQ4cGc1bUNUU3RYMHMzL01vZ0hmdjd0WHEzeVpzWU5UeU1XOWs5QmRzblhQOEp2L1h6RStZcjNjcXcwNU1RaGk5MXBtaWk3b3Q5NmZBV2ROYnFOREFwOXI4dGQxV2g2MGtrNTFXaGNtM0YiLCJtYWMiOiJkYmMyZWE4ZTc3YzkwOWM5YTlhZjA0NDBjODBiOTFmODE2NWM0MTcyMjg5Yzg0NjFhOTZlOWJlYzFjZTZkYjU5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 15:19:41 GMT\r\nContent-Type: image/png\r\nContent-Length: 6098\r\nLast-Modified: Tue, 22 Apr 2025 14:05:41 GMT\r\nConnection: keep-alive\r\nETag: \"6807a235-17d2\"\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6098,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"71ff5f0f369e6b110d170ce0ec62f407","sha1":"11c60c4a4dbd190662e59bf7bcec2b155f5fc322","sha256":"2f172ff720b98afbb3c86f21400e3afa409b9ef783264902e438d411be35df33","sha512":"cd0e48eec166d5e56a84c074cf51fd48d5d7a0428969c22e412abf48f5aee2a43c1fe9dfe6fa7875b39862fb5f3a4d0e57c71f8fd4336be849699d3a3ebd2773","ssdeep":"96:GcmsV+VZZ61SBEgJdTUiv4fTrYREJM73zePYWHiNQMmOmHdiM9RBEAU8nAS76wZQ:dV+VjmSBJdkYREJEaHiNQYm1RdUGztoP","tlshash":"aac1afe7dbda724a91da5509f53bf4760e2981373011e0f058cfacf99589bf01318925","first_seen":"2025-06-07T21:32:50.679219Z","last_seen":"2026-04-25T09:43:43.679089Z","times_seen":43,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"edexpress24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}}]}