{"report_id":"085f37c6-53dd-4250-a044-9c918fb8fbdf","version":6,"status":"done","tags":["microsoft","phishing","outlook","suspicious"],"date":"2025-01-31T03:46:54Z","url":{"schema":"http","addr":"managment.lugubrious4.com/M/asdf/YW5uYS5yaWNrc0Bkb25uZWxsY29tcGFueS5jb20=/bW9udHlAc2x1cnBtYWlsLm5ldA==","fqdn":"managment.lugubrious4.com","domain":"lugubrious4.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"title":"secure account access system"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-04-11T03:46:54Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"challenges.cloudflare.com","ip":{"addr":"104.18.95.41","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":0,"first_seen":"2021-10-20T05:02:03Z","last_seen":"2025-01-29T02:26:04.03477Z","alert_count":0,"request_count":1,"received_data":406,"sent_data":465,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":235,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-01-29T01:55:05.300699Z","alert_count":0,"request_count":2,"received_data":30007,"sent_data":918,"comment":"","tags":null,"fingerprints":null},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":634,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2025-01-29T02:21:42.028592Z","alert_count":0,"request_count":2,"received_data":63020,"sent_data":862,"comment":"","tags":null,"fingerprints":null},{"fqdn":"asp.asxtroglide.ru","ip":{"addr":"104.21.55.189","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-01-09","domain_rank":0,"first_seen":"2025-01-30T22:28:16.58957Z","last_seen":"2025-01-30T22:28:16.58957Z","alert_count":20,"request_count":27,"received_data":841466,"sent_data":32479,"comment":"","tags":null,"fingerprints":null},{"fqdn":"6mbt8urywdv0dqmwdwiaze7etwiiwx4cku8iiezocnq3dsfpuyeqy.borightpulse.ru","ip":{"addr":"104.21.112.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-01-22","domain_rank":0,"first_seen":"2025-01-31T03:46:54.919548Z","last_seen":"2025-01-31T03:46:54.919548Z","alert_count":2,"request_count":1,"received_data":1635,"sent_data":685,"comment":"","tags":null,"fingerprints":null},{"fqdn":"developers.cloudflare.com","ip":{"addr":"104.16.5.189","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":592034,"first_seen":"2012-09-07T16:49:35Z","last_seen":"2025-01-28T23:51:17.476333Z","alert_count":0,"request_count":1,"received_data":1654,"sent_data":447,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ok4static.oktacdn.com","ip":{"addr":"143.204.55.47","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2014-11-11","domain_rank":16592,"first_seen":"2018-06-15T05:36:50Z","last_seen":"2025-01-28T11:12:08.773089Z","alert_count":0,"request_count":4,"received_data":267512,"sent_data":2058,"comment":"","tags":null,"fingerprints":null},{"fqdn":"github.com","ip":{"addr":"140.82.121.3","port":443,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"domain_registered":"2007-10-09","domain_rank":1423,"first_seen":"2016-07-13T12:28:22Z","last_seen":"2025-01-29T02:22:02.813442Z","alert_count":0,"request_count":1,"received_data":4334,"sent_data":455,"comment":"","tags":null,"fingerprints":null},{"fqdn":"objects.githubusercontent.com","ip":{"addr":"185.199.110.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2014-02-06","domain_rank":134060,"first_seen":"2021-11-01T21:34:29Z","last_seen":"2025-01-29T04:43:47.048803Z","alert_count":0,"request_count":1,"received_data":11086,"sent_data":890,"comment":"","tags":null,"fingerprints":null},{"fqdn":"get.geojs.io","ip":{"addr":"104.26.0.100","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-02-18","domain_rank":17418,"first_seen":"2017-03-30T18:44:25Z","last_seen":"2025-01-25T17:00:41.972796Z","alert_count":0,"request_count":1,"received_data":1447,"sent_data":493,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-31T03:46:38Z","timestamp":1738295198,"ip_dst":{"addr":"104.26.0.100","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":52006,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO External IP Address Lookup Domain (get .geojs .io) in TLS SNI","source":"{\"timestamp\":\"2025-01-31T03:46:38.003180+0000\",\"flow_id\":1416782063417023,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":52006,\"dest_ip\":\"104.26.0.100\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2039595,\"rev\":1,\"signature\":\"ET INFO External IP Address Lookup Domain (get .geojs .io) in TLS SNI\",\"category\":\"Device Retrieving External IP Address Detected\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2022_10_28\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2024_09_19\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_10_28\"]}},\"tls\":{\"sni\":\"get.geojs.io\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3436,\"start\":\"2025-01-31T03:46:37.997055+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-31","alert":"Sinkholed","trigger":"borightpulse.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Generic phishing","verdict":"phishing","severity":"medium","comment":"","tags":["phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null},{"sensor_name":"urlquery","alert":"Suspicious - Anti-debugging code","verdict":"suspicious","severity":"low","comment":"","tags":["suspicious"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"7c3a5be4abc8a18ba0a0089b3a6b3c40","sha1":"c5c5040b94591bdc1e9cd519e211bc34b8bb2c05","sha256":"905f4e3af0ac64e0e3a09d62ec8736288e8bf274d2e221c0d30307e31934adb9","sha512":"fdaa97f83d7a2a586f85c777384dd14d7ac14347e0f07aa7208db5250d8e6cd0e63fa66e77179bcb112dccd8c87035671ff881dfc646a0371af9ed69d6ec0e7e","ssdeep":"","tlshash":"615180c6b03268bd596dbbac57dfe8d0327f3ec8d051a6453c0c0c59b744655c3a5ea8","size":2185,"data":"","first_seen":"2025-01-31T03:46:56.41653Z","last_seen":"2025-01-31T03:46:56.41653Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"67f21a7bfbb0d81e8fb901b81a546fcd","sha1":"489d2aabdccc64671a22dc1e8625f721ea120808","sha256":"5299630bc96b5546f78cc9850f2a9817dbe73a02e147443f3e995111e173ef46","sha512":"f8cfafcd03a8c813c79e0cdc5bb3540334fd5f83d25bb93e82ed49daee1c3c5d45ad5b1724d718db0cf6f16afbfea432d30d605cfa451059afb1a3dcfa3727ad","ssdeep":"192:Hziq+4qU38voY7UA6FUOCj/77oYh9D6Ftiuhruf4lxhPyMaRnCqrduTQfrJ4qrd3:Tiq+c8vT8HY/e/3lfkJlrJblrJB","tlshash":"fa729edb728496721731edd0b6104ec60f7aad7d168cd8e8a87f4f08c172e925cc69a8","size":16788,"data":"","first_seen":"2025-01-31T03:46:56.417577Z","last_seen":"2025-01-31T03:46:56.417577Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"4717f437cce7beb88b8d7b8727fa500d","sha1":"1382267396ef1227f2a1a3d9e25ca003c8b6846d","sha256":"028dd2e9c0c6d788a8ebc345f87330bbe6e9a814adebc9d0f12e533cf95f69cf","sha512":"733fb41056cb234bc0c65a79569eda5c9b64ee34580a2c0df690dac7c8d5f8c7d03963080ea33642c0ca7aa01b7478e59e9fba7cfc2cb5020787039105c59a32","ssdeep":"3072:Lvsnsqn29meZoSV2SQ7iwLDhs3iMkcOzAs9snsH:Bo2UeZjV9ReOsH","tlshash":"15d33de14dd2160a5685f39c3d17b9ca981a97c081f464f7be04fae583eb14e3836dac","size":131875,"data":"","first_seen":"2025-01-31T03:46:56.418636Z","last_seen":"2025-01-31T03:46:56.418636Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89501,"data":"","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-04T11:45:31.211872Z","times_seen":444796,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ca03ad87885ab983541092b87adb299","sha1":"1a17f60bf776a8c468a185c1e8e985c41a50dc27","sha256":"8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762","sha512":"13c412bd66747822c6938926de1c52b0d98659b2ed48249471ec0340f416645ea9114f06953f1ae5f177db03a5d62f1fb5d321b2c4eb17f3a1c865b0a274dc5c","ssdeep":"768:J1Z4iiyfiD78x6l42SWRV4HC0o10LEnM9OT81agZnEpnS:vZYDc6lXJd1mZpZEdS","tlshash":"19231ac5a19c605152a774c40d7f704b7463352a070d8aacf668e9eeecfcaea9039d7c","size":48316,"data":"","first_seen":"2023-03-07T01:31:53Z","last_seen":"2026-04-04T10:00:21.163008Z","times_seen":149561,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"71a8aca57f5261eb97fb2eaec4654e10","sha1":"194a05a3cc3ce7cc7077f1cf23bd9997c4147405","sha256":"a2cfd9bf1a3b0254e795e9eccabbfb1a68f95ecd7ff5766c2563e77a7a9ed984","sha512":"2e2e69487bd88f7052198633bf9ac768b592e84bd9f273640faf6062a31327583994f19de38c10730be3b6c51782e0c777d2a0b49e188487aa4c337b622a2159","ssdeep":"","tlshash":"573128c6b06268bd586dbbad579ff490363f3ec4c041a6453d0d0d26b740519c3a6db8","size":1563,"data":"","first_seen":"2025-01-31T03:46:56.419585Z","last_seen":"2025-01-31T03:46:56.419585Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"52adb6b068ce64d53e05328b0e783348","sha1":"2c729e3b4bf573fc418ac01356c28b619a040537","sha256":"053020acae1db71ca520648206d58d49a7283b57228238527c2a54b16528acbe","sha512":"d096e05e879fc09c8587d21614390d8dbec5cb287d1a89578ab4cd093a0f05c2deb5dab26342927567485b38f360d50ceedd9147738d84e3e84c0572a3aa547e","ssdeep":"","tlshash":"4e4180c6b03268bd596dbbac57dfe8d0327f3ec8d051a6453c0c0c59b744655c3a5ea8","size":1962,"data":"","first_seen":"2025-01-31T03:46:56.420423Z","last_seen":"2025-01-31T03:46:56.420423Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ef7e82ab63267d74a5eb91956dad91e","sha1":"93c2da7001df2d07bc3c7ee205d1f0c4d33f925a","sha256":"e64466dedf98a2298898d9693e12ea1568c67b9026f99272fb1a407e853eaf93","sha512":"bbc16fdccb460dbc1cd98853dfdc9d826740e4e2210a63ee6794531d62e93c16e8a23cc921ec227ebdd1762aab0b1e2893f6d0ddaa4b95dcfca76666171e4480","ssdeep":"192:1mxaQc251TPaOMdZV1Lk7C/L4tGZeInSSJd:1qaQc251TPa3d71LgCLeInSSJd","tlshash":"24e171032c0a6d7e57a02c611bfe09e9582f3fc924908187394dfe5a8b2944ad4d5ffd","size":7056,"data":"","first_seen":"2025-01-31T03:46:56.421238Z","last_seen":"2025-01-31T03:46:56.421238Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"github.com/fent/randexp.js/releases/download/v0.4.3/randexp.min.js","fqdn":"github.com","domain":"github.com","tld":"com"},"ip":{"addr":"140.82.121.3","port":443,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"6c20a2be8ba900bc0a7118893a2b1072","sha1":"ff7766fde1f33882c6e1c481ceed6f6588ea764c","sha256":"b1c42acd0288c435e95e00332476781532ed002cac6f3dcee9110ced30b31500","sha512":"8f80ad8adc44845d24e13d56738a2ca2a73ee6fcdc187542ba4aaebbf8817935d053a2acfb0d425b9cc0c582b5091e1c9fe16b90b3aa682187645067c267fc41","ssdeep":"192:LRSvXVHfVj+WdqfkkoKhUBhMAcT6iuvBiFj0gba6qiG2pPj:LQvXVHXiNkMAcT6i+4mgPj","tlshash":"ce22a58932933026af5391b440bf140af2f69589d45cade8ab29d1e27d7290d46f7f38","size":10245,"data":"","first_seen":"2024-05-30T22:56:13Z","last_seen":"2026-04-04T10:00:21.169738Z","times_seen":52169,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"4011334b54154b7612833b79826659f6","sha1":"7f440a8910d6a88bedc28b4732ed27c892eccbd8","sha256":"7c18ca60c578f23e5561a9bf22f584ef04a745b7c4f341dcfdc9715da3368d36","sha512":"ad263c49ad155bd8ec25efcd73e10e47d00301efa3e38d571c6ab6ba163d7356f1339db6a79960a1b904fc0ae8b89228e0c278ad926c4738fb82493e6803fc0f","ssdeep":"","tlshash":"8d119aef34449a3e0dcf4c8ac3af83c43c9f0c00ad0a1041088fa9160918c80c47bc11","size":657,"data":"","first_seen":"2025-01-28T00:11:08.938081Z","last_seen":"2025-02-10T23:28:56.628965Z","times_seen":1234,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/56ASZqhiwAdC84IVmLNEwZgh5DF1bAncu4iWVgzf67102","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"378be0bda52e0dc309ba19e0e8dc3af0","sha1":"88de4b6325b9af80fcf458097f05ae8a10f6df0a","sha256":"0eb68b87fd0c31cf0110c8688f47f26699bdc1483c3034a983396a3b4548324c","sha512":"33f13c857a0596c70e604f366afdc1a2872fc8b77e0414d6f67be1d55a80ae133ce1d6dace68f7add35eb9e737d41309c53244dce0aa68d6dfe9d3f10d18e139","ssdeep":"1536:2nwWm57Ed3jk4FWynNEBqTiCDXEOynNEIyqT5505z5l5HEYyFdf7ASCz5YEWynNT:2nSTef2b6Is","tlshash":"10d394593e24d8e927025eff322598f8f44a0c6525821a9af21cbd5d39d2b13f9f70b1","size":136817,"data":"","first_seen":"2025-01-27T23:50:46.774078Z","last_seen":"2025-02-05T01:24:48.589543Z","times_seen":2855,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"03446a772be82068e7b13be4ea9bb317","sha1":"1a4099c8662838bcdaff0c0c42201f1b04f406a7","sha256":"e342c66d11ac773e5b11fd31827e3dab7a435cbda533acd7653aa26ccdf0de3c","sha512":"a843aae7de613e7fa2da5a1aff54de93d6136b266fce9b7af1f31f90f761f1d07af6702de7b3cf348ad6d1b097fbeaf4e593cf85cbef9899d2c9c0f51416f756","ssdeep":"384:tTOW0I6eVpjQAd6jk3ifisGixi21Q4JEizn:tT0myaw421Q4Hzn","tlshash":"9252729af47118704afb21f7b8bb418438347126f981c916f57cc95c6f70ac162b7aea","size":13820,"data":"","first_seen":"2025-01-31T03:46:56.423305Z","last_seen":"2025-01-31T03:46:56.423305Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":[{"md5":"75f45b5d017ce11ccc0f8b87c6ef7738","sha1":"52eb10145fcf137df5e54c6e367a86d1b9096b0e","sha256":"1401b1818959271d4cdafbe6f2c7c4c7be2fb7af1cb44a5a8f835230a0f1a27a","sha512":"9504726a77350ae9206729e1d770918de19ce7370b8a2421ce926acd1bc3ae9d096b32db7e0084c496b643aea8e032365ce41cb167e238bacdf631561aff41ef","ssdeep":"192:HmxaQc251TPaOMdZV1Lk7C/L4tjQiHiXiEiKioiXHiSiZXJsyLLsXvw:HqaQc251TPa3d71LgCIQiHiXiEiKioiq","tlshash":"27d1c8279dcb1c129b22986b15dd47c6bc2c274a68c2c0ce7d5dea98cf29d1b24e53dc","size":6369,"data":"","first_seen":"2025-01-31T03:46:56.424177Z","last_seen":"2025-01-31T03:46:56.424177Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"write":[{"md5":"9b548da2d76ec83d410f903cdc58a14b","sha1":"ad439fdbf4e581e70ee0637cd967d9b56f713d84","sha256":"883a2a791a6fa79be3d7851780d0c5238d31a83a60457ff09410a44dfbe7bf7e","sha512":"4fc8c105188e778a07aa0fe0e7a60fc96af8e6c492e7b63cf11c0dc527e61c524f0bc748b1a3e6ef7164aaa866538b4911665c51288ae0a380226d851249acc8","ssdeep":"384:qdoZHoHVRZWppUZLtVUGZWalJuzslumallWzYgmtyIxM:2omLZWMfZWalJytmallZS","tlshash":"77c3147ff11217bfa2d2ce9b36a36e5d21223c65c60f9305a05bb793b74237d1a42690","size":127779,"data":"","first_seen":"2025-01-31T03:46:56.42498Z","last_seen":"2025-01-31T03:46:56.42498Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"bb03a7e3dfacab575e9ee49fc2a5c7a0","sha1":"38934abf32ca17a4b7691fbd18a6fa88fb8fd917","sha256":"3a140abb673a126c861e594a3c600f94be6aae6f4e01f2692ef920767c11b359","sha512":"1e2d2bc10dafa846b231faa36efb7a0f11a428c7e649b1b29c8c030b08fbf5ac1a999c423130a3e876554c13b78e85993691865a33e199d79b4a014bfb3f7885","ssdeep":"192:/6at5z2mxaQc251TPaOMdZV1Lk7C/L4toMMGG:/Xbz2qaQc251TPa3d71LgCKMGG","tlshash":"e602f9466c0a1d5217b07a692bef95e8fd3e2bc754808183398cee599f3045a02d5ffd","size":8796,"data":"","first_seen":"2025-01-31T03:46:56.426015Z","last_seen":"2025-01-31T03:46:56.426015Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"aa9dc3254f4315dead47f082660d19c4","sha1":"1a03bea193b7b68c92b40bd91ffe8609b813d7c4","sha256":"a4a6a3e5381ca40a70dbd065504c6435ab8c82142ce94c976bd0be01414785bc","sha512":"37cf5091e9e3d29cdd6776af785d95f1292175fbf6ebfd13cc79c22d3a143b85a6c7ee813c6cfe60a661b5bbe239c3d5da65e90233f9f2e137b83ae2e07c040c","ssdeep":"3072:uvsnsqn29meZoSV2SQ7iwLDhs3iMkcOzAs9snsC:eo2UeZjV9ReOsC","tlshash":"f7d34ce11de1160e568ab38c3e17b9c9981b96c041f524f7be04fed583eb14e3876da8","size":142994,"data":"","first_seen":"2025-01-31T03:46:56.410817Z","last_seen":"2025-01-31T03:46:56.410817Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"6437c4266a76406678a9912c75badca9","sha1":"2e26fefb5a5e685056211cd763868dd4b0a65d20","sha256":"1bac09d65770a9df0c27e76bfd1a5c431789f4fb463186434c151cf476d063bf","sha512":"84f86233a74dbe0cebfee01014eb581534bd674048e96bea35855f0f02cfa2b508e9246f1c39e9dba0dfabe4ef8797ce0414b3888a7a78040354f6cbf29975db","ssdeep":"768:l1b3jB+SVpBr9t6tbTGPXAILTw8LoF4rC0HLuk9J6XAPJOHwSRXeLYN3ZrviJxl6:PV3MTGPQILTw8g4jUXqmwgNhiblQVc8N","tlshash":"ed93932a20d5043b40b381f269754b8efe66855fc70a9214b6fc93db6ff6c02dd63998","size":97320,"data":"","first_seen":"2025-01-31T03:46:56.426952Z","last_seen":"2025-01-31T03:46:56.426952Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"http","addr":"challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2025-01-31T03:46:23.963851478Z","timestamp":1738295183963,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\ndate: Fri, 31 Jan 2025 03:46:23 GMT\r\ncontent-length: 0\r\naccess-control-allow-origin: *\r\ncache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public\r\ncross-origin-resource-policy: cross-origin\r\nlocation: /turnstile/v0/b/6682e961b853/api.js\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 90a6b6e3b991712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.822Z","timestamp":1738295194822,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 24 Jan 2025 09:16:22 GMT","end":"Thu, 24 Apr 2025 10:16:21 GMT"},"fingerprint":{"sha1":"00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32","sha256":"E1:9E:09:57:22:18:8B:D8:DD:89:2B:13:1E:DE:9E:B5:D9:7F:4E:46:18:C4:8D:2B:07:E4:55:3D:8A:1F:5C:E6"}}},"request":{"raw":"GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:23 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 13972\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"61182885-3694\"\r\nlast-modified: Sat, 14 Aug 2021 20:33:09 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 728085\r\nexpires: Wed, 21 Jan 2026 03:46:23 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=jJqFvaHiXbwAKsFlBbTBBl%2F9S4jXdYj%2B5I8mEIvBiYu8nUOLwVDmtI8TwuRICswpbUg%2BzBCDnhl%2BR77F1ttU%2FmxiCmlMbSIYPZMuTZlKql3ExNSrZ3liIVHGJQ40tqpoaEGZ0g0T\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 90a6b6e3cd571c12-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13972,"size_decoded":48316,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (48316), with no line terminators","md5":"2ca03ad87885ab983541092b87adb299","sha1":"1a17f60bf776a8c468a185c1e8e985c41a50dc27","sha256":"8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762","sha512":"13c412bd66747822c6938926de1c52b0d98659b2ed48249471ec0340f416645ea9114f06953f1ae5f177db03a5d62f1fb5d321b2c4eb17f3a1c865b0a274dc5c","ssdeep":"768:J1Z4iiyfiD78x6l42SWRV4HC0o10LEnM9OT81agZnEpnS:vZYDc6lXJd1mZpZEdS","tlshash":"19231ac5a19c605152a774c40d7f704b7463352a070d8aacf668e9eeecfcaea9039d7c","first_seen":"2023-03-07T01:31:53Z","last_seen":"2026-04-04T10:00:21.163008Z","times_seen":149561,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.176Z","timestamp":1738295194176,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo ECC Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 25 Jun 2024 00:00:00 GMT","end":"Wed, 25 Jun 2025 23:59:59 GMT"},"fingerprint":{"sha1":"CD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5","sha256":"AB:77:AE:8B:01:C3:97:E7:80:17:A2:C0:A0:8D:8A:BE:C9:8A:77:1C:06:8C:B9:64:E1:7B:E5:9F:3B:E7:EC:FA"}}},"request":{"raw":"GET /jquery-3.6.0.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-15d9d\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Fri, 31 Jan 2025 03:46:23 GMT\r\nage: 3780522\r\nx-served-by: cache-lga21931-LGA, cache-hel1410031-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 71, 1239201\r\nx-timer: S1738295184.984858,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30875\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30875,"size_decoded":89501,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-04T11:45:31.211872Z","times_seen":444796,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"developers.cloudflare.com/favicon.png","fqdn":"developers.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.16.5.189","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2025-01-31T03:46:24.257256806Z","timestamp":1738295184257,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: developers.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:24 GMT\r\ncontent-type: image/png\r\ncontent-length: 937\r\ncache-control: public, max-age=0, must-revalidate\r\netag: \"6be7ff94b6151f8cfbf08b53a17e2ac1\"\r\nset-cookie: __cf_bm=C_jqEKqcwHnQaxwYPeXdhtJQe4UsNKOJYmxzf361TFg-1738295184-1.0.1.1-OfBWi7lhHorZf8TqbUZXnj.x.SC5pNybIPxief93rjcNOuCfrwE8p2jJFw.yCxwbPA2FJKxE3T5VT_la.O09Lw; path=/; expires=Fri, 31-Jan-25 04:16:24 GMT; domain=.developers.cloudflare.com; HttpOnly; Secure; SameSite=None\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=15552000; preload\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\nserver: cloudflare\r\ncf-ray: 90a6b6e57b0c5694-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":937,"size_decoded":937,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"fc3b7bbe7970f47579127561139060e2","sha1":"3f7c5783fe1f4404cb16304a5a274778ea3abd25","sha256":"85e6223afdbd5badf2c79bcfbaa6fe686acaa781eca52c196647ffabb3be2ffe","sha512":"49fa22de92bebede28bb72f7c7902c01d59e56723811629e40c8a887e34fd0b392a9df169a238bdd8e46d984e76312d75b2644b8611c66a71a559c1b6834de6c","ssdeep":"","tlshash":"2d11b7a7452d00b1d69933639306d88aa21ee848d74308ca38adf38713834d69bc976e","first_seen":"2024-11-14T16:12:41.503532Z","last_seen":"2026-03-24T20:42:24.621217Z","times_seen":18149,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/M9L83S/","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2025-01-31T03:46:34.309912096Z","timestamp":1738295194309,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /M9L83S/ HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:23 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=w%2BoYj8f77N7noixiT%2F4VENxMAaddeluQVPvXF74HJ6ZquK0gaN7iueMSoLXvWNy5Z16%2FrlyL%2FAonFxQLCabv7y0XqlwdWe4zdxac3cWzH%2F%2BBCr3SBwc%2Fc1PZ18qUgA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nset-cookie: XSRF-TOKEN=eyJpdiI6IjM1MjJvZVI3Z1JhbURGYXNLTzB5bGc9PSIsInZhbHVlIjoiK3g4YlVPM2hpQTFhbk81S3d2a2lzVysweWdabU5haDFEQk1nU3pQcWoxZWNKTVRkUXNDeHQ1czdLV1YvRHoxek5HcDZRbExZN1Uycy81LzYrQVRUWWdpZFVZdjJmOVhOSGE3Umdqdmk0NHk5SEthS1c0ZmFlUk1wYVdyZnduUWwiLCJtYWMiOiIxM2YzN2M3ZjRmZGZkNjJlZGYzZDY5MTA0NTljZjlmMDRjMWY3OWM0NGUyMWM0YzdhYmNkNmNkOTc1MzdkOTEwIiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:23 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6IlZidEtKdCtuT21OS3AybGdhOUVSSVE9PSIsInZhbHVlIjoiZVJRKzYwNGlHUTJiZTNPLzFNRWlGQnc0eUFwUEMyQXh5STdXU0M5V2w4NHZpdGYwUkYybHZ1akJWNm5uUG8yMyt1ak1lU3AxaG1uYWU2b3ZneFY1dGNwSE5zRWVrQ2JTcjYvNGd4SDJXSWdkRnBzS1VSVzNaQncxZjhMdEFDLzEiLCJtYWMiOiJiODAzODYwYjg3OTNkMmZjYTMyYzc0OGQ5OTgxMjQzODUwZmZlNGFiYWRhYmQwZGQ2YjI0NGMyZTViNWM5NzU0IiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:23 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\nserver: cloudflare\r\ncf-ray: 90a6b6e0aa82b4f4-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=490\u0026min_rtt=479\u0026rtt_var=157\u0026sent=4\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2822\u0026recv_bytes=1402\u0026delivery_rate=5089630\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=99e12c70b18b80f5\u0026ts=183\u0026x=0\", cfL4;desc=\"?proto=TCP\u0026rtt=6208\u0026min_rtt=437\u0026rtt_var=11476\u0026sent=7\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3280\u0026recv_bytes=1264\u0026delivery_rate=6286541\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=88d6c85d91fb0004\u0026ts=275\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":42562,"size_decoded":467609,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (65296)","md5":"3ee734c9901e724e78c028e7d5671559","sha1":"6b48aaea6dbc254778228d1a110a54f5014f7d9e","sha256":"f1d45052ef7c79a1c890bfc9b462b178bae04e14e2355525e7930e367b786178","sha512":"bb57d45126b83c14fa55ef6ee2e3ed2bba63ac91349cf20796609dc18a66a6f64adcc3305afe4154756a6a89f7995726cb04813ea3acaa28a98519c3db8f28d8","ssdeep":"1536:+bOAGmx1Z9jOMbx5DQGMsWcJDbOAGmx1Z9jOMbx5DQGMsWcJjLB1mLB1W:ax991x6GMsWyx991x6GMsWcEI","tlshash":"38a477124a0a19d13a1f2a7ee08aa5b6cc1cd0963f63bd8b94e755b1bf246d731c31dc","first_seen":"2025-01-31T03:46:56.394618Z","last_seen":"2025-01-31T03:46:56.394618Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/M9L83S/","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2025-01-31T03:46:34.330798217Z","timestamp":1738295194330,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /M9L83S/ HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IkRSY1hXNFl3MGVmMlhUdkkwaGxaa2c9PSIsInZhbHVlIjoiSGsycW9jd1hNUHpJcWcxQkI1SWY4TDdYekFUSjVKekRNaTIvUHZ3WVYvNEdjSnc0UGREbFZpTnQ3Yk9TbXNqYnJ4Yk9sRzVjSUdtblFiRkQvTThFMVdYdjV1bWM3SEF2T1p3SmJFTmRlNGRWV0lCZkV4ZkplaXFTY2FzeXpyTTUiLCJtYWMiOiI0Y2YwN2JiNTkwMjBkMzY2NjgwMWQ2MTYyMWRkN2ZiNTkxYzQ2MWFiNWFjMTQ4MTM0Y2QyMWRmMDUyYjQ0MDFjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik1OejkwYWlmeVVYaXdGSzVJc1BlQnc9PSIsInZhbHVlIjoiWHRZbkNoWlUzOTQrVXRrY2MzNStsRERhZmk0eStQSXBUNXlWMDc2L284eVBuQU14UDd2ZnZhb3kvVFlDWWNlKzBLeTgrMTVLT0Z4L3pzdTNUVlhXaWQ2a3YrMitraG1pZS92dm1rWkJWdlhmY2pXL2dYVjNaR1ZuTXNsN3grVDgiLCJtYWMiOiI2YTVlYTIxZWJlMGNlYjUzMTk5YTBmOGFkNGU5OGZjOWQ5NTJkNDYyZjJiYTQyZmJiY2E2M2E0N2ViYjllODY3IiwidGFnIjoiIn0%3D\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nSec-Fetch-User: ?1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=KGo69%2B2bFz5flYBgSginIKJvqJxT%2FhLTgQJLKTq1NT7NJtWdY3hWDAoiJFYCNPUGBFPsu9%2BZLAEXiTYfQHehHqyJ0zKP7O35yhXGe%2FkmG1YV9Gp%2Bq16rmYGKKM8fiQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nset-cookie: XSRF-TOKEN=eyJpdiI6IlZvTzFZM0FRL0NNOGxtSkpoUGFJSkE9PSIsInZhbHVlIjoiYVBobndaRjIrd0dRaGd0ZWdhV3ZMa0NLYzk1MHBtR2N4RHJVSDJpOGxQUHFZcjJ0bmdJOHFUOE5hWmcvbnVQSXdYbllNNnB2NE5GaEMvbndmNlp4YThWZnMzM20zRDFuT25ieWZKODlqT3hncWNrdU90TE01TkcwRHR4NWlmOXkiLCJtYWMiOiIxMWQ1NGIzZGNiZTZjMTMyMWFkNjJjYWUwMjkwZGIxM2IzMjJlM2E0ZGNhMDYzZDUxZmIwNmFhNjQ1OGM3NThjIiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:34 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6IndrYjhXZHhyWXlRVFlhMUx1amVLcVE9PSIsInZhbHVlIjoiTForNWJGQlpKRC9MMC9Menh5M2dEWDZwZUNhaXJhSnNyR2ZGQ0o2TjBQS3Y0dCsxYmN1R053bTJpcjdNb0hrelhlZEZtTTJxM2NwQlh6UnEyYlNYOWpWcXIzTVYzb1V5M0pyUVY5WHZBbTVaL0RzNDZHTjhHTllyb0FCY2djdXciLCJtYWMiOiI0ZWRhNDA0ZGUyOWFjMDI3YmJiMGZjZDNmNDdhOWE2ZmU3NzU2ZTk0ODBkYTgwYWI2OTg3MzMyOWE2ZmNjMmVmIiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:34 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\npriority: u=1,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b721fdb2b51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=444\u0026min_rtt=431\u0026rtt_var=147\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2154\u0026delivery_rate=5516190\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=c894b58149bdfda0\u0026ts=156\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=4586\u0026min_rtt=2680\u0026rtt_var=2031\u0026sent=17\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=6343\u0026recv_bytes=3809\u0026delivery_rate=213\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=10423\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40385,"size_decoded":17006,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (11773), with CRLF line terminators","md5":"582aabf9196fdbefe9f5d5e6467b71ed","sha1":"e38284baf84e115cb0655a2f69e7b363238a42eb","sha256":"36cdde630f705e70eb0c254272356de6a005f2f12bcbe803e8831ab24d99806e","sha512":"f273e01e256354ac00e7f654cb2e20ccd834dc4d6d1c02daf7228d56465f409aae4ab6c6295e5c805e3fb65871dd62819acd543a9e0451b591eb43f075f7ba12","ssdeep":"192:bniq+4qU38voY7UA6FUOCj/77oYh9D6Ftiuhruf4lxzIaLIqrduTQfreqrduTQfC:jiq+c8vT8HY/e/3lblrVlru","tlshash":"8a729edb728096711732edd0b6104ec60f7aac7d169cd8e4a87b4f18c132ed65cc69b8","first_seen":"2025-01-31T03:46:56.395893Z","last_seen":"2025-01-31T03:46:56.395893Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.176Z","timestamp":1738295194176,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo ECC Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 25 Jun 2024 00:00:00 GMT","end":"Wed, 25 Jun 2025 23:59:59 GMT"},"fingerprint":{"sha1":"CD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5","sha256":"AB:77:AE:8B:01:C3:97:E7:80:17:A2:C0:A0:8D:8A:BE:C9:8A:77:1C:06:8C:B9:64:E1:7B:E5:9F:3B:E7:EC:FA"}}},"request":{"raw":"GET /jquery-3.6.0.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-15d9d\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\nage: 3780532\r\nx-served-by: cache-lga21931-LGA, cache-hel1410031-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 71, 1239203\r\nx-timer: S1738295195.785611,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30875\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30875,"size_decoded":89501,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-04T11:45:31.211872Z","times_seen":444796,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.822Z","timestamp":1738295194822,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 24 Jan 2025 09:16:22 GMT","end":"Thu, 24 Apr 2025 10:16:21 GMT"},"fingerprint":{"sha1":"00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32","sha256":"E1:9E:09:57:22:18:8B:D8:DD:89:2B:13:1E:DE:9E:B5:D9:7F:4E:46:18:C4:8D:2B:07:E4:55:3D:8A:1F:5C:E6"}}},"request":{"raw":"GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 13972\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"61182885-3694\"\r\nlast-modified: Sat, 14 Aug 2021 20:33:09 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 728096\r\nexpires: Wed, 21 Jan 2026 03:46:34 GMT\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=H7pWayzoTTW%2FnGAasZGLTQx6ibP2HKJZNGG8Sh8GFFdrYvN0ps3wOjye7SpvQG78faw1NqxIHEiXfwuuUzGGU8nwZm%2B1E%2FhkUGbCkO4S%2FZgKViTw%2BHMV4BkmvgF3Cb8AJAIDhb4m\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 90a6b7278c920b06-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13972,"size_decoded":48316,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (48316), with no line terminators","md5":"2ca03ad87885ab983541092b87adb299","sha1":"1a17f60bf776a8c468a185c1e8e985c41a50dc27","sha256":"8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762","sha512":"13c412bd66747822c6938926de1c52b0d98659b2ed48249471ec0340f416645ea9114f06953f1ae5f177db03a5d62f1fb5d321b2c4eb17f3a1c865b0a274dc5c","ssdeep":"768:J1Z4iiyfiD78x6l42SWRV4HC0o10LEnM9OT81agZnEpnS:vZYDc6lXJd1mZpZEdS","tlshash":"19231ac5a19c605152a774c40d7f704b7463352a070d8aacf668e9eeecfcaea9039d7c","first_seen":"2023-03-07T01:31:53Z","last_seen":"2026-04-04T10:00:21.163008Z","times_seen":149561,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/favicon.ico","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.353Z","timestamp":1738295194353,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlZvTzFZM0FRL0NNOGxtSkpoUGFJSkE9PSIsInZhbHVlIjoiYVBobndaRjIrd0dRaGd0ZWdhV3ZMa0NLYzk1MHBtR2N4RHJVSDJpOGxQUHFZcjJ0bmdJOHFUOE5hWmcvbnVQSXdYbllNNnB2NE5GaEMvbndmNlp4YThWZnMzM20zRDFuT25ieWZKODlqT3hncWNrdU90TE01TkcwRHR4NWlmOXkiLCJtYWMiOiIxMWQ1NGIzZGNiZTZjMTMyMWFkNjJjYWUwMjkwZGIxM2IzMjJlM2E0ZGNhMDYzZDUxZmIwNmFhNjQ1OGM3NThjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IndrYjhXZHhyWXlRVFlhMUx1amVLcVE9PSIsInZhbHVlIjoiTForNWJGQlpKRC9MMC9Menh5M2dEWDZwZUNhaXJhSnNyR2ZGQ0o2TjBQS3Y0dCsxYmN1R053bTJpcjdNb0hrelhlZEZtTTJxM2NwQlh6UnEyYlNYOWpWcXIzTVYzb1V5M0pyUVY5WHZBbTVaL0RzNDZHTjhHTllyb0FCY2djdXciLCJtYWMiOiI0ZWRhNDA0ZGUyOWFjMDI3YmJiMGZjZDNmNDdhOWE2ZmU3NzU2ZTk0ODBkYTgwYWI2OTg3MzMyOWE2ZmNjMmVmIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: max-age=14400\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=tjUDPp9aPIuOhe9b%2F2oxESzIlwD7mlPE1zcMqHJKLw3UgG9RzMXETX1y%2Bkbd3IxOMeGD9jyQRDmVDIxikMRL33nImU0fc1IbG4TkUpmyI5o8ruW7TuFFoQgN6a7cHA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4601\r\npriority: u=6,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b724bf0eb51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=462\u0026min_rtt=459\u0026rtt_var=179\u0026sent=4\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2105\u0026delivery_rate=5922290\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=cc81dadf758a80c9\u0026ts=142\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=4346\u0026min_rtt=2680\u0026rtt_var=1324\u0026sent=34\u0026recv=16\u0026lost=0\u0026retrans=0\u0026sent_bytes=19576\u0026recv_bytes=5803\u0026delivery_rate=15701\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=10656\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":28003,"size_decoded":28003,"mime_type":"text/html; charset=UTF-8","magic":"Targa image data - Mono 27904 x 96 x 16 +1 \"\"","md5":"9ad4c6097736c6deca64f7dcaf97adc5","sha1":"a93a53bf8da983f3aa3909c3daf53619dacecbfc","sha256":"ba7d4453a418478ecbfc9600093eef6d287421d298631e9107e057ca0b6beb54","sha512":"2d6ad25941707cc00a1599996bc4cbca1fa32a2911523eea38d7abebfec45812a6231d9b5d7c81ca2382953f09653c6980fe2d14438eab6a9e2b9ad7ff9f90b5","ssdeep":"768:PDT1rKvlJOE1AgLlnGj8H58AJUcl5I17ML7FfNHubNIphqb:PDtKvyAhjHeACcl21YL7KNW+","tlshash":"11c2f1c78fd02879a72dfeb80252903197d00de93fea42318d99b70fe683997515e272","first_seen":"2024-03-08T01:40:34Z","last_seen":"2025-02-28T11:01:13.192535Z","times_seen":84,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/GDSherpa-bold.woff","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.838Z","timestamp":1738295194838,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /GDSherpa-bold.woff HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: font/woff\r\ncontent-length: 35970\r\ncontent-disposition: inline; filename=\"GDSherpa-bold.woff\"\r\ncache-control: max-age=14400\r\nlast-modified: Fri, 31 Jan 2025 02:29:53 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=R77FJK%2FSZK71%2BJsl7GRX6ViMjR9tWQ55mXUv5hxRoWZ%2F%2FaVFgCRNaqXW0dcLFmu7fQSeHPyUvNVuVgFj4guEFoCE3D%2BWhcHZW4g5aVh0cQBvrVVTeGo4PW5OCKWaTA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4601\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b7279911b51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=591\u0026min_rtt=585\u0026rtt_var=175\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2824\u0026recv_bytes=2183\u0026delivery_rate=4716612\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=a2f5a722db183c0e\u0026ts=182\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=2039\u0026min_rtt=769\u0026rtt_var=1285\u0026sent=130\u0026recv=41\u0026lost=0\u0026retrans=0\u0026sent_bytes=114642\u0026recv_bytes=14558\u0026delivery_rate=2141298\u0026cwnd=52800\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11113\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35970,"size_decoded":35970,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 35970, version 1.0","md5":"496b7bbde91c7dc7cf9bbabbb3921da8","sha1":"2bd3c406a715ab52dad84c803c55bf4a6e66a924","sha256":"ae40a04f95df12b0c364f26ab691dc0c391d394a28bcdb4aeacfaca325d0a798","sha512":"e02b40fea8f77292b379d7d792d9142b32dfcb887655a2d1781441227dd968589bfc5c00691b92e824f7edb47d11eba325ade67ad08a4af31a3b0ddf4bb8b967","ssdeep":"768:GJiLCleIZlcBvahjeheOQKskmCp9sE9gBkGgvU+7aAXDqWOtU:GJo9IgMKsQzJ9gBkZbuAXDqWV","tlshash":"a4f2d09831594c2aacbd58232b71d9df21e38f61ba42029ba193e4cd9c4714dbb1e47f","first_seen":"2023-05-09T17:48:02Z","last_seen":"2026-04-03T14:38:11.334972Z","times_seen":90449,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/GDSherpa-regular.woff2","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.842Z","timestamp":1738295194842,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /GDSherpa-regular.woff2 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 28584\r\ncontent-disposition: inline; filename=\"GDSherpa-regular.woff2\"\r\ncache-control: max-age=14400\r\nlast-modified: Fri, 31 Jan 2025 02:29:53 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rLXolQD2z7gvK0cbNAUEpEFyi8i%2FxjpyIxfzqdVaNrB3gy09sFHqiwm%2BCn82w1LvcuwKKhqYB%2B9XcEvDxh%2FL91r5KsQqSULTLNPPRCGnZSK%2BTlpqd%2F148vuW9dHYlg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4601\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b7279912b51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=776\u0026min_rtt=766\u0026rtt_var=222\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2188\u0026delivery_rate=3693877\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=b4e40f69dbe59395\u0026ts=182\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=2039\u0026min_rtt=769\u0026rtt_var=1285\u0026sent=150\u0026recv=43\u0026lost=0\u0026retrans=0\u0026sent_bytes=138642\u0026recv_bytes=16376\u0026delivery_rate=2141298\u0026cwnd=52800\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11114\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28584,"size_decoded":28584,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28584, version 1.66","md5":"17081510f3a6f2f619ec8c6f244523c7","sha1":"87f34b2a1532c50f2a424c345d03fe028db35635","sha256":"2c7292014e2ef00374aeb63691d9f23159a010455784ee0b274ba7db2bcca956","sha512":"e27976f77797ad93160af35714d733fd9e729a9981d8a6f555807981d08d8175e02692aa5ea6e59cebd33895f5f6a3575692565fdd75667630dab158627a1005","ssdeep":"768:8n53CNftp4NM/2qxGvtAG9fvpWYSTvlj6OIqrd1xUseRc:85SNfQS2ntfxvpWYSTcfMERc","tlshash":"b4d2e0ed44d2c62988f7638902690111f27898ffe52d7db3c19da0b27245d7ea3a8b09","first_seen":"2023-04-09T18:51:15Z","last_seen":"2026-04-04T11:49:23.660632Z","times_seen":100468,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/GDSherpa-vf.woff2","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.847Z","timestamp":1738295194847,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /GDSherpa-vf.woff2 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 43596\r\ncontent-disposition: inline; filename=\"GDSherpa-vf.woff2\"\r\ncache-control: max-age=14400\r\nlast-modified: Fri, 31 Jan 2025 02:29:53 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=wBt6daVnF97qo7ZbgBkhNWXnjGVqRnnjVaYPeXif9iIldc%2BFa83bSx2%2Fi3OaO8c2lsLVUw%2FBwurk2lZ8hriLx27Ob0w1Lb84C4vlqYiIw7oso%2BR%2B7b4G5pexBLSwZA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4600\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727991cb51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=568\u0026min_rtt=563\u0026rtt_var=169\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2183\u0026delivery_rate=4826666\u0026cwnd=250\u0026unsent_bytes=0\u0026cid=a0a5dbd3514dbc67\u0026ts=221\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1907\u0026min_rtt=769\u0026rtt_var=1227\u0026sent=196\u0026recv=44\u0026lost=0\u0026retrans=0\u0026sent_bytes=191442\u0026recv_bytes=16422\u0026delivery_rate=4186037\u0026cwnd=64800\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11120\u0026x=1\", cfExtPri, cfHdrFlush;dur=16\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43596,"size_decoded":43596,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43596, version 1.0","md5":"2a05e9e5572abc320b2b7ea38a70dcc1","sha1":"d5fa2a856d5632c2469e42436159375117ef3c35","sha256":"3efcb941aaddaf4aea08dab3fb97d3e904aa1b83264e64b4d5bda53bc7c798ec","sha512":"785ab5585b8a9ed762d70578bf13a6a69342441e679698fd946e3616ef5688485f099f3dc472975ef5d9248afaad6da6779813b88aa1db60abe2cc065f47eb5f","ssdeep":"768:b0nfc/3Osy1fo0tBBFF/GGXfN2ZHKTBUwL+BR49qCow3Z3HuvJ5+xXtTgXHk6/:b0fU3OdhFF/xNOoZc49ow3Z3HO+xX1mf","tlshash":"e2130258592578a9eb43bd49f00c6e64c296b3d8f5832b62334a04f0bff651620fe797","first_seen":"2023-04-18T03:10:28Z","last_seen":"2026-04-03T14:38:11.33698Z","times_seen":91843,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/GDSherpa-regular.woff","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.846Z","timestamp":1738295194846,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /GDSherpa-regular.woff HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: font/woff\r\ncontent-length: 36696\r\ncontent-disposition: inline; filename=\"GDSherpa-regular.woff\"\r\ncache-control: max-age=14400\r\nlast-modified: Fri, 31 Jan 2025 02:29:53 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=EPDaUF8AUMTLcgZ26EdGmMhyINc5%2B3yrbCQ%2Fu9AJlYs%2FRIefmlt1KefY87Z%2Bnk%2BDIg5D3DpNxTee5Ohq0vnpq1mBtsf6CkzGpNdEzuWJwoRZEl8r8%2FqP8VdQkLw7ZA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4601\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727991bb51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=715\u0026min_rtt=705\u0026rtt_var=218\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2822\u0026recv_bytes=2186\u0026delivery_rate=3746442\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=26f4fa433625172a\u0026ts=188\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1907\u0026min_rtt=769\u0026rtt_var=1227\u0026sent=188\u0026recv=44\u0026lost=0\u0026retrans=0\u0026sent_bytes=182567\u0026recv_bytes=16422\u0026delivery_rate=4186037\u0026cwnd=64800\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11120\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36696,"size_decoded":36696,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 36696, version 1.0","md5":"a69e9ab8afdd7486ec0749c551051ff2","sha1":"c34e6aa327b536fb48d1fe03577a47c7ee2231b8","sha256":"fd78a1913db912221b8ead1e62fad47d1ff0a9fa6cd88d3b128a721ad91d2faf","sha512":"9a0e4297282542b8813f9cc85b2ccb09663ce281f64503f9a5284631881da9aacf7649553bf1423d941f01b97e6bc3ba50ab13e55e4b7b61c5aa0a4adf4d390f","ssdeep":"768:lvJo4KciQZYjebVq19lKPtHAQ/l4rj2bqkiHShpeSUOR4OqWOgaU:lhH3rVq1PKP432tSSh4SUORHqWcU","tlshash":"31f2f15d76443e8cf06a245836ad2dd6a423171247138f8709de72bbd14f120f65aaff","first_seen":"2023-05-09T17:48:02Z","last_seen":"2026-04-03T14:38:11.342242Z","times_seen":90380,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/GDSherpa-vf2.woff2","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.860Z","timestamp":1738295194860,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /GDSherpa-vf2.woff2 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 93276\r\ncontent-disposition: inline; filename=\"GDSherpa-vf2.woff2\"\r\ncache-control: max-age=14400\r\nlast-modified: Fri, 31 Jan 2025 02:29:53 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=7ZjYr9qkD5%2BQiYwskGcLP09JpX3rCuGryJgeGtiPSyr5czDRrULnfATwXhzmWTwhQEpILvDVdRVzI1aC4rYZMK59Nx9vqaWvUvkxHMqcYoCTcEG3eRSz%2FDx8vyMw2w%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4600\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727a91eb51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=558\u0026min_rtt=549\u0026rtt_var=171\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2822\u0026recv_bytes=2182\u0026delivery_rate=4875420\u0026cwnd=240\u0026unsent_bytes=0\u0026cid=8e4b833bbfa853cc\u0026ts=220\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1907\u0026min_rtt=769\u0026rtt_var=1227\u0026sent=196\u0026recv=44\u0026lost=0\u0026retrans=0\u0026sent_bytes=191442\u0026recv_bytes=16422\u0026delivery_rate=4186037\u0026cwnd=64800\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11121\u0026x=1\", cfExtPri, cfHdrFlush;dur=15\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":93276,"size_decoded":93276,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 93276, version 1.0","md5":"bcd7983ea5aa57c55f6758b4977983cb","sha1":"ef3a009e205229e07fb0ec8569e669b11c378ef1","sha256":"6528a0bf9a836a53dfd8536e1786ba6831c9d1faa74967126fddf5b2081b858c","sha512":"e868a2702ca3b99e1abbcbd40b1c90b42a9d26086a434f1cbae79dfc072216f2f990fec6265a801bc4f96db0431e8f0b99eb0129b2ee7505b3fdfd9bb9bafe90","ssdeep":"1536:Dy7KSLv+MMqDeeIgDFSxpuQP7ObnKSWBO61LlRzSSAT6YmkSzOu7Be0OB53jIH4I:Dy7JD+net+puI7ObKHVhTSSlYmk4OuWa","tlshash":"d293029c71ec79c19e00616e94c92535f89fdab0f049d3fa9a4ed85b927c369e343b10","first_seen":"2023-05-01T02:20:29Z","last_seen":"2026-04-03T14:38:11.338063Z","times_seen":91677,"resource_available":false,"data":null}},"time_used":52,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"ok4static.oktacdn.com/fs/bcg/4/gfsh9pi7jcWKJKMAs1t7","fqdn":"ok4static.oktacdn.com","domain":"oktacdn.com","tld":"com"},"ip":{"addr":"143.204.55.47","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.890Z","timestamp":1738295194890,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.oktacdn.com","organization":"Okta, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 02 Dec 2024 00:00:00 GMT","end":"Fri, 02 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:D7:C7:A6:35:70:74:E4:BF:45:2E:A1:D5:A3:25:88:24:76:B3:B5","sha256":"71:C0:94:09:81:5A:DD:BE:41:D4:27:16:CB:BB:73:BD:A1:E1:22:3A:D2:6C:C1:26:F0:EC:4B:ED:3D:64:26:3B"}}},"request":{"raw":"GET /fs/bcg/4/gfsh9pi7jcWKJKMAs1t7 HTTP/1.1\r\nHost: ok4static.oktacdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 10796\r\nserver: nginx\r\nlast-modified: Tue, 23 Feb 2021 04:20:08 GMT\r\nstrict-transport-security: max-age=315360000; includeSubDomains\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\ndate: Wed, 29 Jan 2025 00:59:17 GMT\r\nexpires: Thu, 29 Jan 2026 00:59:17 GMT\r\ncache-control: max-age=31536000, public,max-age=31536000,s-maxage=1814400\r\netag: \"12bdacc832185d0367ecc23fd24c86ce\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: Ro-n3-A9Z_UXlW358hc6VEShk45pOVBHdho-yhcXzJl_ONp26HAXYw==\r\nage: 182837\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10796,"size_decoded":10796,"mime_type":"image/png","magic":"PNG image data, 420 x 94, 8-bit/color RGBA, non-interlaced","md5":"12bdacc832185d0367ecc23fd24c86ce","sha1":"4422f316eb4d8c8d160312bb695fd1d944cbff12","sha256":"877ae491d9aac5c6ef82a8430f9f652ace8a0dbc7294bd112aad49bd593769d0","sha512":"36c319ac7f75202190e7a59f3f3c92892a71d5f17663e672319a745b6574bcfde7c89b35f480cb15a193924dacb9d67f8ca1e1bc2bf33fc5ccbfa152cc7ba2d0","ssdeep":"192:aPzBBDKs07GiH528urXXSjD4/voR3Euri/in9Q28oLaIAQLdCYXQIDeoIdv60:aPVBQ7P5nIyjD+oRnr4inJdANuGdC0","tlshash":"7122af89d5a7d9387f3ff18c00be1fcb46f8a1f9760608b93989875d0641d9c188c499","first_seen":"2023-05-04T21:28:17Z","last_seen":"2026-03-28T17:39:33.499647Z","times_seen":38422,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":54,"dns":0,"connect":0,"send":0,"wait":2,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/wxSJMp4UWprK216fgUSG9qreuJSqIlMlOaylS7JH5r12130","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.876Z","timestamp":1738295194876,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /wxSJMp4UWprK216fgUSG9qreuJSqIlMlOaylS7JH5r12130 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/webp\r\ncontent-length: 644\r\ncontent-disposition: inline; filename=\"wxSJMp4UWprK216fgUSG9qreuJSqIlMlOaylS7JH5r12130\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=uAsNIG3%2BJyvf6OdMB%2FayRl1f%2BFY992oBwj0ak%2FW0UU5sJ0khhntdPHnBxNJPdz5iR5Ir9OjFwW4ula2CKrSah9gu%2BD78ubdR320UqDg996l4qMS92eSHAd417F35Rw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727a920b51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=451\u0026min_rtt=428\u0026rtt_var=164\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2822\u0026recv_bytes=2140\u0026delivery_rate=4933560\u0026cwnd=250\u0026unsent_bytes=0\u0026cid=55d7356846dc93b3\u0026ts=133\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1701\u0026min_rtt=769\u0026rtt_var=1082\u0026sent=359\u0026recv=57\u0026lost=0\u0026retrans=0\u0026sent_bytes=377683\u0026recv_bytes=23978\u0026delivery_rate=2702285\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11301\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":644,"size_decoded":644,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"541b83c2195088043337e4353b6fd60d","sha1":"f09630596b6713217984785a64f6ea83e91b49c5","sha256":"2658b8874f0d2a12e8726df78ac8954324c3bbe4695e66bdef89195fde64322f","sha512":"b2ae42ba9d3a63d3acb179051b005f2589f147d94f044616ae5dc5705e873f16057c56934262841191263b4c35804ef188bd38cf69cce0f4b2cf76c05f17b8ad","ssdeep":"","tlshash":"f4f00e3613a40b4ce5643ff860d10f03f37c7e22cb17aa66c10082221f049c86c9c2ca","first_seen":"2025-01-27T17:47:42.408787Z","last_seen":"2025-09-19T23:18:03.500571Z","times_seen":37683,"resource_available":false,"data":null}},"time_used":190,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/opqWPN3KwWodc1pWDSU5sdF5tR4IQQ9gh7AsC3k7TWIAySnvVSGRkM45140","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.878Z","timestamp":1738295194878,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /opqWPN3KwWodc1pWDSU5sdF5tR4IQQ9gh7AsC3k7TWIAySnvVSGRkM45140 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/webp\r\ncontent-length: 892\r\ncontent-disposition: inline; filename=\"opqWPN3KwWodc1pWDSU5sdF5tR4IQQ9gh7AsC3k7TWIAySnvVSGRkM45140\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Yx69AbTcSvfgVoeNGJpTIF7rkdowNiXcWCbQ4uHohF%2F6sl9iT3K5NoerH1UpznGeeS7DAyjMHp6QjL8Z8sXNR3wzgmlfnKYDxU6bXKSP%2BbDRAmKRkWSiFDeo%2BrgVXw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727a921b51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=469\u0026min_rtt=450\u0026rtt_var=162\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2824\u0026recv_bytes=2152\u0026delivery_rate=5227436\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=b83b0099638addcc\u0026ts=138\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1586\u0026min_rtt=769\u0026rtt_var=1040\u0026sent=364\u0026recv=58\u0026lost=0\u0026retrans=0\u0026sent_bytes=381826\u0026recv_bytes=24024\u0026delivery_rate=2114908\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11305\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":892,"size_decoded":892,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"41d62ca205d54a78e4298367482b4e2b","sha1":"839aae21ed8ecfc238fdc68b93ccb27431cd5393","sha256":"20a4a780db0bcc047015a0d8037eb4eb58b3e5cb338673799c030a3e1b626b40","sha512":"82b9806490a0db493da16466738437b9bb54b979075db58c89ca0d192d780ddb5ed888e10ce76a53d48d30d5013791cac7ab468d85b61d32766140dd53dc9044","ssdeep":"","tlshash":"a41120296b6053c8e7156bbc60c11f92ebbdb9124712627782c093366b489c6255c2d2","first_seen":"2025-01-27T17:47:42.408008Z","last_seen":"2025-09-19T23:18:03.480147Z","times_seen":36702,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/opeAVELAq2kg7hNzu7KWkvlZltXNWa82dNS12G3lkbPJjsx20IS4wJqeXRzL0Ho1SWhZa6UIcd235","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.892Z","timestamp":1738295194892,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /opeAVELAq2kg7hNzu7KWkvlZltXNWa82dNS12G3lkbPJjsx20IS4wJqeXRzL0Ho1SWhZa6UIcd235 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/webp\r\ncontent-length: 9648\r\ncontent-disposition: inline; filename=\"opeAVELAq2kg7hNzu7KWkvlZltXNWa82dNS12G3lkbPJjsx20IS4wJqeXRzL0Ho1SWhZa6UIcd235\"\r\ncf-cache-status: DYNAMIC\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=EEXV5rkIBK%2Br0LXrs%2Bu2CCJVCVxgfBzon46wZK1LbKo8EdroOV9qwKkQ9vPERIqwZ9yhXyq%2F645JX3GUDv42D499XKAF6TyT8WEwRSCIqCoP6Wed1MQHgRNxEZGKCUv%2FsPXFpb8%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 90a6b727d942b51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1344\u0026min_rtt=769\u0026rtt_var=415\u0026sent=403\u0026recv=64\u0026lost=0\u0026retrans=0\u0026sent_bytes=424614\u0026recv_bytes=24298\u0026delivery_rate=6716607\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11342\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":9648,"size_decoded":9648,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4946eb373b18d178c93d473489673bb6","sha1":"16477acb73b63ca251d37401249e7e4515febd24","sha256":"666bc574c9f3fb28a8ac626fa8105c187c2a313736494a06bd5a937473673c92","sha512":"f684b90b748dc8399f76c5d8f94af6c4e6869143f18d19ce435b25eaa14e9647b120467bdd0795895676dc0cccdeabf82beb2f46ce2c5bf4c58ed9c134f30c48","ssdeep":"192:gwTgBYruFELhYmwd93mjW0l9OsENOLWcXdN4CLrHZfTtjOZgYM5cWjAaP6:gwTgBxaYmo5mS0l9OsuOL3NNVLlfTtjE","tlshash":"4a12af6f53b87b4cece19e3e4c48d73398fde91606176ac54a81a0c8d3988573a5228e","first_seen":"2025-01-27T17:47:42.409718Z","last_seen":"2025-09-19T23:18:03.495565Z","times_seen":37083,"resource_available":false,"data":null}},"time_used":200,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/uvyBjdF8x9LNDHDFEmrkQRa3Mpg63K41KeMii24549CxBQdFQ6lZNbTaiiGEoekR7v7mhG5xux2J2kVef255","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.893Z","timestamp":1738295194893,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /uvyBjdF8x9LNDHDFEmrkQRa3Mpg63K41KeMii24549CxBQdFQ6lZNbTaiiGEoekR7v7mhG5xux2J2kVef255 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/webp\r\ncontent-length: 17842\r\nserver: cloudflare\r\ncontent-disposition: inline; filename=\"uvyBjdF8x9LNDHDFEmrkQRa3Mpg63K41KeMii24549CxBQdFQ6lZNbTaiiGEoekR7v7mhG5xux2J2kVef255\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=yI%2BA5XlPPvXYa8O7PYZ2mSGcsQeRGS77h7ZgDJnO27zMQkAIbV5Ji%2Fp528%2FwHm1oWGqT9LFD%2BfXNN2%2FR14KKDB1Y16Iqs343IILgyz%2FvLPUseNZhmzvOUF7xKSZMrA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=4,i=?0\r\ncf-ray: 90a6b727d943b51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=624\u0026min_rtt=558\u0026rtt_var=204\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2177\u0026delivery_rate=4246334\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=31b8eb9db516a60d\u0026ts=126\u0026x=0\", cfExtPri\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17842,"size_decoded":17842,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4b52ecdc33382c9dca874f551990e704","sha1":"8f3bf8e41cd4cdddb17836b261e73f827b84341b","sha256":"cce050cc3b150c0b370751021bb15018ee2b64ac369e230fe3b571a9b00d4342","sha512":"ac3d3c82bad9147ae5f083ed49c81a744f672ddfbb262135aa3f2c6601f8dffea11d8e323cef025c36d76c6f2515aa6814b622cf504ca01d13346e9ea989048f","ssdeep":"384:EwTZQ74B48VtrMvbt0sAvPTMaf+j5s8OYbqarRbjy5Qg1AR/kf63z/:hTa4B4mtYztAvPTMFhOYb3Rbu571AJa6","tlshash":"6c8218ba77256ca7e25c2bb77afd731b8062d78480681d92740f038aaf3913693901f5","first_seen":"2025-01-27T17:47:42.411749Z","last_seen":"2025-09-19T23:18:03.455649Z","times_seen":36919,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/gheIfGCGTilOzLgE5E53jEDUFyeTs4w0dO7xyL9yBUajbC478mTfac0suQjF612207","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.891Z","timestamp":1738295194891,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /gheIfGCGTilOzLgE5E53jEDUFyeTs4w0dO7xyL9yBUajbC478mTfac0suQjF612207 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/webp\r\ncontent-length: 25216\r\ncontent-disposition: inline; filename=\"gheIfGCGTilOzLgE5E53jEDUFyeTs4w0dO7xyL9yBUajbC478mTfac0suQjF612207\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=FAiGBD3iZMQ2HiiIdBy1TDC3ka71MgkoOxtV9MD%2BYQUIIppQJbeEzyVox9qyfnaHasjxF1OzPZg1x6VgRCVix9FyCFCupd6KcRQFGxFubXBiLRz8llqI41TROPWJSg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727d940b51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=573\u0026min_rtt=565\u0026rtt_var=174\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2159\u0026delivery_rate=4771004\u0026cwnd=250\u0026unsent_bytes=0\u0026cid=1696270954278c56\u0026ts=132\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1407\u0026min_rtt=769\u0026rtt_var=568\u0026sent=391\u0026recv=62\u0026lost=0\u0026retrans=0\u0026sent_bytes=410615\u0026recv_bytes=24207\u0026delivery_rate=1060797\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11331\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25216,"size_decoded":25216,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f9a795e2270664a7a169c73b6d84a575","sha1":"0fbb60ab27ab88c064eb347d0722c8ed4cf5e8b8","sha256":"d00203b2eea6e418c31baafa949ada5349a9f9b7e99fa003aec7406822693740","sha512":"e17c8d922f52c8ab36d9c0a7dc41d32735cf1680ea653056308c6d23255fdbe40b96c68f0e7f8b3b521b6acb080cd825f94320364b0a70141606a4449d980517","ssdeep":"768:BTwdm3bbEPDrEQT87zOyJ0WsnoU+RBshw:64LQXEN7DJGSRBs","tlshash":"35b2afbf1ad14f30c51a6435a2ef6d51f7cde3186f900ae895b046519b2e9bacf2d80c","first_seen":"2025-01-27T17:47:42.413017Z","last_seen":"2025-09-19T23:18:03.462271Z","times_seen":37027,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":57,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"github.com/fent/randexp.js/releases/download/v0.4.3/randexp.min.js","fqdn":"github.com","domain":"github.com","tld":"com"},"ip":{"addr":"140.82.121.3","port":443,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.816Z","timestamp":1738295194816,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"github.com","organization":""},"issuer":{"commonName":"Sectigo ECC Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 07 Mar 2024 00:00:00 GMT","end":"Fri, 07 Mar 2025 23:59:59 GMT"},"fingerprint":{"sha1":"E7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0","sha256":"FD:6E:9B:0E:F3:98:BC:D9:04:C3:B2:EC:16:7A:7B:0F:DA:72:01:C9:03:C5:3A:6A:6A:E5:D0:41:43:63:EF:65"}}},"request":{"raw":"GET /fent/randexp.js/releases/download/v0.4.3/randexp.min.js HTTP/1.1\r\nHost: github.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: GitHub.com\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With\r\nlocation: https://objects.githubusercontent.com/github-production-release-asset-2e65be/2925284/11f3acf8-4ccb-11e6-8ce4-c179c0a212de?X-Amz-Algorithm=AWS4-HMAC-SHA256\u0026X-Amz-Credential=releaseassetproduction%2F20250131%2Fus-east-1%2Fs3%2Faws4_request\u0026X-Amz-Date=20250131T034635Z\u0026X-Amz-Expires=300\u0026X-Amz-Signature=c48f7e1cf8482dd221d77819966f277ea8d6dbb280989e427787fd153e41bd11\u0026X-Amz-SignedHeaders=host\u0026response-content-disposition=attachment%3B%20filename%3Drandexp.min.js\u0026response-content-type=application%2Foctet-stream\r\ncache-control: no-cache\r\nstrict-transport-security: max-age=31536000; includeSubdomains; preload\r\nx-frame-options: deny\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nreferrer-policy: no-referrer-when-downgrade\r\ncontent-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/\r\ncontent-length: 0\r\nx-github-request-id: 4266:1C3853:9F830:A8B06:679C479A\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":634,"timings":{"blocked":245,"dns":47,"connect":19,"send":0,"wait":155,"receive":0,"ssl":166},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"objects.githubusercontent.com/github-production-release-asset-2e65be/2925284/11f3acf8-4ccb-11e6-8ce4-c179c0a212de?X-Amz-Algorithm=AWS4-HMAC-SHA256\u0026X-Amz-Credential=releaseassetproduction%2F20250131%2Fus-east-1%2Fs3%2Faws4_request\u0026X-Amz-Date=20250131T034635Z\u0026X-Amz-Expires=300\u0026X-Amz-Signature=c48f7e1cf8482dd221d77819966f277ea8d6dbb280989e427787fd153e41bd11\u0026X-Amz-SignedHeaders=host\u0026response-content-disposition=attachment%3B%20filename%3Drandexp.min.js\u0026response-content-type=application%2Foctet-stream","fqdn":"objects.githubusercontent.com","domain":"objects.githubusercontent.com","tld":"githubusercontent.com"},"ip":{"addr":"185.199.110.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:35.226Z","timestamp":1738295195226,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 15 Mar 2024 00:00:00 GMT","end":"Fri, 14 Mar 2025 23:59:59 GMT"},"fingerprint":{"sha1":"97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28","sha256":"09:01:0C:CE:9B:72:21:55:C7:E6:86:B0:77:39:D3:D2:DC:06:05:DE:A1:A4:98:4A:0B:96:5E:18:77:77:26:B5"}}},"request":{"raw":"GET /github-production-release-asset-2e65be/2925284/11f3acf8-4ccb-11e6-8ce4-c179c0a212de?X-Amz-Algorithm=AWS4-HMAC-SHA256\u0026X-Amz-Credential=releaseassetproduction%2F20250131%2Fus-east-1%2Fs3%2Faws4_request\u0026X-Amz-Date=20250131T034635Z\u0026X-Amz-Expires=300\u0026X-Amz-Signature=c48f7e1cf8482dd221d77819966f277ea8d6dbb280989e427787fd153e41bd11\u0026X-Amz-SignedHeaders=host\u0026response-content-disposition=attachment%3B%20filename%3Drandexp.min.js\u0026response-content-type=application%2Foctet-stream HTTP/1.1\r\nHost: objects.githubusercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\nlast-modified: Tue, 07 Dec 2021 16:38:45 GMT\r\netag: \"0x8D9B9A009499A1E\"\r\nserver: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0\r\nx-ms-request-id: d91f6eaf-e01e-0032-2f18-13e122000000\r\nx-ms-version: 2023-11-03\r\nx-ms-creation-time: Tue, 17 Aug 2021 14:57:31 GMT\r\nx-ms-blob-content-md5: bCCivoupALwKcRiJOisQcg==\r\nx-ms-lease-status: unlocked\r\nx-ms-lease-state: available\r\nx-ms-blob-type: BlockBlob\r\ncontent-disposition: attachment; filename=randexp.min.js\r\nx-ms-server-encrypted: true\r\nvia: 1.1 varnish, 1.1 varnish\r\nfastly-restarts: 1\r\naccept-ranges: bytes\r\nage: 2022\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\nx-served-by: cache-iad-kiad7000045-IAD, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 11369, 0\r\nx-timer: S1738295195.311295,VS0,VE0\r\ncontent-length: 10245\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10245,"size_decoded":10245,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (10017)","md5":"6c20a2be8ba900bc0a7118893a2b1072","sha1":"ff7766fde1f33882c6e1c481ceed6f6588ea764c","sha256":"b1c42acd0288c435e95e00332476781532ed002cac6f3dcee9110ced30b31500","sha512":"8f80ad8adc44845d24e13d56738a2ca2a73ee6fcdc187542ba4aaebbf8817935d053a2acfb0d425b9cc0c582b5091e1c9fe16b90b3aa682187645067c267fc41","ssdeep":"192:LRSvXVHfVj+WdqfkkoKhUBhMAcT6iuvBiFj0gba6qiG2pPj:LQvXVHXiNkMAcT6i+4mgPj","tlshash":"ce22a58932933026af5391b440bf140af2f69589d45cade8ab29d1e27d7290d46f7f38","first_seen":"2024-05-30T22:56:13Z","last_seen":"2026-04-04T10:00:21.169738Z","times_seen":52169,"resource_available":true,"data":null}},"time_used":574,"timings":{"blocked":67,"dns":1,"connect":26,"send":0,"wait":439,"receive":1,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ok4static.oktacdn.com/assets/loginpage/font/assets/proximanova-reg-webfont.353416ed0ff540352235.woff2","fqdn":"ok4static.oktacdn.com","domain":"oktacdn.com","tld":"com"},"ip":{"addr":"143.204.55.47","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:36.002Z","timestamp":1738295196002,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.oktacdn.com","organization":"Okta, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 02 Dec 2024 00:00:00 GMT","end":"Fri, 02 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:D7:C7:A6:35:70:74:E4:BF:45:2E:A1:D5:A3:25:88:24:76:B3:B5","sha256":"71:C0:94:09:81:5A:DD:BE:41:D4:27:16:CB:BB:73:BD:A1:E1:22:3A:D2:6C:C1:26:F0:EC:4B:ED:3D:64:26:3B"}}},"request":{"raw":"GET /assets/loginpage/font/assets/proximanova-reg-webfont.353416ed0ff540352235.woff2 HTTP/1.1\r\nHost: ok4static.oktacdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://asp.asxtroglide.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ok4static.oktacdn.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/font-woff2\r\ncontent-length: 20416\r\ndate: Mon, 27 Jan 2025 07:42:18 GMT\r\nserver: nginx\r\nlast-modified: Tue, 07 Nov 2023 18:56:28 GMT\r\netag: \"d99a7377dabb55772ca9f986b0a04b57\"\r\nx-amz-meta-sha1sum: 2b5fcd8431953c44e410d0489899e74f6d2cfecc\r\nexpires: Tue, 27 Jan 2026 07:42:18 GMT\r\ncache-control: max-age=31536000, public,max-age=31536000,s-maxage=1814400\r\nstrict-transport-security: max-age=315360000; includeSubDomains\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: _MuyDzgquD5RP3YXlR3a6qn_Xay2ljqBGIT6SB473gY5QctjV7i1Ew==\r\nage: 331458\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20416,"size_decoded":20416,"mime_type":"application/font-woff2","magic":"Web Open Font Format (Version 2), TrueType, length 20416, version 2.197","md5":"d99a7377dabb55772ca9f986b0a04b57","sha1":"2b5fcd8431953c44e410d0489899e74f6d2cfecc","sha256":"affdba1620552b12a1a8a04467136aeb408c03fa337d20e9c38374d682d4d149","sha512":"cb80ebc6424029c45e86ddf6c18eb43284605678ede88119301cc6493c21e282cace48fd849fc14e5d73c6aecf83645cc3a58051d5d8e22197e09912a41e3130","ssdeep":"384:e/Apz8weEie675kzn2XOvHNE18xEZJymoDyV+5uxfv3CBi3n9SDonvPsp:eFvhQL2XgE1mBDg+E/CBi39SDoHsp","tlshash":"d592d00d9a200f9581271db08a0b434edbb8e0575e4dedddf083312bde81259d25aafb","first_seen":"2023-04-17T18:58:51Z","last_seen":"2026-04-04T10:25:19.934287Z","times_seen":36471,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/ijoWOh41kGYKQ7g8CHm62orHLZxopxq3W192s1ymPpmIKrXUltRotOmKsJYab226","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:35.967Z","timestamp":1738295195967,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /ijoWOh41kGYKQ7g8CHm62orHLZxopxq3W192s1ymPpmIKrXUltRotOmKsJYab226 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:36 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1298\r\ncontent-disposition: inline; filename=\"ijoWOh41kGYKQ7g8CHm62orHLZxopxq3W192s1ymPpmIKrXUltRotOmKsJYab226\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=22D1ZAnPk5lPG%2FmZV4GLGtBQiFxlv8h53uKIeCHLm4oBsfRxfkD7WHZW%2FdVNVBdeAjrb0xeTW2I45xqeOCOTHmPYK4zNO4TQLYkvyqkVtXrq1WP0s7deG%2BIIswpkAw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b72ecd0db51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=481\u0026min_rtt=472\u0026rtt_var=150\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2157\u0026delivery_rate=5505703\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=a0b52e2d5f474bb0\u0026ts=126\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=3796\u0026min_rtt=769\u0026rtt_var=4377\u0026sent=457\u0026recv=76\u0026lost=0\u0026retrans=0\u0026sent_bytes=476733\u0026recv_bytes=27569\u0026delivery_rate=985245\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=12415\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1298,"size_decoded":1298,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"32ca2081553e969f9fdd4374134521ad","sha1":"7b09924c4c3d8b6e41fe38363e342da098be4173","sha256":"216fc342a469aa6a005b2eacc24622095e5282d3e9f1ae99ce54c27b92ec3587","sha512":"f75749c6344fcd7bf06872a3678bb2eb4cae2ddc31cc5d1ee73efba843705577841667733a83163af4336ec8a32df93e7a36155bd6282d7bb86159644975948c","ssdeep":"","tlshash":"53210aba23a84b4df0121e3016c04b92b7b5b9329ad693938106cf330f964cd7c6c08e","first_seen":"2025-01-27T17:47:42.419846Z","last_seen":"2025-09-19T23:18:03.501321Z","times_seen":33195,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":158,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"6mbt8urywdv0dqmwdwiaze7etwiiwx4cku8iiezocnq3dsfpuyeqy.borightpulse.ru/RcTxoEegliTOYlGQWFQnndPfueGWZRZTLVTPGWHQJOZMZWVUHEBDXGCFHZQTXIAPCBNZMQYPBTSFPDAEPSCpqzjxBh1guobQ9r34I1ncxuv36","fqdn":"6mbt8urywdv0dqmwdwiaze7etwiiwx4cku8iiezocnq3dsfpuyeqy.borightpulse.ru","domain":"borightpulse.ru","tld":"ru"},"ip":{"addr":"104.21.112.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:38.183Z","timestamp":1738295198183,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"borightpulse.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 22 Jan 2025 20:26:21 GMT","end":"Tue, 22 Apr 2025 21:23:57 GMT"},"fingerprint":{"sha1":"6E:B5:88:E9:06:B6:08:EB:50:D2:C4:57:84:71:6F:36:53:00:35:79","sha256":"E6:18:67:BF:DB:C1:87:AB:FF:DD:B8:7A:21:3A:C4:8B:E9:AF:46:54:1F:F4:01:17:F1:9C:84:0F:2A:9F:D6:A9"}}},"request":{"raw":"POST /RcTxoEegliTOYlGQWFQnndPfueGWZRZTLVTPGWHQJOZMZWVUHEBDXGCFHZQTXIAPCBNZMQYPBTSFPDAEPSCpqzjxBh1guobQ9r34I1ncxuv36 HTTP/1.1\r\nHost: 6mbt8urywdv0dqmwdwiaze7etwiiwx4cku8iiezocnq3dsfpuyeqy.borightpulse.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nContent-Length: 99\r\nOrigin: https://asp.asxtroglide.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:39 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nvary: Origin\r\naccess-control-allow-origin: https://asp.asxtroglide.ru\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=NRX%2BxG6tK5SNYYE9Pmj0OQvGHHhL%2BKAzhARxmywwiYJiGmATudzJ7jCSQXF5yGUlmdEFhQbJt6zbECYtOlACc03a4BgfesfpXQ8eo4y8Q8C%2BYYKbocWizqG8lPjT5TnnOhk%2FEIKLV5HNKkXuAdiLiDSelgt4fj%2FZ3iygF1WkGNk7K2FDSMNA4eYWxQOL5phNxsVmP7BNJ2w%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 90a6b73ced7456c1-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=493\u0026min_rtt=464\u0026rtt_var=97\u0026sent=8\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3283\u0026recv_bytes=1570\u0026delivery_rate=8150093\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=65c68b257913ae01\u0026ts=958\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":710,"size_decoded":536,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (536), with no line terminators","md5":"b700a2408fff4601b18b91dd7b1adf0f","sha1":"294a42cbff29c06fe6bff0cc3d5d6b93f7fda3dc","sha256":"23731d6f86bfade6b1fd1acf5985785e9e1cb0f155f662cf89464d7a6f2c04b6","sha512":"7f1c6139275ac268dca430a91a35177adfa7e1e46114a3cf084605db02294b3450e6f9ee4de7ad18353483dbcfdbaa20c83c2cdccac7603024797d5fe53779df","ssdeep":"","tlshash":"fdf075afb211b0845a0d8108c05b9f836d804e311b012fa986d8b32d8d8bed240573bb","first_seen":"2025-01-27T23:50:46.76269Z","last_seen":"2026-04-03T17:36:17.512584Z","times_seen":29651,"resource_available":false,"data":null}},"time_used":1027,"timings":{"blocked":43,"dns":21,"connect":1,"send":0,"wait":941,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-31","alert":"Sinkholed","trigger":"borightpulse.ru","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/opmdHV7i0wRK5hFkWfPMY4gcvP0yoLAghWCWDKS5NC7Bz1PggYvtf7Oyef199","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.887Z","timestamp":1738295194887,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /opmdHV7i0wRK5hFkWfPMY4gcvP0yoLAghWCWDKS5NC7Bz1PggYvtf7Oyef199 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/svg+xml\r\ncontent-disposition: inline; filename=\"opmdHV7i0wRK5hFkWfPMY4gcvP0yoLAghWCWDKS5NC7Bz1PggYvtf7Oyef199\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=yjjA4ARudf%2FjDcOtdQaWsgC65SwQxowPK7SHbJ1CwDDWEPCuRwLTjAWK2efI2x4K4QN%2B4w2vTxe1bNiuevaD1i5A9iQFWwi1PfqZahaY1TNv3M5MVTcSiVrWfAWK0g%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727d93eb51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=576\u0026min_rtt=558\u0026rtt_var=191\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2824\u0026recv_bytes=2154\u0026delivery_rate=4184971\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=32b247519264fb8a\u0026ts=126\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1489\u0026min_rtt=769\u0026rtt_var=741\u0026sent=381\u0026recv=60\u0026lost=0\u0026retrans=0\u0026sent_bytes=400784\u0026recv_bytes=24116\u0026delivery_rate=7042014\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11327\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":268,"size_decoded":268,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1318aafc1fb9ded0c623e5b9a557e6df","sha1":"0917cdd7633cd1642b02b2b785416ec7e5106dcc","sha256":"d86660a84daa211b121ec9fe0df83d6b945f61b888384391eabc7d6b4e941dc4","sha512":"a81f1cfdc923effa9e7afe6899bbe1114bbc25b197db0a282d366f409507714ecbf7c5ead82c86f62115953f11b80ea96da244e42bfb063b7e5c23e538395d2a","ssdeep":"","tlshash":"05d0c2f0a0a0f54d8308e25a16a4a4b025aa749801ee042ca4a2071a21084efb8e4638","first_seen":"2023-09-01T07:29:56Z","last_seen":"2025-04-05T02:13:18.209121Z","times_seen":19072,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/jaGBZXOhAWlSNW3DVqmNM6UZy8tvetu3n6yJbNTrQYxGNS2sqRAhtN1a","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:35.946Z","timestamp":1738295195946,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"POST /jaGBZXOhAWlSNW3DVqmNM6UZy8tvetu3n6yJbNTrQYxGNS2sqRAhtN1a HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 55\r\nOrigin: https://asp.asxtroglide.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:36 GMT\r\ncontent-type: application/json\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=s%2BdfS2e4Q%2FhGQM9WYndkkAc%2FUXSAIvBAHYjNJf97%2Br1lEPC2uJgbt50e18vG6fH1l8dQFxQaD4b%2BVrRhI5KQeFAvhXY4o4O7qMqNU0VMiaJZUtumTJcye8Gtx4y1rg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nset-cookie: XSRF-TOKEN=eyJpdiI6InVuWGd1MENxVEtRQUROQUtwOUt6NHc9PSIsInZhbHVlIjoiN2dBcjFIVlRia2VmZUs0ZG1ab1UwTUUrUUFXRTY5ek9JMG1IdmZhWHFtVUpuczJJVkxMWlJhMEQrTmtkcC9DbDBzSlVFWENremhYN0UzRndPcnFBbUNWZzBJRThOY0NqWDRPSitHTjJBZGxtd1ROM1BYNE90TUR3OGt2RmJCYkQiLCJtYWMiOiJiNmY5NzQzMTBjNDlhMzcxNDY0ZWQxM2QwYjZiMmVjOGVlNDdkNWJkZDRjYmU1ZDE4NmIyMWJlNTQ1ODVkN2I3IiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:36 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6InErRCt1SHkxSkhwRWxUZXZkNUpmR3c9PSIsInZhbHVlIjoibStFUHZ4MUpFcDBWSXR2My9wYURnQS9xckFVditrR09TNXd6Z3lqMm1DdEZya2kwdVRoYjNGS2Nad3JIdUVnb201RXJTWDJuMW5QZTRFVHlUZDRZTWhuMGdDSWlkdFo2djNldENIQjFpaHdnQkhncG9jTEpDLzAxK3M4YWE0cFQiLCJtYWMiOiI5N2VmNWUwMThhNDhlNTFlY2U3MGVhOTZmNDAxZGNiNjlkYjMxZGJjOWE5ODQ2ZGUxZTIwM2NhMzE1NjQxNDIwIiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:36 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b72eacf9b51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=463\u0026min_rtt=454\u0026rtt_var=145\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2319\u0026delivery_rate=5700787\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=c21e0f67e00d5559\u0026ts=96\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=4675\u0026min_rtt=769\u0026rtt_var=5091\u0026sent=451\u0026recv=74\u0026lost=0\u0026retrans=0\u0026sent_bytes=471455\u0026recv_bytes=27477\u0026delivery_rate=298789\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=12365\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4432,"size_decoded":4432,"mime_type":"application/json","magic":"troff or preprocessor input, ASCII text, with very long lines (4447), with no line terminators","md5":"9d89579bb339a90d9a25c513026deaf7","sha1":"90b3a2e520db73a824bcc34c0de6f2995b9dd3c7","sha256":"b91c6c9ccc79a2354e5dd0d5b31798ba812e709c71bc7b33e0687b56f364a633","sha512":"b2e0980d16a307110a73acb789b249bf1a8e101e7fd9a9b314ef644434ff4eedb7476227ec4714fa390141d81241ecd3df39000ab8faa652779f7ee50e99103b","ssdeep":"96:OsvUwtmx8LGs0c251TP8LGPqPdZV1LZ2JlCCq/L4h3D:bmxaQc251TPaOMdZV1Lk7C/L4tD","tlshash":"f19196238c4b3d53ab208d9729ed0ac6cd0c2bc978e200de581ffb89c56a42f14c51ed","first_seen":"2025-01-29T04:24:21.043212Z","last_seen":"2025-02-13T22:37:04.609212Z","times_seen":872,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":129,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ok4static.oktacdn.com/assets/loginpage/css/loginpage-theme.e0d37a504604ef874bad26435d62011f.css","fqdn":"ok4static.oktacdn.com","domain":"oktacdn.com","tld":"com"},"ip":{"addr":"143.204.55.47","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.889Z","timestamp":1738295194889,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.oktacdn.com","organization":"Okta, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 02 Dec 2024 00:00:00 GMT","end":"Fri, 02 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:D7:C7:A6:35:70:74:E4:BF:45:2E:A1:D5:A3:25:88:24:76:B3:B5","sha256":"71:C0:94:09:81:5A:DD:BE:41:D4:27:16:CB:BB:73:BD:A1:E1:22:3A:D2:6C:C1:26:F0:EC:4B:ED:3D:64:26:3B"}}},"request":{"raw":"GET /assets/loginpage/css/loginpage-theme.e0d37a504604ef874bad26435d62011f.css HTTP/1.1\r\nHost: ok4static.oktacdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\nserver: nginx\r\nlast-modified: Thu, 14 Mar 2024 00:03:58 GMT\r\nx-amz-meta-sha1sum: 4301f0d2b729ae22adece657d79eccaa25f429b1\r\nstrict-transport-security: max-age=315360000; includeSubDomains\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\ndate: Fri, 31 Jan 2025 02:19:39 GMT\r\nexpires: Sat, 31 Jan 2026 02:19:39 GMT\r\ncache-control: max-age=31536000, public,max-age=31536000,s-maxage=1814400\r\netag: W/\"e0d37a504604ef874bad26435d62011f\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: GCQ-0OgvGgFPWRDFVyr6x77-MrvwjNgyinYv20NzCpRtNxbpAdF1jA==\r\nage: 5215\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10498,"size_decoded":10498,"mime_type":"text/css","magic":"ASCII text, with very long lines (10450)","md5":"e0d37a504604ef874bad26435d62011f","sha1":"4301f0d2b729ae22adece657d79eccaa25f429b1","sha256":"c39ff65e2a102e644eb0bf2e31d2bad3d18f7afb25b3b9ba7a4d46263a711179","sha512":"ef838fd58e0d12596726894ab9418c1fbe31833c187c3323ebfd432970eb1593363513f12114e78e008012cdef15b504d603afe4bb10ae5c47674045acc5221e","ssdeep":"192:x9iW+rIadfLTcaTO5BrwjnwSrQ1kPmqQmMjmtmumobU8:x9KVLbw6jqON","tlshash":"0a22724186196412409b6f13f0dabac27f0a221df52292bffb3d496cddea8561730f39","first_seen":"2024-03-14T18:17:02Z","last_seen":"2026-04-02T17:06:44.933822Z","times_seen":48189,"resource_available":false,"data":null}},"time_used":162,"timings":{"blocked":59,"dns":73,"connect":1,"send":0,"wait":1,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/mnbivKl3WWiOKBjlAB1Q8xdXOFMst7F56HMz1wuIcBM5ZegKCSaLAqxuv211","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:35.964Z","timestamp":1738295195964,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /mnbivKl3WWiOKBjlAB1Q8xdXOFMst7F56HMz1wuIcBM5ZegKCSaLAqxuv211 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:36 GMT\r\ncontent-type: image/svg+xml\r\ncontent-disposition: inline; filename=\"mnbivKl3WWiOKBjlAB1Q8xdXOFMst7F56HMz1wuIcBM5ZegKCSaLAqxuv211\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=lg7ECD1fOaEqLDycH0fQDZGDpeeKr7SgTMw2NgsxBT9k8zffUWBEFaKC2fkxi%2FjYeaZNnvxHkS%2F8vo3NWlBDX%2FYySuyyGUBP7FvCjaBbSm23%2FuDbRlyyRJ%2Fj31um9g%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b72ecd08b51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=478\u0026min_rtt=458\u0026rtt_var=169\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2153\u0026delivery_rate=4802653\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=cfbaff45f87baee2\u0026ts=127\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=4189\u0026min_rtt=769\u0026rtt_var=4791\u0026sent=455\u0026recv=75\u0026lost=0\u0026retrans=0\u0026sent_bytes=475153\u0026recv_bytes=27523\u0026delivery_rate=28625\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=12412\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1864,"size_decoded":1864,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4b5c228b4faba433d06ec569ed855b2d","sha1":"a7d3882b93e332460e7c59510a6a811ef011983f","sha256":"eb19d76cd1fad39abf0f2778991883a5cf9ff560117ce8f7c64124e71471b4ed","sha512":"bb88e91a51d760531b2b8349102a757795c6aa66e94ce7aae8edde47485c07a2ae12428ce2b76804a877fd8bc986ca2469bd6302b9904765b52f1110a87050d9","ssdeep":"","tlshash":"b441df1adb15e532ec05c3aeea74cca9311ab1ed6ce944c57dc6c33fa2605fe4688390","first_seen":"2023-05-02T01:14:44Z","last_seen":"2025-04-06T10:50:06.513586Z","times_seen":21399,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/ijCB4BkzGcFVOkytN58yz5pLqS1dZKn2JxI56170","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.883Z","timestamp":1738295194883,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /ijCB4BkzGcFVOkytN58yz5pLqS1dZKn2JxI56170 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/svg+xml\r\ncontent-disposition: inline; filename=\"ijCB4BkzGcFVOkytN58yz5pLqS1dZKn2JxI56170\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=G%2BmiZRvbaFrJLp4vrUtqu3cHSxMbOO3GhjFsJ7L0U%2BRmoStIpUHaSLGZAdtx0f6KFFajtiqRfUPBcYXIFZfByFyKEghMkuBV9MXsBGOJw32yM91qdAHRmLL97peT3Q%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727d93ab51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=539\u0026min_rtt=536\u0026rtt_var=207\u0026sent=4\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2133\u0026delivery_rate=5162210\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=416d0943ca6cb144\u0026ts=127\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1511\u0026min_rtt=769\u0026rtt_var=932\u0026sent=378\u0026recv=59\u0026lost=0\u0026retrans=0\u0026sent_bytes=397495\u0026recv_bytes=24070\u0026delivery_rate=1130976\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11325\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7390,"size_decoded":7390,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bca9b46fee32162356ba5b4783e614dc","sha1":"cc09ee862df9bf86e545f9dfdf2fbd4facfa71f5","sha256":"fb48e7087def752683bc9a9fe4035acf2419cebbe8b17a16e5c81699a06f6fec","sha512":"ae7f8bc5b83d440a727e230138a3a633b7d5a73c123ae0db661081a7f4f13fb4155bc55aaac65ca7dfb0d76c619cf21e99e1a56e876253d67fe8a59c2d0a15ec","ssdeep":"192:8dEMK4RwdEdEMK4RwIwm6xiD7x9m9t6EQ3FabrItDWOO6Dcy:8dEMVwudEMVwIwtxiDHmP6lFeItDWOOe","tlshash":"dbe187d532f9e1e85482bbfd6681f17c3e1339fa7a32d99083d65c18dc8a00c45adca2","first_seen":"2023-05-10T21:54:10Z","last_seen":"2025-04-06T10:50:06.515793Z","times_seen":21752,"resource_available":false,"data":null}},"time_used":183,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":183,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/npurlkcnymfxcvkblbluQLULPCIAU2U?BLWFHODSWMSFFYFPCZCLSOJRQ","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.493Z","timestamp":1738295194493,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /npurlkcnymfxcvkblbluQLULPCIAU2U?BLWFHODSWMSFFYFPCZCLSOJRQ HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlJrWnFsODNsL01KeDZyY0lQeUE3Rmc9PSIsInZhbHVlIjoidklURXdYYTExVWF2OGNMb1E0TGppcWt6bnJ4SkczUVpIZHB2OU8xOTFBVXRMN08rQlY0UGRoWkZMMis4NlU1QXdFd29wd1pFMFNKNFdwZTdxbkV6MHZ6VHh1S3ZMTEZGTTViRWlubFZCNEpsbFFkclo4eDRDVjdNUkllL0xnTEYiLCJtYWMiOiIxNGQyOGRlYmZmYzA3MWQwMGM1YThmYmRjYmZlYzVkYmEzZGIwYWZmZTk2NTU2ZTMyOTA5ZDAxNDViOGEwYjM5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im5qNThrNmE0ejFZeDV0UUNYRmRUVXc9PSIsInZhbHVlIjoiVktlMzFsOU9hTXRRbmpVRXg4Wkh0azZ5Z203cXhVTG1YT3IrdksxdFlhM0hRTWJvSkUwY2tJeG5Sb1NzWEFCL2w0SEhIOEFWUi9tSkh2d1N0TGgvZ3R3c25SU3lwczRQcnN1dXIzdG9PSXdiQkxUVkRINENrM0g3bGcvclU3WHAiLCJtYWMiOiJkNjMyNWUyZjEwMDEyYTU1N2YxZmEwODk5OGU4ZjRjZTYwY2UwM2RmZmYyMzE3OGJiZWIxZWFjZWQ1ZDdkN2NlIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=M4wB%2BG0vzV0vonlLCgPgzTjFKOzOqF2qHWjosxU8%2FStRv11iPSxu7%2F%2BBVbCsSdG1sIKeZxD39tVCiRd8EH72SmnVCZDF%2B0lLg1G9ReV0H8DAevodTZLDdW49j0H5Kg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nset-cookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:34 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:34 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b7259fc5b51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=495\u0026min_rtt=480\u0026rtt_var=165\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2824\u0026recv_bytes=2144\u0026delivery_rate=4842809\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=68a6606e29bb0b83\u0026ts=132\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=6541\u0026min_rtt=2680\u0026rtt_var=5383\u0026sent=36\u0026recv=18\u0026lost=0\u0026retrans=0\u0026sent_bytes=20442\u0026recv_bytes=6754\u0026delivery_rate=38298\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=10948\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":142994,"size_decoded":142994,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (52495), with CRLF line terminators","md5":"aa9dc3254f4315dead47f082660d19c4","sha1":"1a03bea193b7b68c92b40bd91ffe8609b813d7c4","sha256":"a4a6a3e5381ca40a70dbd065504c6435ab8c82142ce94c976bd0be01414785bc","sha512":"37cf5091e9e3d29cdd6776af785d95f1292175fbf6ebfd13cc79c22d3a143b85a6c7ee813c6cfe60a661b5bbe239c3d5da65e90233f9f2e137b83ae2e07c040c","ssdeep":"3072:uvsnsqn29meZoSV2SQ7iwLDhs3iMkcOzAs9snsC:eo2UeZjV9ReOsC","tlshash":"f7d34ce11de1160e568ab38c3e17b9c9981b96c041f524f7be04fed583eb14e3876da8","first_seen":"2025-01-31T03:46:56.410817Z","last_seen":"2025-01-31T03:46:56.410817Z","times_seen":1,"resource_available":true,"data":null}},"time_used":255,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":166,"receive":89,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"get.geojs.io/v1/ip/geo.json","fqdn":"get.geojs.io","domain":"geojs.io","tld":"io"},"ip":{"addr":"104.26.0.100","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:37.962Z","timestamp":1738295197962,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"geojs.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 31 Dec 2024 05:30:37 GMT","end":"Mon, 31 Mar 2025 06:30:13 GMT"},"fingerprint":{"sha1":"55:74:AA:F3:7A:AF:02:8B:48:DB:6E:73:EB:A1:95:20:EC:13:2D:8E","sha256":"F3:11:CA:7B:EA:10:B5:7F:44:4F:CA:98:D8:B9:99:4B:43:38:32:0B:07:11:72:DA:F3:BD:75:B1:00:D9:D8:F8"}}},"request":{"raw":"GET /v1/ip/geo.json HTTP/1.1\r\nHost: get.geojs.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/javascript, */*; q=0.01\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://asp.asxtroglide.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:38 GMT\r\ncontent-type: application/json\r\nx-request-id: 42ed66d107549d3109aa9c5bb9c41875-ASH\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\npragma: no-cache\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ngeojs-backend: ash-01\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=l7R2i9nHmE0ZBvATWOyzDUbCy6hKcosDs%2FDlWk2J6zhsey4Xfm8EU4F5Lap4db8FPiHuazghR40wvrpmEsvunBEdoTUSJ6pdFIz02UWX7WJeQ3HD0mdsbNTFxNX5cw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 90a6b73b9a4356ae-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=611\u0026min_rtt=459\u0026rtt_var=283\u0026sent=7\u0026recv=10\u0026lost=0\u0026retrans=0\u0026sent_bytes=3191\u0026recv_bytes=1125\u0026delivery_rate=6906200\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=c29ef4f2457d21d2\u0026ts=133\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":336,"size_decoded":336,"mime_type":"application/json","magic":"troff or preprocessor input, ASCII text, with very long lines (394), with no line terminators","md5":"dd5f8cd509e5e4ad0a5b1b5086165250","sha1":"86db4f8c979a5b59e75f128bb2b82a40f99c348e","sha256":"787b45974f3a7e57a8fb22761c728a2a0fac90ba26e47da15e14d02b9f42dab9","sha512":"8de5357b5e79a4688c6051e038ced8ec5ae7cc5496b278756164fd4892b7a2f8b3a47413e681bb95485ad4e0ee327669f44803d44d79d6aa2b95040d516ff145","ssdeep":"","tlshash":"1ee022abc874df2aec6a0e4e07355d3b25a9d22c80c828000dfcee1c014a0342779a4a","first_seen":"2025-01-30T17:50:47.692003Z","last_seen":"2025-01-31T09:31:21.841764Z","times_seen":151,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":57,"dns":36,"connect":1,"send":0,"wait":116,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/mn39mPlWszUdzl7rqVCGRzqXKUwfX5ouaOqklPH4MArX0fw2X2o90150","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.882Z","timestamp":1738295194882,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /mn39mPlWszUdzl7rqVCGRzqXKUwfX5ouaOqklPH4MArX0fw2X2o90150 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/svg+xml\r\ncontent-disposition: inline; filename=\"mn39mPlWszUdzl7rqVCGRzqXKUwfX5ouaOqklPH4MArX0fw2X2o90150\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=MP3pnYLS8jPOARKlZ4CWrIlz7QtBdDraijocaHHSlGOAtaM8Nf%2BrcG6L7n3W9XVseM%2B%2BlJXPNlAK%2Fp13hGNFZSOJApZ49OxsT2tFZd4h3yDDIoZduZGugKUVzAE%2BNQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727d938b51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=566\u0026min_rtt=551\u0026rtt_var=237\u0026sent=5\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2824\u0026recv_bytes=2149\u0026delivery_rate=4296735\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=4195110ec4fceb53\u0026ts=131\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1465\u0026min_rtt=769\u0026rtt_var=604\u0026sent=386\u0026recv=61\u0026lost=0\u0026retrans=0\u0026sent_bytes=405546\u0026recv_bytes=24162\u0026delivery_rate=8710447\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11330\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":270,"size_decoded":270,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0c09c5ea7c28d6feb4d124957dde0a0d","sha1":"1b9efde2d8f0e2a3d9d5315117e597c2d622fc5e","sha256":"b3c39d2c15327b7ae68940502a2d7bf457fe521e075e6e671d0340edc58bcb3a","sha512":"01161867b3ca0386b132618e04fa09bd0dea1e14a8445001e0683f7a2689deb555bed1c31ec69813d0542284e281cc629c323cb8f56899de0b027e46f651a5ca","ssdeep":"","tlshash":"f0d02bb56358bd4d812ca1d20bd031612147b08cb6ef6038dbcd04243404c7bbda8f38","first_seen":"2023-05-12T00:56:48Z","last_seen":"2025-04-06T09:35:55.879922Z","times_seen":19857,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/zc3xi3cVsgZQvUWgixDygullyDcxc2GxXE2jbcnrfq","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.245Z","timestamp":1738295194245,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"POST /zc3xi3cVsgZQvUWgixDygullyDcxc2GxXE2jbcnrfq HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 28\r\nOrigin: https://asp.asxtroglide.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlZvTzFZM0FRL0NNOGxtSkpoUGFJSkE9PSIsInZhbHVlIjoiYVBobndaRjIrd0dRaGd0ZWdhV3ZMa0NLYzk1MHBtR2N4RHJVSDJpOGxQUHFZcjJ0bmdJOHFUOE5hWmcvbnVQSXdYbllNNnB2NE5GaEMvbndmNlp4YThWZnMzM20zRDFuT25ieWZKODlqT3hncWNrdU90TE01TkcwRHR4NWlmOXkiLCJtYWMiOiIxMWQ1NGIzZGNiZTZjMTMyMWFkNjJjYWUwMjkwZGIxM2IzMjJlM2E0ZGNhMDYzZDUxZmIwNmFhNjQ1OGM3NThjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IndrYjhXZHhyWXlRVFlhMUx1amVLcVE9PSIsInZhbHVlIjoiTForNWJGQlpKRC9MMC9Menh5M2dEWDZwZUNhaXJhSnNyR2ZGQ0o2TjBQS3Y0dCsxYmN1R053bTJpcjdNb0hrelhlZEZtTTJxM2NwQlh6UnEyYlNYOWpWcXIzTVYzb1V5M0pyUVY5WHZBbTVaL0RzNDZHTjhHTllyb0FCY2djdXciLCJtYWMiOiI0ZWRhNDA0ZGUyOWFjMDI3YmJiMGZjZDNmNDdhOWE2ZmU3NzU2ZTk0ODBkYTgwYWI2OTg3MzMyOWE2ZmNjMmVmIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=RJQdccFtjgfeFTCL7Ru2y3Zfwf4MIKNavavknIBcASF3D6fT7Pi%2FeaK7AzWSdELJOCY0S1N6t92C8LJjRq6d24Txr0J5LbbUvRuZ5VZueLFnm1Anywfani57oDbryw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nset-cookie: XSRF-TOKEN=eyJpdiI6IlJrWnFsODNsL01KeDZyY0lQeUE3Rmc9PSIsInZhbHVlIjoidklURXdYYTExVWF2OGNMb1E0TGppcWt6bnJ4SkczUVpIZHB2OU8xOTFBVXRMN08rQlY0UGRoWkZMMis4NlU1QXdFd29wd1pFMFNKNFdwZTdxbkV6MHZ6VHh1S3ZMTEZGTTViRWlubFZCNEpsbFFkclo4eDRDVjdNUkllL0xnTEYiLCJtYWMiOiIxNGQyOGRlYmZmYzA3MWQwMGM1YThmYmRjYmZlYzVkYmEzZGIwYWZmZTk2NTU2ZTMyOTA5ZDAxNDViOGEwYjM5IiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:34 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6Im5qNThrNmE0ejFZeDV0UUNYRmRUVXc9PSIsInZhbHVlIjoiVktlMzFsOU9hTXRRbmpVRXg4Wkh0azZ5Z203cXhVTG1YT3IrdksxdFlhM0hRTWJvSkUwY2tJeG5Sb1NzWEFCL2w0SEhIOEFWUi9tSkh2d1N0TGgvZ3R3c25SU3lwczRQcnN1dXIzdG9PSXdiQkxUVkRINENrM0g3bGcvclU3WHAiLCJtYWMiOiJkNjMyNWUyZjEwMDEyYTU1N2YxZmEwODk5OGU4ZjRjZTYwY2UwM2RmZmYyMzE3OGJiZWIxZWFjZWQ1ZDdkN2NlIiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:34 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b7240e9fb51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=697\u0026min_rtt=570\u0026rtt_var=255\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2824\u0026recv_bytes=2278\u0026delivery_rate=4641025\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=4eb6f50cc73015c4\u0026ts=82\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=4536\u0026min_rtt=2680\u0026rtt_var=1259\u0026sent=31\u0026recv=15\u0026lost=0\u0026retrans=0\u0026sent_bytes=17754\u0026recv_bytes=5759\u0026delivery_rate=52238\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=10648\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":288,"size_decoded":288,"mime_type":"text/html; charset=UTF-8","magic":"troff or preprocessor input, ASCII text, with very long lines (307), with no line terminators","md5":"e38d9b812f8f0e5207d6773a1923ef87","sha1":"59e8f4fe263a9f1b3cbda35d175a59620b3a8d07","sha256":"588e0c4df808f31cf36ef4b0ccf8061028c91bb2307a2f8425781ba7cdbce7d4","sha512":"fda7820c1c9bccce4917aa35dd407f080527f87d73715cf97a98a5947a5425a2e63824b94c91c5603bf4b6179f0be601a731bae90476bbb85c2d2cdf003ddf68","ssdeep":"","tlshash":"95e0e7601c19d808e419dff5e6744c451c133c76e15426680d01f201dc4c1f717c887f","first_seen":"2025-01-31T03:46:56.412972Z","last_seen":"2025-01-31T03:46:56.412972Z","times_seen":1,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":116,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/xyVhcQIHupWpqWef30","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.827Z","timestamp":1738295194827,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /xyVhcQIHupWpqWef30 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: text/css;charset=UTF-8\r\ncontent-disposition: inline; filename=\"xyVhcQIHupWpqWef30\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=T2ei%2FWW2e61tq18WicQiDmuYq%2B5EabFg%2BTlYOTK91z%2FFQUh6WojEfMMA0Cay%2Bbptw%2Fz4S%2FRXQQS56n91oYx75FV%2FtRD5osyxIfnJOtmUKY493gi57Bq6jwsPtjFCag%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727890cb51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=523\u0026min_rtt=500\u0026rtt_var=153\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2822\u0026recv_bytes=2104\u0026delivery_rate=5526717\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=d8fb5471e549fbe8\u0026ts=133\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1888\u0026min_rtt=769\u0026rtt_var=1356\u0026sent=351\u0026recv=55\u0026lost=0\u0026retrans=0\u0026sent_bytes=369711\u0026recv_bytes=23888\u0026delivery_rate=1732610\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11260\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35786,"size_decoded":35786,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with CRLF line terminators","md5":"38501e3fbbbd89b56aa5ba35de1a32fe","sha1":"d9b31981b6f834e8480ba28fbc1cff1be772f589","sha256":"a1ca6b381cb01968851c98512c6e7f6c5309a49f7a16b864813135cbff82a85b","sha512":"1547937aa9b366e76de44933ef48ef60e3d043245e8e3e01c97dfc2981f6b1f61463d9d30992fbcf2ca25fc1b7b32ff808b9789cfb965d74455522fc58e0c08c","ssdeep":"192:hToogIexLQ5WKTCFBwCIZtJ8FtX2+UBRkf1WcrScuH9Ye3YdersR8Q5oqWjfuogF:h0DKAaZtJsOodwuhx5P6mqjDggJkLRn","tlshash":"07f2ac86255066385f3a277bf3ab00aceb6882b347961564b4bcb454cffc6e410d2d9f","first_seen":"2025-01-27T17:47:42.420764Z","last_seen":"2026-01-31T00:55:03.975062Z","times_seen":44016,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":166,"receive":41,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/yz8v1vd1Y28jFT3wIXwXqmnXv8F6yONfP06nz4LZTr40Zab177","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.885Z","timestamp":1738295194885,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /yz8v1vd1Y28jFT3wIXwXqmnXv8F6yONfP06nz4LZTr40Zab177 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:35 GMT\r\ncontent-type: image/svg+xml\r\ncontent-disposition: inline; filename=\"yz8v1vd1Y28jFT3wIXwXqmnXv8F6yONfP06nz4LZTr40Zab177\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=nMr4zfqq1FSKxQDQLN8jYYeYqPm4vFecvEGbD8ZWgQeKUFhOErcOBTHmXGWkiFrqAxRKmMbzjsF%2BwhHyQSv2VwD9OS3XCtTzDin4RFyv9UW0DvfjqJgQ0RMkLdZGIg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nvary: accept-encoding\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727d93cb51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=702\u0026min_rtt=568\u0026rtt_var=242\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2143\u0026delivery_rate=3851063\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=c433f5d210ec58ec\u0026ts=126\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1465\u0026min_rtt=769\u0026rtt_var=604\u0026sent=382\u0026recv=61\u0026lost=0\u0026retrans=0\u0026sent_bytes=401842\u0026recv_bytes=24162\u0026delivery_rate=8710447\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11328\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2905,"size_decoded":2905,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e924de0d471df54b6280f3dc8b187cb8","sha1":"857f03226070b502a9e06b4249710ec10be4c9e9","sha256":"24ce135a31ce83ac3d62471fcc0e1a82ce6f1533c993ee59ca4e110d5f2fae33","sha512":"cd4e7a7bd510fc76aaa8efe77f8d78db1b4051b7a27ad9d9e23e620d0c51c7f2e2c0446610340040c75b0c82442f92c099d091788a1b783d65e429b141dcb3ee","ssdeep":"","tlshash":"5d51ec770368eede9190e3881b21b21eb3a4896474fb81d08f879d46ec066b7927cd60","first_seen":"2023-05-07T13:54:23Z","last_seen":"2025-04-06T10:50:06.516306Z","times_seen":22460,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/M9L83S/","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-01-31T03:46:33.920Z","timestamp":1738295193920,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /M9L83S/ HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IkRSY1hXNFl3MGVmMlhUdkkwaGxaa2c9PSIsInZhbHVlIjoiSGsycW9jd1hNUHpJcWcxQkI1SWY4TDdYekFUSjVKekRNaTIvUHZ3WVYvNEdjSnc0UGREbFZpTnQ3Yk9TbXNqYnJ4Yk9sRzVjSUdtblFiRkQvTThFMVdYdjV1bWM3SEF2T1p3SmJFTmRlNGRWV0lCZkV4ZkplaXFTY2FzeXpyTTUiLCJtYWMiOiI0Y2YwN2JiNTkwMjBkMzY2NjgwMWQ2MTYyMWRkN2ZiNTkxYzQ2MWFiNWFjMTQ4MTM0Y2QyMWRmMDUyYjQ0MDFjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ik1OejkwYWlmeVVYaXdGSzVJc1BlQnc9PSIsInZhbHVlIjoiWHRZbkNoWlUzOTQrVXRrY2MzNStsRERhZmk0eStQSXBUNXlWMDc2L284eVBuQU14UDd2ZnZhb3kvVFlDWWNlKzBLeTgrMTVLT0Z4L3pzdTNUVlhXaWQ2a3YrMitraG1pZS92dm1rWkJWdlhmY2pXL2dYVjNaR1ZuTXNsN3grVDgiLCJtYWMiOiI2YTVlYTIxZWJlMGNlYjUzMTk5YTBmOGFkNGU5OGZjOWQ5NTJkNDYyZjJiYTQyZmJiY2E2M2E0N2ViYjllODY3IiwidGFnIjoiIn0%3D\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nSec-Fetch-User: ?1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: no-cache, private\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=KGo69%2B2bFz5flYBgSginIKJvqJxT%2FhLTgQJLKTq1NT7NJtWdY3hWDAoiJFYCNPUGBFPsu9%2BZLAEXiTYfQHehHqyJ0zKP7O35yhXGe%2FkmG1YV9Gp%2Bq16rmYGKKM8fiQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nset-cookie: XSRF-TOKEN=eyJpdiI6IlZvTzFZM0FRL0NNOGxtSkpoUGFJSkE9PSIsInZhbHVlIjoiYVBobndaRjIrd0dRaGd0ZWdhV3ZMa0NLYzk1MHBtR2N4RHJVSDJpOGxQUHFZcjJ0bmdJOHFUOE5hWmcvbnVQSXdYbllNNnB2NE5GaEMvbndmNlp4YThWZnMzM20zRDFuT25ieWZKODlqT3hncWNrdU90TE01TkcwRHR4NWlmOXkiLCJtYWMiOiIxMWQ1NGIzZGNiZTZjMTMyMWFkNjJjYWUwMjkwZGIxM2IzMjJlM2E0ZGNhMDYzZDUxZmIwNmFhNjQ1OGM3NThjIiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:34 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6IndrYjhXZHhyWXlRVFlhMUx1amVLcVE9PSIsInZhbHVlIjoiTForNWJGQlpKRC9MMC9Menh5M2dEWDZwZUNhaXJhSnNyR2ZGQ0o2TjBQS3Y0dCsxYmN1R053bTJpcjdNb0hrelhlZEZtTTJxM2NwQlh6UnEyYlNYOWpWcXIzTVYzb1V5M0pyUVY5WHZBbTVaL0RzNDZHTjhHTllyb0FCY2djdXciLCJtYWMiOiI0ZWRhNDA0ZGUyOWFjMDI3YmJiMGZjZDNmNDdhOWE2ZmU3NzU2ZTk0ODBkYTgwYWI2OTg3MzMyOWE2ZmNjMmVmIiwidGFnIjoiIn0%3D; expires=Fri, 31-Jan-2025 05:46:34 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\npriority: u=1,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b721fdb2b51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=444\u0026min_rtt=431\u0026rtt_var=147\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2154\u0026delivery_rate=5516190\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=c894b58149bdfda0\u0026ts=156\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=4586\u0026min_rtt=2680\u0026rtt_var=2031\u0026sent=17\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=6343\u0026recv_bytes=3809\u0026delivery_rate=213\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=10423\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17006,"size_decoded":17006,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (11773), with CRLF line terminators","md5":"582aabf9196fdbefe9f5d5e6467b71ed","sha1":"e38284baf84e115cb0655a2f69e7b363238a42eb","sha256":"36cdde630f705e70eb0c254272356de6a005f2f12bcbe803e8831ab24d99806e","sha512":"f273e01e256354ac00e7f654cb2e20ccd834dc4d6d1c02daf7228d56465f409aae4ab6c6295e5c805e3fb65871dd62819acd543a9e0451b591eb43f075f7ba12","ssdeep":"192:bniq+4qU38voY7UA6FUOCj/77oYh9D6Ftiuhruf4lxzIaLIqrduTQfreqrduTQfC:jiq+c8vT8HY/e/3lblrVlru","tlshash":"8a729edb728096711732edd0b6104ec60f7aac7d169cd8e4a87b4f18c132ed65cc69b8","first_seen":"2025-01-31T03:46:56.395893Z","last_seen":"2025-01-31T03:46:56.395893Z","times_seen":1,"resource_available":false,"data":null}},"time_used":216,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":215,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ok4static.oktacdn.com/assets/js/sdk/okta-signin-widget/7.18.0/css/okta-sign-in.min.css","fqdn":"ok4static.oktacdn.com","domain":"oktacdn.com","tld":"com"},"ip":{"addr":"143.204.55.47","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.888Z","timestamp":1738295194888,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.oktacdn.com","organization":"Okta, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 02 Dec 2024 00:00:00 GMT","end":"Fri, 02 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"3E:D7:C7:A6:35:70:74:E4:BF:45:2E:A1:D5:A3:25:88:24:76:B3:B5","sha256":"71:C0:94:09:81:5A:DD:BE:41:D4:27:16:CB:BB:73:BD:A1:E1:22:3A:D2:6C:C1:26:F0:EC:4B:ED:3D:64:26:3B"}}},"request":{"raw":"GET /assets/js/sdk/okta-signin-widget/7.18.0/css/okta-sign-in.min.css HTTP/1.1\r\nHost: ok4static.oktacdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\nserver: nginx\r\nlast-modified: Tue, 14 May 2024 21:48:24 GMT\r\nx-amz-meta-sha1sum: 7b5499b46660a0348cc2b22cae927dcc3fda8b20\r\nstrict-transport-security: max-age=315360000; includeSubDomains\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\ndate: Wed, 29 Jan 2025 17:13:28 GMT\r\nexpires: Thu, 29 Jan 2026 17:13:28 GMT\r\ncache-control: max-age=31536000, public,max-age=31536000,s-maxage=1814400\r\netag: W/\"0329c939fca7c78756b94fbcd95e322b\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: va_pfzbf9eewvTjEvVlCtN75NRzJWMNjz7yQCYKfVUbgD5qXhRj41w==\r\nage: 124386\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":222931,"size_decoded":222931,"mime_type":"text/css","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":170,"timings":{"blocked":56,"dns":87,"connect":3,"send":0,"wait":2,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/56ASZqhiwAdC84IVmLNEwZgh5DF1bAncu4iWVgzf67102","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.894Z","timestamp":1738295194894,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /56ASZqhiwAdC84IVmLNEwZgh5DF1bAncu4iWVgzf67102 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: application/javascript\r\ncontent-disposition: inline; filename=\"56ASZqhiwAdC84IVmLNEwZgh5DF1bAncu4iWVgzf67102\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=s%2B3kIKv3dxgItmgwhW11E2LXkdXKIa43%2BN783GWHPih46J06VmKcggCxl5Uec6wk93Uu6rh7K7Dk8DvDdOfi1n7FTyXEs7IDnMXaX5uELdjfemW0%2FI6pZzl%2BeGESoA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727d944b51e-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=874\u0026min_rtt=861\u0026rtt_var=269\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2102\u0026delivery_rate=3013527\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=5b695813430b2619\u0026ts=86\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=1779\u0026min_rtt=769\u0026rtt_var=1235\u0026sent=355\u0026recv=56\u0026lost=0\u0026retrans=0\u0026sent_bytes=373695\u0026recv_bytes=23933\u0026delivery_rate=2977723\u0026cwnd=165000\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11291\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":136817,"size_decoded":136817,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":147,"receive":127,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/12VgqcyIxyDnN6715","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.824Z","timestamp":1738295194824,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /12VgqcyIxyDnN6715 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: text/css;charset=UTF-8\r\nserver: cloudflare\r\ncontent-disposition: inline; filename=\"12VgqcyIxyDnN6715\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=OCH%2FGV%2FRJk%2FfVPKQaX1EQw875WgoX4B0I5zvD2ibsZoUZHro612sAIgiUDtW4Q0HUm2wDn4kxnCpTNxbG%2BV5SCFknzhbCPUgzLAheozI5Q5%2BeUc5dNcjjgLsRKbQTA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=2,i=?0\r\nvary: accept-encoding\r\ncf-ray: 90a6b727890bb51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=586\u0026min_rtt=566\u0026rtt_var=171\u0026sent=4\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2822\u0026recv_bytes=2103\u0026delivery_rate=4916808\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=f5a4cccd626dde14\u0026ts=88\u0026x=0\", cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":23854,"size_decoded":23854,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (23854), with no line terminators","md5":"8025ea2266871f7af97c89d4b43dc4a6","sha1":"b80f1279a6438e2325d0ece6642ba34cebd9b4d8","sha256":"bad46ff2d915998c6f922bfca9b0f01b805f3b548cf038da1bf6643fe371385e","sha512":"87680aaab3a4f7f16645558fc3680a7577cd84e7479d4dc06fd36e3f38b583f6c7e13161cdbb1f6e63be66721672814e2a375a6207d4806e5873abf0666b9a4a","ssdeep":"384:OtafGtz2omXX44PL5Ky0sdY8xbXob4YEb+VkfipSgfW:GafSz2omXX44PL5Ky0sdY8xbXoEYW+5K","tlshash":"9eb2ba6173003369f127c13771d2aa8a21359542e6b75b7db876b1a8cfd60832b3365f","first_seen":"2025-01-27T17:47:42.413948Z","last_seen":"2025-02-05T01:27:18.176454Z","times_seen":2798,"resource_available":false,"data":null}},"time_used":163,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"asp.asxtroglide.ru/GDSherpa-bold.woff2","fqdn":"asp.asxtroglide.ru","domain":"asxtroglide.ru","tld":"ru"},"ip":{"addr":"104.21.55.189","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://asp.asxtroglide.ru/M9L83S/#Nmonty@slurpmail.net","date":"2025-01-31T03:46:34.830Z","timestamp":1738295194830,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asxtroglide.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Jan 2025 20:36:33 GMT","end":"Thu, 10 Apr 2025 21:24:07 GMT"},"fingerprint":{"sha1":"FD:56:1C:B7:46:91:A5:56:47:B8:16:F9:D1:37:AE:2D:35:4F:89:BA","sha256":"98:77:21:69:CE:2E:7F:7A:DE:CF:77:33:5D:C4:FA:08:E0:DB:F6:45:EE:8A:B0:8D:74:B1:8E:63:9C:51:5B:F5"}}},"request":{"raw":"GET /GDSherpa-bold.woff2 HTTP/1.1\r\nHost: asp.asxtroglide.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://asp.asxtroglide.ru/M9L83S/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IlQrcHdDU0Y2KzB2U09UaFJ5RXpUaFE9PSIsInZhbHVlIjoiczhpL3JwbzZWZko3OVhTeXJtM29BR2haeENVK1Rqdjk2SmVWNnNFUGJtK2FvWkNHdFVVQ29JNmJ2aWUzMTgzSlJSUTZTb3M1ZXJQbytodUlBeUtWNU5Mc1VKcjVZNW44a0ZRbHBNU1VuRzhJUFBOZ0U5QUc4L1duY2FMU0JyOU8iLCJtYWMiOiIwZWYyOWY0MjVlNjFhYzgyMzJjNzU1ZTYyNDQ5YjNmMGU3NGNiNTU4NThkYzVmZmExNmEzYjY3ZDUxNzcxMmQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Iks5cTdwdnpmdGNNMTR5OGhhNzhNeXc9PSIsInZhbHVlIjoibnhvcFBSdVU1NnN3L2ZGSmFBNTY5M3lnODlEbGhzWWY2aWdVc3F6QU04L2VmZ2I5emhWamtJNXY4YVFjd1ZCMXlGQnZ3cGtwVkFZNzlyemRYSDBXR1R6WXJuaEFNaGxpNmxiK01oKzlYQVdKeTRCYURpRUN3aGxkcFVBbG1NUDIiLCJtYWMiOiIyMzI3NzBlMjk5ZGYxNTkyZGNlZjkxNGU3ZTIzOTZkMTAwMjNhNDg3YTA2OWIxNGQwNzU5YzZhNmEzYTAyZTU3IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 31 Jan 2025 03:46:34 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 28000\r\ncontent-disposition: inline; filename=\"GDSherpa-bold.woff2\"\r\ncache-control: max-age=14400\r\nlast-modified: Fri, 31 Jan 2025 02:29:53 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=TKTYdeKatc64tfNyQzSHV%2B1JHvzHxsV6egw6F5Yws5hpbDQeMTOMki%2BxOaspg1c092bUx3KFSjYyvYb9OJS8qfGwvZX86PuF0hp%2F1rF%2FNqZI5qKtAWUxKsAjtnVxlQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 4601\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 90a6b727890db51e-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=745\u0026min_rtt=596\u0026rtt_var=330\u0026sent=4\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=2823\u0026recv_bytes=2185\u0026delivery_rate=4859060\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=8fccc0b4169e2c76\u0026ts=185\u0026x=0\", cfL4;desc=\"?proto=QUIC\u0026rtt=2155\u0026min_rtt=769\u0026rtt_var=1905\u0026sent=103\u0026recv=36\u0026lost=0\u0026retrans=0\u0026sent_bytes=85025\u0026recv_bytes=11771\u0026delivery_rate=4130406\u0026cwnd=26400\u0026unsent_bytes=0\u0026cid=048baf914e95a1d8\u0026ts=11106\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28000,"size_decoded":28000,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28000, version 1.66","md5":"a4bca6c95fed0d0c5cc46cf07710dcec","sha1":"73b56e33b82b42921db8702a33efd0f2b2ec9794","sha256":"5a51d246af54d903f67f07f2bd820ce77736f8d08c5f1602db07469d96dbf77f","sha512":"60a058b20fcb4f63d02e89225a49226ccd7758c21d9162d1b2f4b53bba951b1c51d3d74c562029f417d97f1fca93f25fdd2bc0501f215e3c1ef076810b54dd06","ssdeep":"768:NDT1rKvlJOE1AgLlnGj8H58AJUcl5I17ML7FfNHubNIphqb:NDtKvyAhjHeACcl21YL7KNW+","tlshash":"cfc2f1878fd02879a72dfeb80252903197d00de93fea42318d99b70fe683987515e272","first_seen":"2023-04-09T13:59:19Z","last_seen":"2026-04-04T11:49:23.661488Z","times_seen":94575,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}}]}