{"report_id":"08be2dc2-fc55-460b-a1f9-64058f0d50c0","version":6,"status":"done","tags":[],"date":"2025-12-21T11:01:38Z","url":{"schema":"http","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":0,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"final":{"url":{"schema":"https","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"title":"ANAK HIJAB SMP MAIN DIHOTEL 1000 GODA OMETV mp4 (3).mp4","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":0,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-25T11:01:38Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"tq2tmylv9quqkoe"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"ia.yajeninengulf.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"ia.yajeninengulf.com","ip":{"addr":"188.42.241.109","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2025-12-14","domain_rank":0,"first_seen":"2025-12-21T05:56:47.753389Z","last_seen":"2025-12-21T05:56:47.753389Z","alert_count":1,"request_count":1,"received_data":1429,"sent_data":427,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"vidoy.com","ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"domain_registered":"2012-03-14","domain_rank":0,"first_seen":"2025-10-29T10:52:39.448577Z","last_seen":"2025-12-17T12:51:37.352524Z","alert_count":0,"request_count":2,"received_data":4675,"sent_data":893,"comment":"","tags":null,"fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-12-14T22:17:32.87103Z","alert_count":0,"request_count":1,"received_data":434151,"sent_data":432,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"openfpcdn.io","ip":{"addr":"108.157.229.67","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2021-11-10","domain_rank":9255,"first_seen":"2021-11-11T13:02:44Z","last_seen":"2025-12-15T08:24:00.574542Z","alert_count":0,"request_count":1,"received_data":34143,"sent_data":439,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"simemek.com","ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"domain_registered":"2025-10-30","domain_rank":0,"first_seen":"2025-12-21T05:56:47.738324Z","last_seen":"2025-12-21T05:56:47.738324Z","alert_count":0,"request_count":3,"received_data":18857,"sent_data":1659,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"pagead2.googlesyndication.com","ip":{"addr":"142.250.74.98","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2003-01-21","domain_rank":610,"first_seen":"2012-05-21T07:15:40Z","last_seen":"2025-12-15T02:21:29.673193Z","alert_count":0,"request_count":1,"received_data":164122,"sent_data":463,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-12-14T22:20:12.666465Z","alert_count":0,"request_count":2,"received_data":180990,"sent_data":934,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89476,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-05-02T16:28:08.69498Z","times_seen":231225,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"introduction_type":"scriptElement","is_inline":true,"md5":"e5fc4dfb0ddec2e0769ee917901b0a26","sha1":"a975e1c6c875f26162d5f29eb2f8813b548600df","sha256":"e3208ba5d54be31f4419ba618747e1e6e6a39ec9888d2f125b904edd2ee92173","sha512":"25006d9793cd3def0ef825d5cee317187ebfc97ac0a873f36f8f7d94eda7a370757d0bfdaf1971259a2bbff8c0e262398637d21b8a8d374d8c9fc3c70632654f","ssdeep":"","tlshash":"22d022eb2871408c98262aabf483b128641925083b66e9b5c4f8c05030f0ab2a012fee","size":213,"data":"","first_seen":"2025-12-21T11:01:39.978051Z","last_seen":"2025-12-21T11:01:39.978051Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"introduction_type":"scriptElement","is_inline":true,"md5":"eeed368413469275e3ee01f81d506e3b","sha1":"f0b2023738dda3d9f81f01101ffddc539dd5c919","sha256":"4f96b2f1bc98f9dce38413ca59d5fe7c0f994b467965421be18e634d5dfaab9e","sha512":"5d45e1b9ddc293a2a5cf80789d813f91065c721c6e0926fd2ef12c8cb31017cfda2742fc2de0b00aeb16f929963a6325bc764920f77c04b1f8216f343cfcc073","ssdeep":"96:HWJnGHjVvxkh0NhBaJzOHp+G1EbCQiQZAJ1tTBn0yXS+tpTQxA:2oDhxf9H9eWQVAhB08TH","tlshash":"22d1f1f6b9bb334d979371ea2d161141500098a903adbc98fa64f2d5fcb4cfe192b350","size":6404,"data":"","first_seen":"2023-10-24T06:38:45Z","last_seen":"2026-05-02T11:51:31.976208Z","times_seen":820,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"introduction_type":"scriptElement","is_inline":true,"md5":"bde29a6940ea911fba309ab777dd46f8","sha1":"dfcb30e70d95ce3337707ce2edce89719abb6014","sha256":"c16308345937639f5d1adc4cb96be04a0b0dfe46d3557f01a7e94e061eaceeac","sha512":"ecb0c856a4825d902f0cccd17f3ac808019c2e864f7427cc4818b6ac7cf8bdd44870d612e8179255e06b5956626b47ef06f0e660b5f3fbb6af29007876c8bceb","ssdeep":"","tlshash":"6ad0a75627bd1170c752a5f7588f940d291095402a48b175b19c53d06f4d739917382f","size":240,"data":"","first_seen":"2025-12-21T11:01:39.9793Z","last_seen":"2025-12-21T11:01:39.9793Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RRBBHD087X","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"52bc3c6a7e4ffeb42e9eb74aa2106586","sha1":"a42a5b4f41ed9bbb099d0386fe06b60ed07eb5da","sha256":"091532ba1e3f9d18ea6f41e75509df4519314aef5def84960424a6bc0d90d604","sha512":"d3db29b546f4249a4f369ea528bd6f62e47fe1def6418ae9bba4f77e844001e6b0753f475e3e68972ebe6e63d79d7c602f00d42e43cbfdb340ca3c65b02a0b7f","ssdeep":"6144:RDIe7ma2bulKY/1u99xHDmHYmyBFzvnsyRO6jJWoNPad4FpC1xY:WC8bu7/1mbrnsy39WbMpb","tlshash":"1a941ace73c674269396e078503f118ba57b29e2b45cc896f189cce42d7469a4237f7c","size":433547,"data":"","first_seen":"2025-12-21T11:01:39.97649Z","last_seen":"2025-12-21T21:13:52.826164Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"openfpcdn.io/fingerprintjs/v3","fqdn":"openfpcdn.io","domain":"openfpcdn.io","tld":"io"},"ip":{"addr":"108.157.229.67","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ef5a1ccf6a53cc40021bfd4647f82b4a","sha1":"86eaf1a45275873266f2b85249408c8297a54f61","sha256":"57281521094dd6fe0d1997e31eab51a203b0f338d39e730d260fdfecce621905","sha512":"16923eaa089ee9d2d5a4e7a02cdbd31da35c8ce7d61e0d7e1bc8a6aa0648c358ad5d5f9ce5aaec4c5247475b8192af167e7fa6941d4fe181c5e01f28ff8537d7","ssdeep":"384:fQQYf1KNHRJijKLE6wXegKHqHTBMmwZCKQLFKA5+pCqNFaiE8E0QIQfJJcChs9RW:fR1HRxf6Hc9NwlJJAbc1GPgJN","tlshash":"9be2f6d8b2c3b02a227368b6497f6007b63bbd54241d4843d57bd4c17ca5e9a813bfb9","size":33442,"data":"","first_seen":"2023-07-07T06:15:03Z","last_seen":"2026-05-02T11:51:31.956957Z","times_seen":4543,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"introduction_type":"scriptElement","is_inline":true,"md5":"feb2b4d7bcc0775b24106439fea55393","sha1":"883297bcdad81a48887b0fa80dded516d4ceffd2","sha256":"6d688c7dc44a164a6c04a179a3ee076b469b9f1cb69acbee4085e00898c6842c","sha512":"5f777380bf1b007a81e5d4193e9a2f5094c05ce2187e667d27ca26d9e02f3b0d36c21540ccb7f1f3e54566869fc1b5cbf1400f31f12f7c009f1de39bb7b4ab58","ssdeep":"","tlshash":"07f0a0ffb9bb25f40a37b134af9e5348b43200072001dd02bd6d49c92fa4e102866ad9","size":480,"data":"","first_seen":"2025-06-14T13:42:55.432929Z","last_seen":"2026-05-02T11:51:31.981253Z","times_seen":614,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"introduction_type":"scriptElement","is_inline":true,"md5":"35a1e2d69232c9f0a6d0258b14b67261","sha1":"d33de51db12ecab3472e5cd6c5279b26d977a562","sha256":"e826ac1151ab0276e1309e0f89c0a4e4803ab62eb36edfd6c78406abf91609b9","sha512":"d892fe52888dcccf2f53a309edb8ced98add88c30260bc4003c419377a451680288da475d3791ee47ec7085eea8e6827da817b7871c4c9b7f75fb08bcb3fee83","ssdeep":"","tlshash":"6dc09b9c35475cb555e757414b2fb505f147711094d11c31095a73485a20d57a755854","size":139,"data":"","first_seen":"2025-03-16T16:36:52.544017Z","last_seen":"2026-05-02T11:51:31.983123Z","times_seen":644,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"introduction_type":"scriptElement","is_inline":true,"md5":"e7d9415d39cf870065bcfac59c7edd5b","sha1":"3a837d8e7efcec31c7c059b480ea4c7986cb9836","sha256":"db4edb110c24045bae1abcd0ed7f807be6689b4ee3b6d696010c4ab78fae53ba","sha512":"72d70b5ff1e813a4e57774d4d6ab6e5b7cd1bdb3ba2f4307a7d02d41be4ec9d6b9accd1f45ef7b3e5a06f3d7f1f373cde984bbdb1c85f49fa2b78a482143f493","ssdeep":"","tlshash":"d4c09b0f50762556e57718652f175d025edc6043240184617a6d06054f596158751697","size":150,"data":"","first_seen":"2025-12-21T07:31:33.812116Z","last_seen":"2026-02-15T18:37:47.775351Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ia.yajeninengulf.com/rrL3EZ37xIOsvVC/121024","fqdn":"ia.yajeninengulf.com","domain":"yajeninengulf.com","tld":"com"},"ip":{"addr":"188.42.241.109","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-05-02T15:49:29.838169Z","times_seen":15944,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89476,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-05-02T16:28:08.69498Z","times_seen":231225,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"simemek.com/token911","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://simemek.com/e/p5w5wu7k9o9l","date":"2025-12-21T11:01:16.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"simemek.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 17 Dec 2025 05:34:58 GMT","end":"Tue, 17 Mar 2026 05:34:57 GMT"},"fingerprint":{"sha1":"AE:91:31:7A:3A:BB:7A:23:F5:BD:68:45:5C:C1:9F:D1:BC:70:05:02","sha256":"2C:95:43:56:0A:18:72:74:07:2F:9F:36:24:77:6C:80:F4:30:E1:3B:5C:74:29:3A:7A:FB:72:81:61:D0:64:98"}}},"request":{"raw":"POST /token911 HTTP/1.1\r\nHost: simemek.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/javascript, */*; q=0.01\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 15\r\nOrigin: https://simemek.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/e/p5w5wu7k9o9l\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":15,"data":"id=p5w5wu7k9o9l"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 21 Dec 2025 11:01:16 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"093f5101acb3d34104bacc533c1a2d73","sha1":"e954afa03a0a1f92550cf9d15cb953164b1f9bed","sha256":"5b7292abe4642ecd4423123f18b2677a3e8665561b30fbd1c9e5f0be82453e03","sha512":"87d6cfbcbbf4cb92de7f5d87e5302998b52464c383da62dc9010fd8b31790e33a9104055d0fc9aaacaa7f04eb25fb3743bb3c95c652265b19eadb1f26dfc47c4","ssdeep":"","tlshash":"708000088280033000820a8022888022a0328a8002c222c0080380c008020332a22222","first_seen":"2025-12-21T11:01:39.970199Z","last_seen":"2025-12-21T11:01:39.970199Z","times_seen":1,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pagead2.googlesyndication.com/pagead/js/adsbygoogle.js","fqdn":"pagead2.googlesyndication.com","domain":"googlesyndication.com","tld":"com"},"ip":{"addr":"142.250.74.98","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://simemek.com/ip129jk?id=6c396f396b37757735773570","date":"2025-12-21T11:01:16.960Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.g.doubleclick.net","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:49:25 GMT","end":"Wed, 25 Feb 2026 15:49:24 GMT"},"fingerprint":{"sha1":"91:C9:D2:96:3C:37:B7:AA:92:08:CB:D8:91:FB:4B:EC:F0:31:EE:14","sha256":"F9:FB:99:62:9D:67:65:04:DE:83:94:21:A9:3D:E7:BF:DB:C8:AF:30:5A:64:53:01:12:4A:34:94:55:B4:42:2A"}}},"request":{"raw":"GET /pagead/js/adsbygoogle.js HTTP/1.1\r\nHost: pagead2.googlesyndication.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://simemek.com/\r\nOrigin: https://simemek.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\np3p: policyref=\"https://www.googleadservices.com/pagead/p3p.xml\", CP=\"NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC\"\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nlink: \u003chttps://googleads.g.doubleclick.net\u003e; rel=\"preconnect\"; crossorigin\r\nvary: Accept-Encoding\r\ndate: Sun, 21 Dec 2025 11:01:17 GMT\r\nexpires: Sun, 21 Dec 2025 11:01:17 GMT\r\ncache-control: private, max-age=3600, stale-while-revalidate=3600\r\ncontent-type: text/javascript; charset=UTF-8\r\netag: 10932691717292522941\r\naccess-control-allow-origin: *\r\nx-content-type-options: nosniff\r\ncontent-disposition: attachment; filename=\"f.txt\"\r\ncontent-encoding: br\r\nserver: cafe\r\ncontent-length: 55403\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":163331,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (4830)","md5":"1b429a57337bd79494f9560aa8d50edf","sha1":"71618a46c1c188a16eafe5546fd467c721c1d1f1","sha256":"94da17805aac42c8e30f39a2a761698feae2e63686ea22191fdc9912825d6e3c","sha512":"dbbae6b221c33766aa137dc74c37325ef171378a1c7c345f293e28c6f7b1b97f231fa76866317bb8a3e2e44036102b323303010097b2d22f31539a1ef2fa31d1","ssdeep":"3072:6LOf8nZkhS8ulyCUdTHEB8ElEYSpkp3AmUll3Ok/sArs2LYgTzkEmMIDwIOqkg:6LOf8Zk09lyCUdbw8ElEYXwmUT3x9rTm","tlshash":"daf3f8d971a2bcb7876389e5006f4107b42da863f00cc8b0f2d8ded97a249655277fad","first_seen":"2025-12-21T11:01:39.97168Z","last_seen":"2025-12-21T11:01:39.97168Z","times_seen":1,"resource_available":false,"data":null}},"time_used":138,"timings":{"blocked":50,"dns":0,"connect":8,"send":0,"wait":25,"receive":13,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://simemek.com/ip129jk?id=6c396f396b37757735773570","date":"2025-12-21T11:01:16.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://simemek.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 21 Dec 2025 11:01:16 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 27958\r\ncf-ray: 9b16e16bfdf556ba-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb09ed3-15d84\"\r\nlast-modified: Mon, 04 May 2020 23:01:39 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 110484\r\nexpires: Fri, 11 Dec 2026 11:01:16 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=KgekVYIGe%2B34Co8m9UIy%2B6TBeOr%2FQyR4Je8vldb6zPIqcTeW6X%2FOPYAcp08WexfEx25rBcl0YHor01Pc50AxWhB0V7dYX21825uwIVRpRJDY6KbP0qOtfZaoVe1lMVXZNoB%2BxFGH\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":89476,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-05-02T16:28:08.69498Z","times_seen":231225,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simemek.com/e/p5w5wu7k9o9l","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-21T11:01:15.710Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"simemek.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 17 Dec 2025 05:34:58 GMT","end":"Tue, 17 Mar 2026 05:34:57 GMT"},"fingerprint":{"sha1":"AE:91:31:7A:3A:BB:7A:23:F5:BD:68:45:5C:C1:9F:D1:BC:70:05:02","sha256":"2C:95:43:56:0A:18:72:74:07:2F:9F:36:24:77:6C:80:F4:30:E1:3B:5C:74:29:3A:7A:FB:72:81:61:D0:64:98"}}},"request":{"raw":"GET /e/p5w5wu7k9o9l HTTP/1.1\r\nHost: simemek.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 21 Dec 2025 11:01:16 GMT\r\ncontent-type: text/html;charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=3600, s-maxage=3600, must-revalidate\r\nx-content-type-options: nosniff\r\nx-frame-options: ALLOW-FROM https://simemek.com https://simemek.com https://montok.live\r\ncontent-security-policy: frame-ancestors 'self' https://simemek.com https://simemek.com https://montok.live;\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12264,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (6442)","md5":"31375c56b1eceb2ef75e75deb87337a3","sha1":"3fe06450e41ed21293542c9355eafa4a2128bbfa","sha256":"cb9f05f05be4fff32211fcfc2c8cc2e5c04797402d44478aa279ab10b5bdfadf","sha512":"3791b1ab42cb8bd334f37b843d2d19ec0a567a4adfd4e68e86d5436e548fb917819e3a73d8b4343fe7560dfcd50d0807d700beb2598af6e8d2772269bb677d12","ssdeep":"192:Ax2kfGE09uCSJQ6GaGwSbMkxVlMFoDhxf9H9eWQVAhB08TJUS4UURa6T4q:AnagMtUjUMtTz","tlshash":"3d4283f3b866268c5b5371d5ae1311198000805b46a9fca8f9edb2a5bfb4dfe0827774","first_seen":"2025-12-21T11:01:39.973208Z","last_seen":"2025-12-21T11:01:39.973208Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1325,"timings":{"blocked":567,"dns":0,"connect":181,"send":0,"wait":192,"receive":0,"ssl":384},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ia.yajeninengulf.com/rrL3EZ37xIOsvVC/121024","fqdn":"ia.yajeninengulf.com","domain":"yajeninengulf.com","tld":"com"},"ip":{"addr":"188.42.241.109","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://simemek.com/e/p5w5wu7k9o9l","date":"2025-12-21T11:01:16.553Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ia.yajeninengulf.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 14 Dec 2025 04:08:21 GMT","end":"Sat, 14 Mar 2026 04:08:20 GMT"},"fingerprint":{"sha1":"C6:0B:2F:5B:B1:DC:C3:56:77:DD:59:90:3E:EB:DC:30:6D:1F:7E:D9","sha256":"29:70:7D:02:65:09:D4:38:4C:EA:D4:72:50:3D:7F:F3:AE:30:17:A4:20:03:E0:97:97:5D:72:FE:22:ED:62:56"}}},"request":{"raw":"GET /rrL3EZ37xIOsvVC/121024 HTTP/1.1\r\nHost: ia.yajeninengulf.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 21 Dec 2025 11:01:16 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://simemek.com\r\naccess-control-allow-headers: content-type, gyfr29qt4j80vdr0zhsj, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\naccess-control-max-age: 600\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nset-cookie: GL_UI4=eJw9jc1OhDAcB%2FkGddnkl%2FAA%2BwgtUtKrF1%2FBI2npn7UKdFMqq28v8eBtDjOZKIqSpka8FyekX0rgwrnsZSdaybpRqlZr2feCaSEZb8U0CTzYbQhKzxQyVNuifBjCniHXXq2mRr44Q3ONUnt338g3KbJVLYTy1Xqa3PdhqA%2FnkfLn7mC7HhwzJG5r0nOF8s2u5ijPj0g4O5%2BKCE%2B3WYXJ%2BWWwpoiRX70yhPgF1agCXZ3%2FQWlo%2BwzuBrjZDP%2F%2B3zi9c4bC0G5HQu7CO%2FlfoWNCFg%3D%3D; expires=Mon, 22-Dec-2025 11:01:16 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJxjYGBgEuEXZMosEOQztDTVMzPRMzS00DM0NRJkTBdk8vMXZErOE2Tzyy8qT6wUZCwSZDIwFmQqyhPk9i%2FOyVdwzi%2FNKwGKJwuygPiCjJmCfE45mRUKwfk5pSWZ%2BXnFgkxAzOmcmJSTqu8S7CPIWMDGKMhUkg8ii1NEGAQZy9gkBJlyEnkcfD%2B%2F2py%2B4CeQk8%2FjoFq%2FMTrcbrUgU0GxIIuBoakhAMrLKkg%3D; expires=Mon, 22-Dec-2025 11:01:16 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-05-02T15:49:29.838169Z","times_seen":15944,"resource_available":true,"data":null}},"time_used":389,"timings":{"blocked":181,"dns":116,"connect":22,"send":0,"wait":24,"receive":0,"ssl":46},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"ia.yajeninengulf.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"simemek.com/ip129jk?id=6c396f396b37757735773570","fqdn":"simemek.com","domain":"simemek.com","tld":"com"},"ip":{"addr":"217.216.34.82","port":443,"asn":6739,"as":"Vodafone Ono, S.A.","country":"Spain","country_code":"ES"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://simemek.com/e/p5w5wu7k9o9l","date":"2025-12-21T11:01:16.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"simemek.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 17 Dec 2025 05:34:58 GMT","end":"Tue, 17 Mar 2026 05:34:57 GMT"},"fingerprint":{"sha1":"AE:91:31:7A:3A:BB:7A:23:F5:BD:68:45:5C:C1:9F:D1:BC:70:05:02","sha256":"2C:95:43:56:0A:18:72:74:07:2F:9F:36:24:77:6C:80:F4:30:E1:3B:5C:74:29:3A:7A:FB:72:81:61:D0:64:98"}}},"request":{"raw":"GET /ip129jk?id=6c396f396b37757735773570 HTTP/1.1\r\nHost: simemek.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/e/p5w5wu7k9o9l\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 21 Dec 2025 11:01:16 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nset-cookie: vf=p5w5wu7k9o9l%7C1766314916%7CIiu5KvUQLVEQ8OLp-tmccbyMu1SeTJkZaNhuduYwzKk.Bmaxx2lAmibDI_4zj7yQ7G2TDIxzb-UK202jJizC78Y; Max-Age=120; Path=/; Secure; HttpOnly; SameSite=None\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.5.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":5424,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (498)","md5":"0f5fea7abeeef96222282536a2d01256","sha1":"d1a43e84e7b9e1310e1fd3246d65c7ff8f62dcc4","sha256":"11ccaebfd2aa3a23d7cd856a956fc22807bec9956430b2658069f2c132eb180f","sha512":"2fa1e343566ee36f67773f2f96ee9d679c0de1c06535720f5b9e292957122f0d140c9aa52a426b02b8154e6f3b8746de2529687ea2790fbd3ca874250034b859","ssdeep":"96:SuibVRo9x+Ki0TtbZZzfH8x8bVsGwtinb0OCFQlHw+JI7uNv6:sVRo9kKBtZzkmh5wt+01HCNv6","tlshash":"c5b1d86314f2148a5923a8a19eb310063172c20b9e455d593adf73b4df0db8d68b3bfc","first_seen":"2025-12-21T11:01:39.974479Z","last_seen":"2025-12-21T11:01:39.974479Z","times_seen":1,"resource_available":false,"data":null}},"time_used":179,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidoy.com/assets/img/favicon-16x16.png","fqdn":"vidoy.com","domain":"vidoy.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://simemek.com/e/p5w5wu7k9o9l","date":"2025-12-21T11:01:16.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidoy.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 11 Nov 2025 17:28:41 GMT","end":"Mon, 09 Feb 2026 17:28:40 GMT"},"fingerprint":{"sha1":"ED:51:14:06:8C:7C:77:CC:4C:61:A7:1E:EB:08:0A:6A:C1:FA:69:D5","sha256":"9C:EC:F7:8B:71:4D:3A:9D:6C:50:47:4B:C9:47:CC:78:A7:EE:87:80:5D:C2:1F:BB:39:47:F5:E1:3A:B9:58:B5"}}},"request":{"raw":"GET /assets/img/favicon-16x16.png HTTP/1.1\r\nHost: vidoy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 21 Dec 2025 11:01:17 GMT\r\ncontent-type: image/webp\r\ncontent-length: 334\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 4839192\r\ncdn-requestcountrycode: NO\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match\r\naccess-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match\r\ncache-control: public, max-age=1200\r\nlast-modified: Sun, 21 Dec 2025 11:01:17 GMT\r\nx-bo-server: DE-325\r\nx-downloadsize: 961\r\nx-bo-origindownloadtime: 254\r\nx-bo-compressionratio: 65.24%\r\nx-bo-processingtime: 1\r\nx-bo-version: 1.0.26\r\ncdn-proxyver: 1.41\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 12/21/2025 11:01:17\r\ncdn-edgestorageid: 830\r\ncdn-requestid: 1950c1c37e2a1368a134aeddf6f3fe1a\r\ncdn-cache: EXPIRED\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":334,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6988ac812f341f5883d75a84afaff23d","sha1":"6817acb04f326a58bffa8285e58a0d425a9dd3f7","sha256":"28d005e1f0d982edd659e136fe9a628502a23552e75eeb9e2c9f13f247faf926","sha512":"6b193431fe0e10a471d4e968120e5d9eed6dac22890ba0c156b10a5735469c9f30e9f0bbc5f65b1494766818a94b72c7fab3a60a0b63cc16422bdd860724d0ae","ssdeep":"","tlshash":"4be0c6001b9f28c1c9a5283a76c80aa8c02205618c11fa2844c2109a84d85e2af72349","first_seen":"2025-11-12T03:03:16.568611Z","last_seen":"2026-03-24T13:43:17.147677Z","times_seen":322,"resource_available":false,"data":null}},"time_used":340,"timings":{"blocked":-1,"dns":45,"connect":1,"send":0,"wait":288,"receive":0,"ssl":5},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidoy.com/assets/img/android-icon-192x192.png","fqdn":"vidoy.com","domain":"vidoy.com","tld":"com"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://simemek.com/e/p5w5wu7k9o9l","date":"2025-12-21T11:01:16.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidoy.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 11 Nov 2025 17:28:41 GMT","end":"Mon, 09 Feb 2026 17:28:40 GMT"},"fingerprint":{"sha1":"ED:51:14:06:8C:7C:77:CC:4C:61:A7:1E:EB:08:0A:6A:C1:FA:69:D5","sha256":"9C:EC:F7:8B:71:4D:3A:9D:6C:50:47:4B:C9:47:CC:78:A7:EE:87:80:5D:C2:1F:BB:39:47:F5:E1:3A:B9:58:B5"}}},"request":{"raw":"GET /assets/img/android-icon-192x192.png HTTP/1.1\r\nHost: vidoy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 21 Dec 2025 11:01:17 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2319\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 4839192\r\ncdn-requestcountrycode: NO\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match\r\naccess-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match\r\ncache-control: public, max-age=1200\r\nlast-modified: Sun, 21 Dec 2025 11:01:17 GMT\r\nx-bo-server: DE-268\r\nx-downloadsize: 2319\r\nx-bo-origindownloadtime: 278\r\nx-bo-compressionratio: 0%\r\nx-bo-processingtime: 5\r\nx-bo-version: 1.0.26\r\nx-bo-processing-error: 104\r\ncdn-proxyver: 1.41\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 12/21/2025 11:01:17\r\ncdn-edgestorageid: 830\r\ncdn-requestid: 2afd89d789e96cc1c9c7bc3d981e2439\r\ncdn-cache: EXPIRED\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":2319,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit colormap, non-interlaced","md5":"1f4b9d4e4dc0e0de6dcaba474471d599","sha1":"700c934fb77f8a98c4bc9c0339ac67670a8c8ffb","sha256":"a369a9bfced82fe9a930c641aa31d7c281403df9585fb2bbec1b509589ea9d30","sha512":"a8340957a66b62e40956cf84c490a1089a9816fd0df7af754ab3a512ac07fdd90b02164c6e10b7ac5e084d0cf5f684bf789e73642ed644ed15ad32590891251b","ssdeep":"","tlshash":"0a4108b06232a51df2cb4503c2c4107cc12afd38dea6d70a0032165a8eaad216ac6399","first_seen":"2025-11-10T05:05:56.591524Z","last_seen":"2026-04-28T11:35:50.335143Z","times_seen":396,"resource_available":false,"data":null}},"time_used":369,"timings":{"blocked":0,"dns":45,"connect":1,"send":0,"wait":315,"receive":1,"ssl":5},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://simemek.com/e/p5w5wu7k9o9l","date":"2025-12-21T11:01:16.552Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://simemek.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 21 Dec 2025 11:01:16 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 27958\r\ncf-ray: 9b16e16a8ca956ba-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb09ed3-15d84\"\r\nlast-modified: Mon, 04 May 2020 23:01:39 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 110484\r\nexpires: Fri, 11 Dec 2026 11:01:16 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=T44xEvEgufqRh9z0NBxoNvX5Lg33%2BIPelRddhUSSgKS2vvxO6hVzIp5VokCBdU0I0pNE00gkBx4pIdj6Nf%2F3fL4t5uAB1rRJRsLkRRJNHegZ1j7Unl6vr4Q0GRh68wfGz7MOaQrn\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":89476,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"dc5e7f18c8d36ac1d3d4753a87c98d0a","sha1":"c8e1c8b386dc5b7a9184c763c88d19a346eb3342","sha256":"f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d","sha512":"6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516","ssdeep":"1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1","tlshash":"a993f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-05-02T16:28:08.69498Z","times_seen":231225,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":10,"dns":1,"connect":3,"send":0,"wait":12,"receive":2,"ssl":8},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RRBBHD087X","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://simemek.com/e/p5w5wu7k9o9l","date":"2025-12-21T11:01:16.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:49:27 GMT","end":"Wed, 25 Feb 2026 15:49:26 GMT"},"fingerprint":{"sha1":"2C:B9:1B:62:2A:F9:04:B9:16:E2:30:B0:A8:B2:85:0C:68:BC:79:25","sha256":"AE:CB:A0:2C:92:1E:CB:D2:CB:6C:0D:37:5E:A2:4E:27:AE:4E:CA:0C:EC:53:D5:50:E6:C1:3D:EB:17:C1:F2:C9"}}},"request":{"raw":"GET /gtag/js?id=G-RRBBHD087X HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 21 Dec 2025 11:01:16 GMT\r\nexpires: Sun, 21 Dec 2025 11:01:16 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 143292\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":433547,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"52bc3c6a7e4ffeb42e9eb74aa2106586","sha1":"a42a5b4f41ed9bbb099d0386fe06b60ed07eb5da","sha256":"091532ba1e3f9d18ea6f41e75509df4519314aef5def84960424a6bc0d90d604","sha512":"d3db29b546f4249a4f369ea528bd6f62e47fe1def6418ae9bba4f77e844001e6b0753f475e3e68972ebe6e63d79d7c602f00d42e43cbfdb340ca3c65b02a0b7f","ssdeep":"6144:RDIe7ma2bulKY/1u99xHDmHYmyBFzvnsyRO6jJWoNPad4FpC1xY:WC8bu7/1mbrnsy39WbMpb","tlshash":"1a941ace73c674269396e078503f118ba57b29e2b45cc896f189cce42d7469a4237f7c","first_seen":"2025-12-21T11:01:39.97649Z","last_seen":"2025-12-21T21:13:52.826164Z","times_seen":3,"resource_available":true,"data":null}},"time_used":197,"timings":{"blocked":69,"dns":0,"connect":9,"send":0,"wait":35,"receive":22,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"openfpcdn.io/fingerprintjs/v3","fqdn":"openfpcdn.io","domain":"openfpcdn.io","tld":"io"},"ip":{"addr":"108.157.229.67","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://simemek.com/ip129jk?id=6c396f396b37757735773570","date":"2025-12-21T11:01:16.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"openfpcdn.io","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 29 Oct 2025 00:00:00 GMT","end":"Fri, 27 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7E:88:9B:B1:7C:CB:A7:14:49:10:D6:FC:A3:64:23:03:9F:CC:6A:B0","sha256":"6A:98:96:56:64:4A:39:7A:9F:12:CE:F5:99:D3:C8:24:ED:17:AF:92:3F:E3:AC:C7:7D:1F:2D:74:46:2F:95:D9"}}},"request":{"raw":"GET /fingerprintjs/v3 HTTP/1.1\r\nHost: openfpcdn.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://simemek.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://simemek.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: CloudFront\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\ndate: Sun, 21 Dec 2025 08:10:08 GMT\r\ncache-control: public, max-age=587967, s-maxage=10727\r\netag: W/\"hurxpFJ1hzJm8rhSSUCMgpelT2E\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 f33514300fff2b9161f119d57e09b528.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: wFViXDGLGnes62LxIDndoPr27tNfbe_XseHMpz3wPGoJy9ihoad21Q==\r\nage: 10268\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33442,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (33109)","md5":"ef5a1ccf6a53cc40021bfd4647f82b4a","sha1":"86eaf1a45275873266f2b85249408c8297a54f61","sha256":"57281521094dd6fe0d1997e31eab51a203b0f338d39e730d260fdfecce621905","sha512":"16923eaa089ee9d2d5a4e7a02cdbd31da35c8ce7d61e0d7e1bc8a6aa0648c358ad5d5f9ce5aaec4c5247475b8192af167e7fa6941d4fe181c5e01f28ff8537d7","ssdeep":"384:fQQYf1KNHRJijKLE6wXegKHqHTBMmwZCKQLFKA5+pCqNFaiE8E0QIQfJJcChs9RW:fR1HRxf6Hc9NwlJJAbc1GPgJN","tlshash":"9be2f6d8b2c3b02a227368b6497f6007b63bbd54241d4843d57bd4c17ca5e9a813bfb9","first_seen":"2023-07-07T06:15:03Z","last_seen":"2026-05-02T11:51:31.956957Z","times_seen":4543,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":24,"dns":3,"connect":8,"send":0,"wait":10,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}