{"report_id":"09e6420f-ff0c-44e6-9cb1-bed336cb2e39","version":6,"status":"done","tags":[],"date":"2026-02-14T04:09:25Z","url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":0,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"final":{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"title":"Axle","dom":{"size":81179,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65496), with no line terminators","md5":"b800922d53e6788264be2f4b49658298","sha1":"6d61426c7ec5f1b83cb30008cbbe11ec5bdfb5da","sha256":"547b192a697ba0cb1b343b270e772f6920707ee5bc35896a8d68e941688bd67a","sha512":"1af775ec7669053e0b786db5e148cab1973c2a127b4fb4f21e0f8575482a7a92fc4fce0da239e652fcc1c9a92e64ea6d24957e92949859ec4080cfce8e2f5cd3","ssdeep":"768:2yGouniBpG76Wo6RxnnGbVrSXJcuxuxuxuYMaR1pAkjg9QDybZmQ3ih/7thRNDa+:7BpG76Wo6RxnnGSlYYYYQLi","tlshash":"61837376910192a7d50f1a927321bfddb1bfdb0aca2fe824f7bd868027c4d768627105","dom_hash":"domhash80ea8305b3401acfbd796a01f392fd62","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":0,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-21T04:09:25Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"heyaxle.click","ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"domain_registered":"2026-02-05","domain_rank":0,"first_seen":"2026-02-14T04:09:26.141401Z","last_seen":"2026-02-14T04:09:26.141402Z","alert_count":40,"request_count":40,"received_data":1313390,"sent_data":18629,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Webpack","description":"Webpack is an open-source JavaScript module bundler.","website":"https://webpack.js.org/","common_platform_enumeration":"","icon":"Webpack.svg","categories":["Miscellaneous"]},{"name":"Next.js","description":"Next.js is a React framework for developing single page Javascript applications.","website":"https://nextjs.org","common_platform_enumeration":"cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*","icon":"Next.js.svg","categories":["JavaScript frameworks","Web frameworks"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]}]},{"fqdn":"avatar.vercel.sh","ip":{"addr":"66.33.60.130","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2020-01-28","domain_rank":5101934,"first_seen":"2023-01-13T00:14:27Z","last_seen":"2026-02-13T13:40:07.673567Z","alert_count":0,"request_count":6,"received_data":23627,"sent_data":2572,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/e4c3447c21d3559c.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"e6aacb42be4827745045b25b006dfb0f","sha1":"5f6a6be9999ae1ca725ec8d7d9373ff83c5c42e7","sha256":"4592a9192cc0497f15afac98cf3b0dd023e577bde470c79be0cc3dee3fa025cb","sha512":"586a2eaf73b1166d008ee04c882cc35a49d6836532073c544a95045dec0fd94e7a3af73dc022ea2f8b5d332473ed908583b1232722e7380e6222e60988571acd","ssdeep":"384:317wlrCWCmLgG4AYHfcseD1eRrbKDRB1JnfPmh4vi8fmhDZznCjLDoq9ggZrILL5:yl+Non2Dxx4LDoq9ggZrIR","tlshash":"2b03a4b172d4faa2029744b0c83f101bf22d4c7621ad74b0a7e4dcdb799858d92b6fd9","size":39263,"data":"","first_seen":"2026-02-14T04:09:30.039692Z","last_seen":"2026-06-02T02:50:44.93723Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/109367740dd70aae.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"0dc7c8b0b47c8f8973472023cda6a161","sha1":"6f03c99d2b55588d40ac7c00f9a3914e463ec7c8","sha256":"b3318737bec15d3d1c0a36441dc85ae1435b74d0518253e7e873b297294a4d9d","sha512":"099e1441b76eae6c5466a10e48b89602168f5eea26ed5ca4651f0c8d23be3f26238739f14ed58aa7b2f07b27cf5c9b5fb073aa9ab1f6f99d3ed5ca0579821004","ssdeep":"768:HFQU28TiZNi2IwU0+UDQVtBUgUmHCRuyxFK1jzG1CSzAeFDkNeY3Sg:HSUuhK1jjSzPiNeo","tlshash":"aae22ad233a6f9c1435b85e5983b0009f33a9dfab81f2865f7e868ea755044c90b2f75","size":34053,"data":"","first_seen":"2026-02-14T04:09:29.98432Z","last_seen":"2026-02-14T04:09:29.98432Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"1a6e1178e4bbf5730bd664a49dd3bc24","sha1":"17c3ae3273f9de6afbbdedf2e413dbb3a6722792","sha256":"3814cddd18b2095e01abb745a99e5ada90178e709c09879324c3b623f2d829ea","sha512":"cfb1aab0bf589e33fd12906f448ddbbf7163420a088de513b174304c9ba3a7abcd9b41c98bc4dd51edd0206c1fe4660db9857e3c6163d1bf50c670cefddee509","ssdeep":"","tlshash":"de9002b090c39c5890264186687100160b6c040c01080141132184d810115048e40d8e","size":43,"data":"","first_seen":"2023-03-13T01:07:12Z","last_seen":"2026-06-18T02:32:45.576336Z","times_seen":163523,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/5b2c4d1caf5dfefb.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d9b23e510b9333f1bdba0bbb6199e0a","sha1":"967713c14612b492fa4c4aedb4367c659664600d","sha256":"789483268a9a6617c9d113ed2dc578962dd36ec552d89b3328f730884e56116b","sha512":"6ab6041f78acd96b994d87d9ba285671d04e525cb6fc1cbe32c71d1fef566b9fd3ee8342b713360e2208ef46af359cf9a89de68a33ea5ed49e8de0c5b5a13301","ssdeep":"3072:jo/zpLeh21pCpKs1n4YHjbprm4/pFdFtU:jorpLe+ezjVjxFdFtU","tlshash":"32240ae83d55f6626ab302b710af1803b33c252b280d4d60a611fd9db57845fb17bf9a","size":214810,"data":"","first_seen":"2026-02-13T13:40:12.18961Z","last_seen":"2026-06-02T02:50:44.91616Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/a5f4f55c4e151398.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"eb8d66b3dab6a4c2e18447473007e9b6","sha1":"cde2e3a85fd28670c30b6a0deec3ffb246155ba2","sha256":"06d8d5db30bdcb244031c302965f769469db5e4ff50d3e79359ff6fb72875448","sha512":"96aade58d430d5816ba5e6d008cbf156bbe59d5cd6383bd10d2d18d451327595bb0f2980ee2f65bcbc085ff800fcb53b4291a1a618592bc09b1bdfdc3e5f3cb2","ssdeep":"768:d5Mvs8TRqnxRxdP9lsJr4fKT1LpvwutT8zZM3Jiu+:n8TUnDxdDWr4fKxLpvwutT8zZPu+","tlshash":"9c23c5e931d5f48107a780a5c42f101bf23e4e36149e24a0e3e2dde979b495dd273faa","size":47517,"data":"","first_seen":"2026-02-13T13:40:12.161799Z","last_seen":"2026-06-02T02:50:44.915225Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"e56ec97558f6bfe270a18980052cd882","sha1":"e255d834a98afc5bc955ecd496c6440458d354ff","sha256":"2c557a863c7402e8d0fcdc2732170de9e47107e3661c82ca824a1d2a2a172536","sha512":"dfbeea2bffd451f1072d0cd143d0060f16efd4024ae9294643ef78c235e29fae7499e4f11333661c45c59ccc2237a68d43edea22dc6df3961d0b75f0bf42ac7e","ssdeep":"","tlshash":"ce318c8ee90ffd912cb1de5e516f0f228cd0ea76c43060a9b24edac96295d364389895","size":1561,"data":"","first_seen":"2026-02-14T04:09:30.052547Z","last_seen":"2026-02-14T04:09:30.052547Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"92f6924d43c2dd717254771ae76ef375","sha1":"148a2d9931d467eb6d1cfe46214fe654ee7ab24c","sha256":"13c175ce68da806954a3e90c9a07a6a3b9db39e844f8edc87ac9b73482b759c0","sha512":"ca43133cf0f93a2aaaf12f3500f7804b4177bcc480b0f4dd2e40b9920c397d00e7540254b241a045f5886bee37ea81bddbe178f660e10ab93b1e65711f9024d1","ssdeep":"","tlshash":"c281bf2e7805de4bec6d7d6d013e9e3a50cc897b43a4ddb886ddce040a424ba67d6dc0","size":3942,"data":"","first_seen":"2026-02-14T04:09:30.054216Z","last_seen":"2026-02-14T04:09:30.054216Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/c72b6bbe76bcfd59.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"1f5281c13c5bb96a4766485879d4f2c5","sha1":"164484fcd57a6279b2af0f04d66c132254df4111","sha256":"49ddbc2a955f467247ef5be570e8d0f9320f26c7102376ee8939f46b8fbeebb6","sha512":"d2a0184fc111e07101abc4a16c7f5be272b7162ee9a0b6bf35ad40e182a43c829576cef709fef20ae07e08a810a0eb01bcd3a5af850cc8891d8e98a9d7664196","ssdeep":"1536:S2fcI75xgD7gGK9oFVvSfic6DAx+cPihtxCQeNIKQ8nvGPz/wJQO2J:bcIqh2DocmBLt","tlshash":"b3b309da73517522c3cb51a9c0af4b41b33b59d8241a403cb67da9cb287094d62fbf7a","size":110455,"data":"","first_seen":"2026-02-13T13:40:12.179573Z","last_seen":"2026-06-02T02:50:44.935957Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"058cccd59c2a2af240fac25187e3ef83","sha1":"580b2d48fc08d2c26ba1b021e2fc6c4a84ed3be6","sha256":"38014a947e25cb5d12aede13dfa6e728a83b246c9cff98f38a400bbb8789c0f4","sha512":"19d945b0bf69d8b210285296ed39903546863fe6632080a6ac6c9bf49105f14250237f2a52978f071027ae6e4c12ddeb0784b66f303329f6d9eccc7ee93a0cd3","ssdeep":"","tlshash":"f6b09b78e005fde555a605616525e445225f508d199414501113a155160d9151717dc0","size":112,"data":"","first_seen":"2025-10-26T16:09:51.479414Z","last_seen":"2026-06-17T23:43:58.766901Z","times_seen":1271,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/turbopack-af100fb8e21a1880.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"61148ad86585714ad5c78e34bc9cc059","sha1":"786ea6231a19be7f00b95ec58c104192dd818fd4","sha256":"c868c3d90e232f30381595c03e6cd9862ed69056737d6ae9ebc86e16ee092a4b","sha512":"e92b4b6bf5e8171f5631ca08fdc39838c3119d5d40b8ea67c5c6fb05b53557030a10ee30298b3a47e7323fe9183812beaaa35e7d8a87d642e5dd236dd03f5339","ssdeep":"192:3IwHG+J8iEsuRn6EY8iaWkUmlGVhFd2mcKW9PZPKFXVqXmZ:3IwHhyXWkUmlQ8mcDZZyd","tlshash":"6322c6da37a6f077436fa1e7803f4144e1794869146d581c939ca8fa28784ae45e3f37","size":9945,"data":"","first_seen":"2026-02-14T04:09:29.990188Z","last_seen":"2026-02-14T04:09:29.990188Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/d896ad04d1ae8eb9.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"f8e1e2cf85e4a3ab3bcf5fc7ae5a7361","sha1":"7f99b830312fa80211a7639203589547d85fa6d4","sha256":"2533d8cccab99a1e53e7031f718763168c99d17a7b8375356098ef8644343967","sha512":"b04865aa8585d41606516e7178cb37795a826006e66ea86806a0e6c28128a9adeccf1423579afabc4ed7883e11662e61d3dbd67263c58038d4a4243ade5e1a00","ssdeep":"","tlshash":"b4d02b702290f9d4408aa0cc8836424bf569247262fe7495d7ae8cb16175f0c55e1955","size":282,"data":"","first_seen":"2026-01-09T20:18:37.174909Z","last_seen":"2026-06-02T02:50:44.934949Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/89c3e7a68c0b27be.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"f9d3997efa82fa3d92062d07ba1157e4","sha1":"bd33ec9d99b6b7b6bd75d0ec264e4cde7264f69a","sha256":"eb376cc639b4e1786e9dd881862316c776f36603ecc9ad1f7c394e09c3209e9a","sha512":"a823c57dcb1d1de7a020c27c50a7f701319ad35f1e86091b3e29b8169b7d50d88bab76b8a46a7eff696c618d7451c77df135e81e6629fadc0e576f30879a733d","ssdeep":"","tlshash":"03f00e30a244d1c0634719c9a4b1847a70293c69200ed821a0bebcbd51e7f577072dd1","size":497,"data":"","first_seen":"2026-02-13T13:40:12.191907Z","last_seen":"2026-06-02T02:50:44.953159Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/3378112cd16718c1.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"894d3d310d4260259a2c1e26a296bddd","sha1":"fe67e9171c1c368b9e969d8ec4baf00d12a24f92","sha256":"f88deccdd8afc5b28c89a692ce00bc7a7c2a91e942d33a9973d2045fd99320b3","sha512":"3b0b6400fd562ca8eb18514b9393c88c3e32d475fc17ed7ccc0718e48b037b35c4e36ee88900321273d73120aeb4dbc42130420ab310ef58ab9cfc59c1b000c0","ssdeep":"384:/qL4IZDHYaYcDq8lloB63tQUVSR8oWDmuRoTt:CL4IZDHfLOBOtrX2Tt","tlshash":"c0c2b7b27391fde212db8196c03b5005f2650c3621ae24b0b395ccef769dcd991b6fa9","size":27858,"data":"","first_seen":"2026-02-14T04:09:30.04082Z","last_seen":"2026-06-02T02:50:44.93894Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/84addc9f7817832c.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"e84f9d1d31f120557477151e0bc5025c","sha1":"565d343ae5ffff0d709864204b42627c8a1d8ade","sha256":"ad1347735993cdea028acfa8978a53619bd889c08a700679716865397e88fe58","sha512":"5abc71d7b611455bd4740fa35be40810ba80ddfb910302bd44f1aafb175cbafe9e218279bfd51b97577bc8cc9c2ac974441585e2f8388bd044f8ebd667f1f408","ssdeep":"384:U1ACwGevWF8ftEIFf8IiUkjTUwmkWPxezCitiWNNXdjzo/M3KGTWJWBQb6q1Dpp:UhwGIkjtmkoxeHmM3KGTWJWBt8pp","tlshash":"74d2e935b90305bf1adf97dbe05caa85dd3d5612d44a4b0cf2938f328741ba9219bb0d","size":30289,"data":"","first_seen":"2026-02-14T04:09:30.041819Z","last_seen":"2026-06-02T02:50:44.91121Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"145ac6504fe0652f8249d8c4bfc16b77","sha1":"1b55f5fa10864b14ae3a3ae0297675bfd96ae8db","sha256":"e5e4224341e378b5a9955bc5921bbc0cb0a2114f0fc7fb1bbdf1a05391f11e44","sha512":"1fcf605e4466dbb0fa2156a3f26c4340089e19a509a202fe26d3dfeb5ee424ee72fbd0fbf364b5e0624af3e386b6d10c7cc261a06c5b6cb5a2d256412607d15d","ssdeep":"","tlshash":"77c08090cc42cc2dc6664f261c3a1c3621dcc974074555469dd5dd281985b3105b5d8a","size":177,"data":"","first_seen":"2025-05-18T16:00:22.23178Z","last_seen":"2026-06-17T23:38:45.137332Z","times_seen":2539,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"56e582393f31d5dc18eb27b64a4d1754","sha1":"791f0a6b532397dda47e25764e6ecda6dd744bf4","sha256":"8bcd962f6df924fda174778740e7d654ba8b50be373560a235c6882faa4042b5","sha512":"d4f8d58554d21dab9617fa2e6953cb65f20d52406290a8e61c0788374e2a39ecced0aca2ddebccfd69d39563a2eab38d21f1899dd9e2e29f0732be66df31c5ac","ssdeep":"","tlshash":"5ec02b41c44fdc026cf0cc0e003e0f22ce90d97485200844b31cc4c43094c1a0315c80","size":144,"data":"","first_seen":"2026-02-14T04:09:30.057695Z","last_seen":"2026-06-02T02:50:44.966532Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/7b91c4e25668925b.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"19cad2bc5b39e63889485073eb807a5c","sha1":"512bc63d2922ae8800cee704fcefcb3e7cc242af","sha256":"0c6cdea690e0c541d0403e6feaa88c765a3223bd732806f462f78bcf87fa0ab8","sha512":"0b5e40ea10c2abce9f100069c4d1de6c3bb15f08127e883d922f0279bc9966a760247640bba214bf5bc4d58fc1d022424b551d06c3a9f14a1aa97d5b65dcda97","ssdeep":"","tlshash":"87e0689ca042aae8248b19c8f837c20b603b2cfd6aaf34d091ad9c551221629a45379d","size":398,"data":"","first_seen":"2026-02-13T13:40:12.184017Z","last_seen":"2026-06-02T02:50:44.910145Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/8d2ccb94ad71a778.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"97e13922fa93c35853c6d25d8a818e56","sha1":"309e0d81842a065c68756ae7605b77174b88a64a","sha256":"3e179d654c4572f112f863fd6184a40b059790fa76920e0a94821ad9faeb5ea4","sha512":"9da72ace5a84ac1e0165e29af7e253849f85fff3e24bba19a01f84c9e56093940d047c4fefc1418e1094254586ddce7923a255ec238582c3e6e3ba76af5f828a","ssdeep":"192:WhURUQB9k84kEmNbjQEpPkJMMktHAwiKiEXb/CTi5Lm13lZMe+EQ6IjTprP:127YB0Tpk8RwrCsm13lZJ/OL","tlshash":"0082b4ad7195f4911ea364a5803f500bb23929b6286dd0b0e3a2dcf5b8f415ed233f5a","size":17898,"data":"","first_seen":"2026-02-13T13:40:12.201638Z","last_seen":"2026-02-14T04:09:30.027683Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/2e854c2db0c1e152.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"d86c3963e36a67e9241b4aa66b946b5d","sha1":"e8d4531e7fdb4e9f2b423bd8a2277c42509a1e2d","sha256":"48988b89d0abb75046468ebdc9f4e9615b21e061af4cd9360ed7601ea923f2da","sha512":"7db8d01c823a049a41e3356b649543daf78e16b2ac630b6c5c78b9ce6adf4444c147ddde4639bd81652f9c502b5e813dbf5a50771842fd9cdc1c871b83569155","ssdeep":"768:XJskmHlAq/VKywJr8EU6KtsdDvDh4kuU1BpbeAvrtmaP8apfq47q6FpScnNyuOwo:iX354G7+7Dr08t0uS3UoKxTfqR","tlshash":"7e83d7f936d0f8920bab45aac07f0005f31c5c77245e7864a3e5ddda316459ee0e2faa","size":85416,"data":"","first_seen":"2026-02-13T13:40:12.167369Z","last_seen":"2026-06-02T02:50:44.919968Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"9d3e13ae862e9409f2ad25db77114a02","sha1":"b795e960444cdc5750e55fb3708de8e4f02cca9d","sha256":"21c975f7ee45b246da01bc8440a7f0996b47ab524ef7d27cde6b12cdc691f284","sha512":"b9cedb05a3a65cd949258aa3ddb21de1a15f386dd38e779c4273f37ab80f7bd2fc4681a8eefd477886b1f861b4ca1997dda342fbb0d7d83ffe355788f3fe3df3","ssdeep":"","tlshash":"85516be3ad26dc08cbc75e08287e7cb568ccc396528aa55bb19ccc2881d7e305be5751","size":3053,"data":"","first_seen":"2026-02-13T13:40:12.208501Z","last_seen":"2026-02-14T04:09:30.058771Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"771212f98189b29d6862b2b96265f83f","sha1":"d772da81b499b7decbb7be9bac0cf7fe09f86b85","sha256":"dd02e81b54126f34537d020c8bbfb0a3c0ff6f9819887ca6861e5fa0a8c7bc24","sha512":"123e3e5f0f364c939b5bcb4ea5ce14aee6f313f68c30dcc9885e9206d91250e3c8f8fae53ad9f745f09f9d49e9b17ee6d6411c9a9e79b8ce1e9458f4f8e3543e","ssdeep":"","tlshash":"4b800470c4400c15c031407714341107017d414d001007005350575450311455505ddd","size":34,"data":"","first_seen":"2023-09-21T12:11:27Z","last_seen":"2026-06-17T18:05:25.460007Z","times_seen":2031,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/7e4633a676f99669.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"39e814eb95edd98d3818bac06b3bfbff","sha1":"6871d0ef46225115040622f06bf8451b8d074f49","sha256":"03ad2953bc8cd5d1a163a5fd5066c6375318604268c0954e440cd5f70e639c2e","sha512":"e4c701a346158629b47088f8601375ff013d22762e67d73cdae12717915cc6a16e5a123de74679315365974da952bb8244b157c3466f9579f1fee741a689c7c6","ssdeep":"768:09oKrorPJkHT0LK8xJL/Fu2U2OwZTim3SXl8TimVE83Dr7eYuoBuC0ZAirq5pJYk:3RG0LK8xFFu2U4E8OC0XrGHYC5","tlshash":"b4431236d14053e9e42b0b42570db88cb27f6f4aea3f9430fbf959506e449a7623b706","size":58732,"data":"","first_seen":"2026-02-14T04:09:30.049021Z","last_seen":"2026-02-14T04:09:30.049021Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"heyaxle.click/beta/logo.svg","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /beta/logo.svg HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: image/svg+xml\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=0\r\nEtag: W/\"415-19c58b76d30\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:42 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1045,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bf6d3f23b8048e4e11dccaf6f9bbb971","sha1":"56339b25a6b8d500f30dccd8a87f7cdf80a3b86f","sha256":"d65adc32977eeae4bb2a69ca81803a5b16ca6cf39e0fc6d0ddd2480fa0c15424","sha512":"d1254b4a86a8fbbae6396f463229b56a8d5c6f93f39c6ec821872b9effb7054e2fd0c48203e14a2a7cf74af24550a7af4659c79d6ffe987b8c95f15387cbb322","ssdeep":"","tlshash":"d811355d422d711be10ca7116a46343551733bd5aec98068a7a3977d7c889cebc149d4","first_seen":"2026-02-13T13:40:12.157454Z","last_seen":"2026-06-02T02:50:44.930352Z","times_seen":3,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/image?url=%2Fg.png\u0026w=64\u0026q=75","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/image?url=%2Fg.png\u0026w=64\u0026q=75 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/InstrumentSerif-Italic.ttf","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.046Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /InstrumentSerif-Italic.ttf HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/_next/static/chunks/ff3f0b9b4f4168af.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: font/ttf\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=0\r\nEtag: W/\"114d4-19c58b76d30\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:42 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":70868,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 14 names, Microsoft, language 0x409","md5":"4036d1c3db2f215c15e9c022fb4644c8","sha1":"1834cba59044f0cfeb60e8a61d93f295ac53c56d","sha256":"9c86e4d5a47b50224a2463a9eca8535835257c8e85c470c2c6b454b1af6f046e","sha512":"f58054f4db8bb77db995119aef551704c60820d47d8735ecbaa970ae8724970dfd2f23222af8846887c3a51edf205acdd5f5f8853f5ae4281fc7aca802afdc38","ssdeep":"1536:ZDDSKHEdiDwNfL+dyvHI+bjbbrYSBugB3Ko29yLx+AmWpE9wrA3:VSuDwNjrvHRfnj2BdeE7","tlshash":"8d635c06bb41e65dca261d3888b3d3b54317fd213f36534fa2a62b0dec693c41da718a","first_seen":"2025-12-13T10:15:57.228548Z","last_seen":"2026-06-10T21:02:42.637409Z","times_seen":26,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/media/83afe278b6a6bb3c-s.p.3a6ba036.woff2","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.684Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/media/83afe278b6a6bb3c-s.p.3a6ba036.woff2 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 48432\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"bd30-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48432,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-06-18T02:19:59.327515Z","times_seen":67232,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":35,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"avatar.vercel.sh/tayo","fqdn":"avatar.vercel.sh","domain":"vercel.sh","tld":"sh"},"ip":{"addr":"66.33.60.130","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.vercel.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 00:21:54 GMT","end":"Sat, 09 May 2026 00:21:53 GMT"},"fingerprint":{"sha1":"93:18:3A:2E:D1:53:D7:C6:65:2E:83:00:CA:DB:E2:C1:89:04:4C:90","sha256":"04:69:78:CB:19:EF:46:5D:AD:C4:8D:F7:7B:0F:50:C7:8B:58:EE:D9:95:EA:02:6F:75:A9:41:AC:85:25:73:F3"}}},"request":{"raw":"GET /tayo HTTP/1.1\r\nHost: avatar.vercel.sh\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: image/png\r\ndate: Sat, 14 Feb 2026 04:09:03 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-matched-path: /api/avatar/[name]\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::arn1::c5l4n-1771042143736-ae1fc0936c72\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":4938,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced","md5":"074f303edda2631929bd068a3161aa77","sha1":"1541c1ef5ad5b97179d10ea9390ba2ae40f6eab7","sha256":"22c17dc10dcd2cd32965803a5d58deee53d2b40d7dafbabdd1677022c58ad9a5","sha512":"fb8d3bc5e2c9f3a50fbc726a187b14ee563bc49d63c889fe6cf80e0eba16d7817a4b8a61c8d6c5f8138b5173ed9cdd78065a0c105889a9fd5b8e804e3f00da8f","ssdeep":"96:JkeGVbu+piLhKOV266N7rNI2acF3xTJpaVwnC0wUVna8pKLd4o1s8O7GScVNLlRN:JiVWEu2jpwVwnFnb8Xd","tlshash":"95a1b8d324a91272f57d4a30c1e567a1682cbb4e53e39cec04bc6a47657784310dafaf","first_seen":"2026-02-13T13:40:12.163464Z","last_seen":"2026-06-02T02:50:44.931217Z","times_seen":3,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":43,"dns":14,"connect":8,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avatar.vercel.sh/einstein","fqdn":"avatar.vercel.sh","domain":"vercel.sh","tld":"sh"},"ip":{"addr":"66.33.60.130","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.vercel.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 00:21:54 GMT","end":"Sat, 09 May 2026 00:21:53 GMT"},"fingerprint":{"sha1":"93:18:3A:2E:D1:53:D7:C6:65:2E:83:00:CA:DB:E2:C1:89:04:4C:90","sha256":"04:69:78:CB:19:EF:46:5D:AD:C4:8D:F7:7B:0F:50:C7:8B:58:EE:D9:95:EA:02:6F:75:A9:41:AC:85:25:73:F3"}}},"request":{"raw":"GET /einstein HTTP/1.1\r\nHost: avatar.vercel.sh\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: image/png\r\ndate: Sat, 14 Feb 2026 04:09:04 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-matched-path: /api/avatar/[name]\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::arn1::c5l4n-1771042143737-e4be1aacaf4f\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":3314,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced","md5":"92474ab2d1c1439ef3c7dc18dcf2e131","sha1":"d782030b7421fd24b5e4d6ac0cff3a4bc0be6863","sha256":"eedbc00a8113bbf22abfb8be33287a0ac7cfa12714386c5b989240203bdc5778","sha512":"6b8778c267886c8fce9c265a25d93db01f1b4bfbc7bb7f7b4110e086a3b66d140f139cd69afa10fa9f503e189fad7f77f6047a7a45d388330262d49bafec1a3f","ssdeep":"","tlshash":"6961f872ca57073dcfed5129ccdcbeab6d1ecb506faa210a8184a3a0b11002e189a56d","first_seen":"2026-02-13T13:40:12.165539Z","last_seen":"2026-06-02T02:50:44.926966Z","times_seen":3,"resource_available":false,"data":null}},"time_used":545,"timings":{"blocked":36,"dns":0,"connect":0,"send":0,"wait":509,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/89c3e7a68c0b27be.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/89c3e7a68c0b27be.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 497\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"1f1-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":497,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (497), with no line terminators","md5":"f9d3997efa82fa3d92062d07ba1157e4","sha1":"bd33ec9d99b6b7b6bd75d0ec264e4cde7264f69a","sha256":"eb376cc639b4e1786e9dd881862316c776f36603ecc9ad1f7c394e09c3209e9a","sha512":"a823c57dcb1d1de7a020c27c50a7f701319ad35f1e86091b3e29b8169b7d50d88bab76b8a46a7eff696c618d7451c77df135e81e6629fadc0e576f30879a733d","ssdeep":"","tlshash":"03f00e30a244d1c0634719c9a4b1847a70293c69200ed821a0bebcbd51e7f577072dd1","first_seen":"2026-02-13T13:40:12.191907Z","last_seen":"2026-06-02T02:50:44.953159Z","times_seen":3,"resource_available":true,"data":null}},"time_used":212,"timings":{"blocked":173,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/image?url=%2Ftayo.png\u0026w=32\u0026q=75","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/image?url=%2Ftayo.png\u0026w=32\u0026q=75 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":48,"timings":{"blocked":26,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/auth/signup?_rsc=1r34m","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /auth/signup?_rsc=1r34m HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /_tree\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/x-component\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: s-maxage=31536000\r\nVary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\nX-Nextjs-Cache: HIT\r\nX-Nextjs-Postponed: 2\r\nX-Nextjs-Prerender: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":759,"size_decoded":0,"mime_type":"text/x-component","magic":"ASCII text, with very long lines (535)","md5":"bc7b5d2d8a4897a2ab496cb52bf69326","sha1":"48fff2810cc7a6b78a687914bbaf066f35b8bcbd","sha256":"7a1a6853c917c25aba96ae2846aed575120754cd44c6252f53adf7817947a2af","sha512":"972f6c09ea134177dd33b7f2c12599f9aa9cef48d6e0967c49f378f4a022b7b986945503bb31353335e8b3c2435a9d2814d97e112dbb0a3920e5d30a4bbb1ce1","ssdeep":"","tlshash":"9901f05e8898bd5d9dd6d94c5399b707172cca3bb4a44df588ce2c5017af0384b4b743","first_seen":"2026-02-14T04:09:29.970812Z","last_seen":"2026-02-14T04:09:29.970812Z","times_seen":1,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/favicon.ico?favicon.0b3bf435.ico","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.654Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /favicon.ico?favicon.0b3bf435.ico HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: image/x-icon\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: public, max-age=0, must-revalidate\r\nVary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch\r\nX-Nextjs-Cache: HIT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25931,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"c30c7d42707a47a3f4591831641e50dc","sha1":"9ecfcc8f0ead0bf3d2d7c39e084b88f41cc89a2e","sha256":"2b8ad2d33455a8f736fc3a8ebf8f0bdea8848ad4c0db48a2833bd0f9cd775932","sha512":"7053e0f76e92179fb5154e2665d81897736bdcc22b002b0a3f8e212f27ef80f56224adaa09972848a20c66b064d16eafa732140461071ad70b6193c33dd517e0","ssdeep":"384:ryveIpvjGAUdJ/RN0d2q3OTirIDpXofYPj68Xg5RNy7yyTLb4v0:bIAJdhwYqZ8pYYPjSy7j3j","tlshash":"11c28e9b2b7e2015c908257641aeddfb011b5d4b28b4a20025fa3eb7b4b3735091fa7f","first_seen":"2023-04-30T22:57:19Z","last_seen":"2026-06-18T02:19:59.674118Z","times_seen":26709,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"avatar.vercel.sh/fawas","fqdn":"avatar.vercel.sh","domain":"vercel.sh","tld":"sh"},"ip":{"addr":"66.33.60.130","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.vercel.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 00:21:54 GMT","end":"Sat, 09 May 2026 00:21:53 GMT"},"fingerprint":{"sha1":"93:18:3A:2E:D1:53:D7:C6:65:2E:83:00:CA:DB:E2:C1:89:04:4C:90","sha256":"04:69:78:CB:19:EF:46:5D:AD:C4:8D:F7:7B:0F:50:C7:8B:58:EE:D9:95:EA:02:6F:75:A9:41:AC:85:25:73:F3"}}},"request":{"raw":"GET /fawas HTTP/1.1\r\nHost: avatar.vercel.sh\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: image/png\r\ndate: Sat, 14 Feb 2026 04:09:03 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-matched-path: /api/avatar/[name]\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::arn1::5jw8d-1771042143773-3da69ca0d358\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":4095,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced","md5":"1051fe29a26428b872b9f8b991998c03","sha1":"e3fef4b65c24b8926853e41b1b67077b48d4c1ea","sha256":"5534eede131e3717f36367be4c591a79ce1af475b5be8097c517415b149a23b1","sha512":"e9a507b2d68fe3a8d16ef1d0db68500a731cf53527843ffd5ab5ff38354a210f4c6c28d240d24dd9334ff0a16b5c6368bc24d5d576df8b005fa2ea896968f298","ssdeep":"","tlshash":"94810a040ad7a06df6e5a133df9f5ed3aed07ba49229015b502e108f917aebd4b2911c","first_seen":"2025-08-18T22:53:09.82977Z","last_seen":"2026-06-05T11:05:21.904284Z","times_seen":5,"resource_available":false,"data":null}},"time_used":239,"timings":{"blocked":40,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/a5f4f55c4e151398.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/a5f4f55c4e151398.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"b99d-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47517,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (47517), with no line terminators","md5":"eb8d66b3dab6a4c2e18447473007e9b6","sha1":"cde2e3a85fd28670c30b6a0deec3ffb246155ba2","sha256":"06d8d5db30bdcb244031c302965f769469db5e4ff50d3e79359ff6fb72875448","sha512":"96aade58d430d5816ba5e6d008cbf156bbe59d5cd6383bd10d2d18d451327595bb0f2980ee2f65bcbc085ff800fcb53b4291a1a618592bc09b1bdfdc3e5f3cb2","ssdeep":"768:d5Mvs8TRqnxRxdP9lsJr4fKT1LpvwutT8zZM3Jiu+:n8TUnDxdDWr4fKxLpvwutT8zZPu+","tlshash":"9c23c5e931d5f48107a780a5c42f101bf23e4e36149e24a0e3e2dde979b495dd273faa","first_seen":"2026-02-13T13:40:12.161799Z","last_seen":"2026-06-02T02:50:44.915225Z","times_seen":3,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":-1,"dns":1,"connect":23,"send":0,"wait":106,"receive":10,"ssl":51},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/d896ad04d1ae8eb9.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.705Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/d896ad04d1ae8eb9.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 282\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"11a-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":282,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with no line terminators","md5":"f8e1e2cf85e4a3ab3bcf5fc7ae5a7361","sha1":"7f99b830312fa80211a7639203589547d85fa6d4","sha256":"2533d8cccab99a1e53e7031f718763168c99d17a7b8375356098ef8644343967","sha512":"b04865aa8585d41606516e7178cb37795a826006e66ea86806a0e6c28128a9adeccf1423579afabc4ed7883e11662e61d3dbd67263c58038d4a4243ade5e1a00","ssdeep":"","tlshash":"b4d02b702290f9d4408aa0cc8836424bf569247262fe7495d7ae8cb16175f0c55e1955","first_seen":"2026-01-09T20:18:37.174909Z","last_seen":"2026-06-02T02:50:44.934949Z","times_seen":4,"resource_available":true,"data":null}},"time_used":210,"timings":{"blocked":172,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"avatar.vercel.sh/lha","fqdn":"avatar.vercel.sh","domain":"vercel.sh","tld":"sh"},"ip":{"addr":"66.33.60.130","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.vercel.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 00:21:54 GMT","end":"Sat, 09 May 2026 00:21:53 GMT"},"fingerprint":{"sha1":"93:18:3A:2E:D1:53:D7:C6:65:2E:83:00:CA:DB:E2:C1:89:04:4C:90","sha256":"04:69:78:CB:19:EF:46:5D:AD:C4:8D:F7:7B:0F:50:C7:8B:58:EE:D9:95:EA:02:6F:75:A9:41:AC:85:25:73:F3"}}},"request":{"raw":"GET /lha HTTP/1.1\r\nHost: avatar.vercel.sh\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: image/png\r\ndate: Sat, 14 Feb 2026 04:09:03 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-matched-path: /api/avatar/[name]\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::arn1::sqf69-1771042143735-3ef93eb275ab\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":4609,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced","md5":"8afa0648d4f6f3f41722d250c6163716","sha1":"511ec11050dd32df470d91a66c55fd4d16b7e7e2","sha256":"c501ce46887ccabf2f8a7ddcfe2c853b040b18f09c9343fa317807464097fa20","sha512":"5a33722e2a452bcb9a8186e7100e52ee22cf7623002738af7e08446c102cae295e12b625268154799e8a6f3a39a371453c5cba1a9a1f2de3a546f2fe4503e2f9","ssdeep":"96:trgRnfuH7zCuqsl+KTMhle3ozFS/YcyFlZ5X3zQnfx:trg+osRTwXZVzcx","tlshash":"bd9108a9846c396288fc63cd6c2090f14141350be381afb4ef46fdb7d8c2a3c94722ad","first_seen":"2025-08-02T19:48:08.25853Z","last_seen":"2026-06-02T18:29:01.328679Z","times_seen":8,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":41,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/7b91c4e25668925b.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/7b91c4e25668925b.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 398\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"18e-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":398,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (398), with no line terminators","md5":"19cad2bc5b39e63889485073eb807a5c","sha1":"512bc63d2922ae8800cee704fcefcb3e7cc242af","sha256":"0c6cdea690e0c541d0403e6feaa88c765a3223bd732806f462f78bcf87fa0ab8","sha512":"0b5e40ea10c2abce9f100069c4d1de6c3bb15f08127e883d922f0279bc9966a760247640bba214bf5bc4d58fc1d022424b551d06c3a9f14a1aa97d5b65dcda97","ssdeep":"","tlshash":"87e0689ca042aae8248b19c8f837c20b603b2cfd6aaf34d091ad9c551221629a45379d","first_seen":"2026-02-13T13:40:12.184017Z","last_seen":"2026-06-02T02:50:44.910145Z","times_seen":3,"resource_available":true,"data":null}},"time_used":237,"timings":{"blocked":205,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/c72b6bbe76bcfd59.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/c72b6bbe76bcfd59.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"1af77-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":110455,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"1f5281c13c5bb96a4766485879d4f2c5","sha1":"164484fcd57a6279b2af0f04d66c132254df4111","sha256":"49ddbc2a955f467247ef5be570e8d0f9320f26c7102376ee8939f46b8fbeebb6","sha512":"d2a0184fc111e07101abc4a16c7f5be272b7162ee9a0b6bf35ad40e182a43c829576cef709fef20ae07e08a810a0eb01bcd3a5af850cc8891d8e98a9d7664196","ssdeep":"1536:S2fcI75xgD7gGK9oFVvSfic6DAx+cPihtxCQeNIKQ8nvGPz/wJQO2J:bcIqh2DocmBLt","tlshash":"b3b309da73517522c3cb51a9c0af4b41b33b59d8241a403cb67da9cb287094d62fbf7a","first_seen":"2026-02-13T13:40:12.179573Z","last_seen":"2026-06-02T02:50:44.935957Z","times_seen":3,"resource_available":true,"data":null}},"time_used":301,"timings":{"blocked":209,"dns":0,"connect":0,"send":0,"wait":49,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/109367740dd70aae.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/109367740dd70aae.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"8505-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34053,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (22757)","md5":"0dc7c8b0b47c8f8973472023cda6a161","sha1":"6f03c99d2b55588d40ac7c00f9a3914e463ec7c8","sha256":"b3318737bec15d3d1c0a36441dc85ae1435b74d0518253e7e873b297294a4d9d","sha512":"099e1441b76eae6c5466a10e48b89602168f5eea26ed5ca4651f0c8d23be3f26238739f14ed58aa7b2f07b27cf5c9b5fb073aa9ab1f6f99d3ed5ca0579821004","ssdeep":"768:HFQU28TiZNi2IwU0+UDQVtBUgUmHCRuyxFK1jzG1CSzAeFDkNeY3Sg:HSUuhK1jjSzPiNeo","tlshash":"aae22ad233a6f9c1435b85e5983b0009f33a9dfab81f2865f7e868ea755044c90b2f75","first_seen":"2026-02-14T04:09:29.98432Z","last_seen":"2026-02-14T04:09:29.98432Z","times_seen":1,"resource_available":true,"data":null}},"time_used":249,"timings":{"blocked":209,"dns":0,"connect":0,"send":0,"wait":38,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/image?url=%2Fb.png\u0026w=64\u0026q=75","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/image?url=%2Fb.png\u0026w=64\u0026q=75 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1474\r\nConnection: keep-alive\r\nCache-Control: public, max-age=14400, must-revalidate\r\nContent-Disposition: attachment; filename=\"b.webp\"\r\nContent-Security-Policy: script-src 'none'; frame-src 'none'; sandbox;\r\nEtag: NMlQUZf2H7BR87VAtdk9SGKKrwzbzF5E7xrR1YeNR8Y\r\nVary: Accept\r\nX-Nextjs-Cache: HIT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1474,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9a20af7066c9e98aa1f04d77826ab7e4","sha1":"fe764d4b2c77f71e662256a01b649132b718d59f","sha256":"34c9505197f61fb051f3b540b5d93d48628aaf0cdbcc5e44ef1ad1d5878d47c6","sha512":"40279ed17d581d4caeed113cb8c1f43de590c2677bfa5cb12a219e125446b3d9a6478a9105bd37fa598ebd37e13990b97895dd0a440576cd3dfd7189e1fa5934","ssdeep":"","tlshash":"0e31d79ee5ac2066ed4af827f58e1409c962ab20d14d8509f0156da62546c1cdf11de0","first_seen":"2026-02-13T13:40:12.156384Z","last_seen":"2026-02-14T04:09:29.986667Z","times_seen":2,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/image?url=%2Ff.png\u0026w=64\u0026q=75","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/image?url=%2Ff.png\u0026w=64\u0026q=75 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":23,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/turbopack-af100fb8e21a1880.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/turbopack-af100fb8e21a1880.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"26d9-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9945,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6158)","md5":"61148ad86585714ad5c78e34bc9cc059","sha1":"786ea6231a19be7f00b95ec58c104192dd818fd4","sha256":"c868c3d90e232f30381595c03e6cd9862ed69056737d6ae9ebc86e16ee092a4b","sha512":"e92b4b6bf5e8171f5631ca08fdc39838c3119d5d40b8ea67c5c6fb05b53557030a10ee30298b3a47e7323fe9183812beaaa35e7d8a87d642e5dd236dd03f5339","ssdeep":"192:3IwHG+J8iEsuRn6EY8iaWkUmlGVhFd2mcKW9PZPKFXVqXmZ:3IwHhyXWkUmlQ8mcDZZyd","tlshash":"6322c6da37a6f077436fa1e7803f4144e1794869146d581c939ca8fa28784ae45e3f37","first_seen":"2026-02-14T04:09:29.990188Z","last_seen":"2026-02-14T04:09:29.990188Z","times_seen":1,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":166,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/PlusJakartaSans-VariableFont_wght.ttf","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /PlusJakartaSans-VariableFont_wght.ttf HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/_next/static/chunks/ff3f0b9b4f4168af.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: font/ttf\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=0\r\nEtag: W/\"2a6c0-19c58b76d30\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:42 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":173760,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 20 tables, 1st \"GDEF\", 28 names, Microsoft, language 0x409","md5":"310b1a7f9485a07139308402422ccbae","sha1":"d2b13009d3ac63f6ee2f28dc244164b0a492278b","sha256":"4c5552ecc1230e6dfdf6e8755d24436fca395ad9f4ecb25287ab3e9ff7a9e68d","sha512":"4f1432d5d2cec7cd62c3644ed4442933fe5d07b6c01a04777b9561c602be456a0caac8884fcdca0cd8f462109672a85cea58b3951f7e1cfba712ab40b7866551","ssdeep":"3072:IphjwzIbFLKFisOmmIYUAiFHAvnAQLcYeNj5EaH3CAqm/m3u0reQVta3domoqvbY:Io8leNWS3CAerLja3domoqvbERHZ","tlshash":"3004f863f75bc38ac811163a53b2efe633329a2adf259317586ebd346c4a3f14d02255","first_seen":"2025-12-24T10:38:55.16176Z","last_seen":"2026-06-11T23:09:31.440713Z","times_seen":112,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/image?url=%2Fd.png\u0026w=64\u0026q=75","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/image?url=%2Fd.png\u0026w=64\u0026q=75 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1436\r\nConnection: keep-alive\r\nCache-Control: public, max-age=14400, must-revalidate\r\nContent-Disposition: attachment; filename=\"d.webp\"\r\nContent-Security-Policy: script-src 'none'; frame-src 'none'; sandbox;\r\nEtag: KbORilF9-30Iz6Gao_EWr3dhM2dcWypAQT39PY4ya58\r\nVary: Accept\r\nX-Nextjs-Cache: HIT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1436,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"09bf5ab6e839f559569cf68fb035b50e","sha1":"e7aded60bb8462e5faebd6a3b6dc04fda5121d93","sha256":"29b3918a517dfb7d08cfa19aa3f116af776133675c5b2a40413dfd3d8e326b9f","sha512":"ab2c9a289a722817c2f20599deca5af73642667db286d2306135791bdd450a88908541e0a027df7b51b3a364ff2eab28090b09d81cfce46f6e8d0ae8fb7b4029","ssdeep":"","tlshash":"34211b6398e85280bd1a0f868bcb9e552f12075957e101167504c1953a09fd46e32df3","first_seen":"2026-02-13T13:40:12.178455Z","last_seen":"2026-06-02T02:50:44.944949Z","times_seen":3,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/?_rsc=1r34m","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /?_rsc=1r34m HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /_tree\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/x-component\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: s-maxage=31536000\r\nVary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\nX-Nextjs-Cache: HIT\r\nX-Nextjs-Postponed: 2\r\nX-Nextjs-Prerender: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":515,"size_decoded":0,"mime_type":"text/x-component","magic":"ASCII text","md5":"acaaf3bb61bec406f9525513345e668e","sha1":"e1ce172a985a4990bf0f80b063061873293e1a09","sha256":"f30044b3fefe16271035c35892b5aeddc1cc230ae8fff66bf2d0e8448a0eabd5","sha512":"17605393a68093db3e6a3da5d4b1076cb1824372b721465a5bbd42e279b2589df5e306afea0f9c80f91794386b07b1e75fd136fc5a0b873505aac51b902231f3","ssdeep":"","tlshash":"82f0276fc898bd5968d5d848528efb17422ccb3bb8f40de9c4ce6c5417af0280b8b643","first_seen":"2026-02-14T04:09:30.010028Z","last_seen":"2026-02-14T04:09:30.010028Z","times_seen":1,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/auth/signup?_rsc=11igb","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.398Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /auth/signup?_rsc=11igb HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /auth/signup\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/?_rsc=1pn8p","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /?_rsc=1pn8p HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /_head\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/?_rsc=ivliq","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.491Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /?_rsc=ivliq HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /__PAGE__\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/x-component\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: s-maxage=31536000\r\nVary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\nX-Nextjs-Cache: HIT\r\nX-Nextjs-Postponed: 2\r\nX-Nextjs-Prerender: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1265,"size_decoded":0,"mime_type":"text/x-component","magic":"ASCII text, with very long lines (678)","md5":"5af2931f5e1960582c770c4accc3d6ca","sha1":"c805805c701fb3f66f1e6da4390335b74a5f9a24","sha256":"0a75509bb920dad6c73610e79ab8682baf7901de44906fb030ade6d9d0316ef7","sha512":"675f5f55c24004e3f06397883a0d36d3310088f1ccfa064abdf3c74ba48ce53e5c5426d03c78d40f3c712ca722eea4d1c3f35a87473a238986608b51fb0d69fb","ssdeep":"","tlshash":"7121796fdd0eed9a4cb1cc2c282fab1351886933c934cc9dd6deecf812889661b081c0","first_seen":"2026-02-14T04:09:30.014565Z","last_seen":"2026-02-14T04:09:30.014565Z","times_seen":1,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/image?url=%2Fa.png\u0026w=64\u0026q=75","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/image?url=%2Fa.png\u0026w=64\u0026q=75 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1422\r\nConnection: keep-alive\r\nCache-Control: public, max-age=14400, must-revalidate\r\nContent-Disposition: attachment; filename=\"a.webp\"\r\nContent-Security-Policy: script-src 'none'; frame-src 'none'; sandbox;\r\nEtag: 8uE9OllAP1HDWFXZUtxikYuYgVqYqjr6SUuhEXDGD64\r\nVary: Accept\r\nX-Nextjs-Cache: HIT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1422,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"05a0f2f508730f21c217bfdd636d485c","sha1":"16c32ab6b9223df9bf0d0e6a87ea5fba42c63a6b","sha256":"f2e13d3a59403f51c35855d952dc62918b98815a98aa3afa494ba11170c60fae","sha512":"6937b9ac4f91e073b1f2e14ed8921ff321030b55dc6e424215345fd47062aefb84c44957f4a74170bc82e6b00557a0ce1fae0ac68f313230da3856f0cc84b079","ssdeep":"","tlshash":"6521e97015e8a24e5ed2173f790c8b5eab77180032328d54c2684db2e5d39543aa1227","first_seen":"2026-02-13T13:40:12.160698Z","last_seen":"2026-06-02T02:50:44.921137Z","times_seen":3,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/4e20891f2fd03463.css","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.695Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/4e20891f2fd03463.css HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: text/css; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"7cc-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1996,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (1995)","md5":"da40490666f350b733d03ffaff79fd6b","sha1":"c225ee77c290595675f27e5f5721ba417e64ea98","sha256":"14df6de62e316e1b3f6642cf5bd824953398399d328398b307ff79002b60662b","sha512":"37a42733c6ae5573e5cecd9340f043c33ce6366254154d2f7b0c2ae006045a1f6b6750417ef6ea0792614ad7b03a7c8e572b3ca99dad290058d003c63765ede4","ssdeep":"","tlshash":"8141ad24511f9909c2e3cd6335cd3e532c0a543056e66723ad2e1e688eef53b13f2b68","first_seen":"2025-09-21T18:15:44.967113Z","last_seen":"2026-06-15T22:52:36.757798Z","times_seen":180,"resource_available":false,"data":null}},"time_used":143,"timings":{"blocked":-1,"dns":1,"connect":25,"send":0,"wait":54,"receive":3,"ssl":53},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/8d2ccb94ad71a778.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/8d2ccb94ad71a778.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"45ea-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17898,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (17898), with no line terminators","md5":"97e13922fa93c35853c6d25d8a818e56","sha1":"309e0d81842a065c68756ae7605b77174b88a64a","sha256":"3e179d654c4572f112f863fd6184a40b059790fa76920e0a94821ad9faeb5ea4","sha512":"9da72ace5a84ac1e0165e29af7e253849f85fff3e24bba19a01f84c9e56093940d047c4fefc1418e1094254586ddce7923a255ec238582c3e6e3ba76af5f828a","ssdeep":"192:WhURUQB9k84kEmNbjQEpPkJMMktHAwiKiEXb/CTi5Lm13lZMe+EQ6IjTprP:127YB0Tpk8RwrCsm13lZJ/OL","tlshash":"0082b4ad7195f4911ea364a5803f500bb23929b6286dd0b0e3a2dcf5b8f415ed233f5a","first_seen":"2026-02-13T13:40:12.201638Z","last_seen":"2026-02-14T04:09:30.027683Z","times_seen":2,"resource_available":true,"data":null}},"time_used":194,"timings":{"blocked":-1,"dns":0,"connect":25,"send":0,"wait":79,"receive":28,"ssl":51},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/5b2c4d1caf5dfefb.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.701Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/5b2c4d1caf5dfefb.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"3471a-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":214810,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"0d9b23e510b9333f1bdba0bbb6199e0a","sha1":"967713c14612b492fa4c4aedb4367c659664600d","sha256":"789483268a9a6617c9d113ed2dc578962dd36ec552d89b3328f730884e56116b","sha512":"6ab6041f78acd96b994d87d9ba285671d04e525cb6fc1cbe32c71d1fef566b9fd3ee8342b713360e2208ef46af359cf9a89de68a33ea5ed49e8de0c5b5a13301","ssdeep":"3072:jo/zpLeh21pCpKs1n4YHjbprm4/pFdFtU:jorpLe+ezjVjxFdFtU","tlshash":"32240ae83d55f6626ab302b710af1803b33c252b280d4d60a611fd9db57845fb17bf9a","first_seen":"2026-02-13T13:40:12.18961Z","last_seen":"2026-06-02T02:50:44.91616Z","times_seen":3,"resource_available":true,"data":null}},"time_used":173,"timings":{"blocked":49,"dns":0,"connect":0,"send":0,"wait":55,"receive":69,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/2e854c2db0c1e152.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/2e854c2db0c1e152.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"14da8-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85416,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d86c3963e36a67e9241b4aa66b946b5d","sha1":"e8d4531e7fdb4e9f2b423bd8a2277c42509a1e2d","sha256":"48988b89d0abb75046468ebdc9f4e9615b21e061af4cd9360ed7601ea923f2da","sha512":"7db8d01c823a049a41e3356b649543daf78e16b2ac630b6c5c78b9ce6adf4444c147ddde4639bd81652f9c502b5e813dbf5a50771842fd9cdc1c871b83569155","ssdeep":"768:XJskmHlAq/VKywJr8EU6KtsdDvDh4kuU1BpbeAvrtmaP8apfq47q6FpScnNyuOwo:iX354G7+7Dr08t0uS3UoKxTfqR","tlshash":"7e83d7f936d0f8920bab45aac07f0005f31c5c77245e7864a3e5ddda316459ee0e2faa","first_seen":"2026-02-13T13:40:12.167369Z","last_seen":"2026-06-02T02:50:44.919968Z","times_seen":3,"resource_available":true,"data":null}},"time_used":229,"timings":{"blocked":115,"dns":0,"connect":0,"send":0,"wait":59,"receive":55,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/image?url=%2Fc.png\u0026w=64\u0026q=75","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/image?url=%2Fc.png\u0026w=64\u0026q=75 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1544\r\nConnection: keep-alive\r\nCache-Control: public, max-age=14400, must-revalidate\r\nContent-Disposition: attachment; filename=\"c.webp\"\r\nContent-Security-Policy: script-src 'none'; frame-src 'none'; sandbox;\r\nEtag: 4aH81uqxLe0Mi0vTZWyQGDAak9Xus7o1Pqy_8EP2rUM\r\nVary: Accept\r\nX-Nextjs-Cache: HIT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1544,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a17dccc8d9a184928e1ff867d78f74df","sha1":"63caaf0327fac002d3079c83ec08bb921e178180","sha256":"e1a1fcd6eab12ded0c8b4bd3656c9018301a93d5eeb3ba353eacbff043f6ad43","sha512":"0e5dcc4169645467516df8e0733e044e7042275591252a1a7538ca870c554a094c4718b62d660243f8c4d4c0b07fa1f2d4bad5192a718d120bac2e37b9bf5ec3","ssdeep":"","tlshash":"a1310a8700504a81e6f030be93e7a3a287921210d76de7738b2d9d14ec2fd910c68a7d","first_seen":"2026-02-13T13:40:12.195503Z","last_seen":"2026-06-02T02:50:44.94367Z","times_seen":3,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/auth/signup?_rsc=1pn8p","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /auth/signup?_rsc=1pn8p HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /_head\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/x-component\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: s-maxage=31536000\r\nVary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\nX-Nextjs-Cache: HIT\r\nX-Nextjs-Postponed: 2\r\nX-Nextjs-Prerender: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3416,"size_decoded":0,"mime_type":"text/x-component","magic":"Unicode text, UTF-8 text, with very long lines (2556)","md5":"e1ff741fe6352e1f3a3e83928aeecc56","sha1":"4cd1205c7f4a2fc56c02fa51751d4e8349f50a7b","sha256":"8cd4a0b8462f95615fe1206f639301b48e153c2604b4ecd905bb5274047030d6","sha512":"c9c4eaf9c8ab8a516d2d77d0d80f3a6d4067c999db020314bed28f314915e9108ae2678827643b6f61ba85f3fbccf756842648f65a9ae09bc507e255eb04b5d8","ssdeep":"","tlshash":"be61f0bfe714cc2dabc78649189fa20b7a9c433bdf545c27954dcd0c06c976a2e913a0","first_seen":"2026-02-14T04:09:30.035344Z","last_seen":"2026-02-14T04:09:30.035344Z","times_seen":1,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/auth/signup?_rsc=hogp5","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.441Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /auth/signup?_rsc=hogp5 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /auth/signup/__PAGE__\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"avatar.vercel.sh/judah","fqdn":"avatar.vercel.sh","domain":"vercel.sh","tld":"sh"},"ip":{"addr":"66.33.60.130","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.vercel.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 00:21:54 GMT","end":"Sat, 09 May 2026 00:21:53 GMT"},"fingerprint":{"sha1":"93:18:3A:2E:D1:53:D7:C6:65:2E:83:00:CA:DB:E2:C1:89:04:4C:90","sha256":"04:69:78:CB:19:EF:46:5D:AD:C4:8D:F7:7B:0F:50:C7:8B:58:EE:D9:95:EA:02:6F:75:A9:41:AC:85:25:73:F3"}}},"request":{"raw":"GET /judah HTTP/1.1\r\nHost: avatar.vercel.sh\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: image/png\r\ndate: Sat, 14 Feb 2026 04:09:05 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-matched-path: /api/avatar/[name]\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::arn1::hbccl-1771042143735-561305c238c8\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":1460,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced","md5":"9ca53a3c4a0a2ab54168987dc20cbbd4","sha1":"e004343da216b53732a766f4a58e4a48db3feb80","sha256":"f43f784019bf5955b86eb5b867776d114082159ad231b2c7a68cd27e8a17c0ad","sha512":"f9b836ec3180ca22104cfe86ce392fcf0a9026f70298e7db8b8e035f6e91b67d8446417cd97bbab0fa846ea0354e36c75197feeec9e8916119be676874cf5a9e","ssdeep":"","tlshash":"b4311b453d73d2ac9328a1f7b14609261421c42b52b1cb6efb2187335ad0a84ae4d32f","first_seen":"2026-02-13T13:40:12.182905Z","last_seen":"2026-06-02T02:50:44.913482Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2277,"timings":{"blocked":42,"dns":0,"connect":0,"send":0,"wait":2235,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avatar.vercel.sh/iom","fqdn":"avatar.vercel.sh","domain":"vercel.sh","tld":"sh"},"ip":{"addr":"66.33.60.130","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.690Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.vercel.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 00:21:54 GMT","end":"Sat, 09 May 2026 00:21:53 GMT"},"fingerprint":{"sha1":"93:18:3A:2E:D1:53:D7:C6:65:2E:83:00:CA:DB:E2:C1:89:04:4C:90","sha256":"04:69:78:CB:19:EF:46:5D:AD:C4:8D:F7:7B:0F:50:C7:8B:58:EE:D9:95:EA:02:6F:75:A9:41:AC:85:25:73:F3"}}},"request":{"raw":"GET /iom HTTP/1.1\r\nHost: avatar.vercel.sh\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: image/png\r\ndate: Sat, 14 Feb 2026 04:09:03 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-matched-path: /api/avatar/[name]\r\nx-vercel-cache: MISS\r\nx-vercel-id: arn1::arn1::vtn8k-1771042143737-53013c943339\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3027,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced","md5":"52d8950a21b5696af9f57841937d3a04","sha1":"76b14657a53d5a4c7b475a9aab0ebd481f6deda2","sha256":"e7444ae9c446567f5fd6dbbbc4b2dc3d5bb82382c9e00606568fd45706d40068","sha512":"905dd671e9ea4d564929688d76ab742980cc04141b845fc8d5b4655eb380795c48c318e87ff76636fbf54681617afe907149c3495b9cba13cc06247c827ef4db","ssdeep":"","tlshash":"3051182c42428cb95221a176ce1023594ea4be09af8613f1f06587673bcd9495ff57ca","first_seen":"2026-02-13T13:40:12.198246Z","last_seen":"2026-06-02T02:50:44.948249Z","times_seen":4,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":41,"dns":0,"connect":0,"send":0,"wait":61,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/e4c3447c21d3559c.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.699Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/e4c3447c21d3559c.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"995f-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":39263,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (28591)","md5":"e6aacb42be4827745045b25b006dfb0f","sha1":"5f6a6be9999ae1ca725ec8d7d9373ff83c5c42e7","sha256":"4592a9192cc0497f15afac98cf3b0dd023e577bde470c79be0cc3dee3fa025cb","sha512":"586a2eaf73b1166d008ee04c882cc35a49d6836532073c544a95045dec0fd94e7a3af73dc022ea2f8b5d332473ed908583b1232722e7380e6222e60988571acd","ssdeep":"384:317wlrCWCmLgG4AYHfcseD1eRrbKDRB1JnfPmh4vi8fmhDZznCjLDoq9ggZrILL5:yl+Non2Dxx4LDoq9ggZrIR","tlshash":"2b03a4b172d4faa2029744b0c83f101bf22d4c7621ad74b0a7e4dcdb799858d92b6fd9","first_seen":"2026-02-14T04:09:30.039692Z","last_seen":"2026-06-02T02:50:44.93723Z","times_seen":2,"resource_available":true,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":25,"send":0,"wait":59,"receive":58,"ssl":52},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/3378112cd16718c1.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.705Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/3378112cd16718c1.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"6cd2-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27858,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (27856), with no line terminators","md5":"894d3d310d4260259a2c1e26a296bddd","sha1":"fe67e9171c1c368b9e969d8ec4baf00d12a24f92","sha256":"f88deccdd8afc5b28c89a692ce00bc7a7c2a91e942d33a9973d2045fd99320b3","sha512":"3b0b6400fd562ca8eb18514b9393c88c3e32d475fc17ed7ccc0718e48b037b35c4e36ee88900321273d73120aeb4dbc42130420ab310ef58ab9cfc59c1b000c0","ssdeep":"384:/qL4IZDHYaYcDq8lloB63tQUVSR8oWDmuRoTt:CL4IZDHfLOBOtrX2Tt","tlshash":"c0c2b7b27391fde212db8196c03b5005f2650c3621ae24b0b395ccef769dcd991b6fa9","first_seen":"2026-02-14T04:09:30.04082Z","last_seen":"2026-06-02T02:50:44.93894Z","times_seen":2,"resource_available":true,"data":null}},"time_used":243,"timings":{"blocked":173,"dns":0,"connect":0,"send":0,"wait":65,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/84addc9f7817832c.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.710Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/84addc9f7817832c.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"7651-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30289,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (30289), with no line terminators","md5":"e84f9d1d31f120557477151e0bc5025c","sha1":"565d343ae5ffff0d709864204b42627c8a1d8ade","sha256":"ad1347735993cdea028acfa8978a53619bd889c08a700679716865397e88fe58","sha512":"5abc71d7b611455bd4740fa35be40810ba80ddfb910302bd44f1aafb175cbafe9e218279bfd51b97577bc8cc9c2ac974441585e2f8388bd044f8ebd667f1f408","ssdeep":"384:U1ACwGevWF8ftEIFf8IiUkjTUwmkWPxezCitiWNNXdjzo/M3KGTWJWBQb6q1Dpp:UhwGIkjtmkoxeHmM3KGTWJWBt8pp","tlshash":"74d2e935b90305bf1adf97dbe05caa85dd3d5612d44a4b0cf2938f328741ba9219bb0d","first_seen":"2026-02-14T04:09:30.041819Z","last_seen":"2026-06-02T02:50:44.91121Z","times_seen":2,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":225,"dns":0,"connect":0,"send":0,"wait":34,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/image?url=%2Fe.png\u0026w=64\u0026q=75","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.092Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/image?url=%2Fe.png\u0026w=64\u0026q=75 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: image/webp\r\nContent-Length: 1388\r\nConnection: keep-alive\r\nCache-Control: public, max-age=14400, must-revalidate\r\nContent-Disposition: attachment; filename=\"e.webp\"\r\nContent-Security-Policy: script-src 'none'; frame-src 'none'; sandbox;\r\nEtag: hgGHjj1sWEMrOfu54xIv8-EAWst-moRSX610Uwk38Tk\r\nVary: Accept\r\nX-Nextjs-Cache: HIT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1388,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e7f2178ea4a1b0e8c28d60f0bf3c2c7d","sha1":"b3aa18361cf6c4260d89a083d64570f7318d8308","sha256":"8601878e3d6c58432b39fbb9e3122ff3e1005acb7e9a84525fad74530937f139","sha512":"77bf73d561330e257f76c5c0f7a86cc0e89c4438b4ae0865bacfac64657e15871f52089d4c0536f47f5f4f0602410d94980a5400f48e89611bf57146cdbbc36b","ssdeep":"","tlshash":"c421b814daef1430ee51047979fd5bd0e823ba230941caa584729995396b22dcbfc616","first_seen":"2026-02-13T13:40:12.186797Z","last_seen":"2026-06-02T02:50:44.922012Z","times_seen":3,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":5,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/auth/signup?_rsc=m8rs8","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.396Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /auth/signup?_rsc=m8rs8 HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /auth\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-14T04:09:03.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: s-maxage=31536000\r\nVary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding\r\nX-Nextjs-Cache: HIT\r\nX-Nextjs-Prerender: 1, 1\r\nX-Nextjs-Stale-Time: 300\r\nX-Powered-By: Next.js\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Webpack","description":"Webpack is an open-source JavaScript module bundler.","website":"https://webpack.js.org/","common_platform_enumeration":"","icon":"Webpack.svg","categories":["Miscellaneous"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Next.js","description":"Next.js is a React framework for developing single page Javascript applications.","website":"https://nextjs.org","common_platform_enumeration":"cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*","icon":"Next.js.svg","categories":["JavaScript frameworks","Web frameworks"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]}],"data":{"size":81222,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (65496), with no line terminators","md5":"00df8336c3630f4c4cecb616d0ebf772","sha1":"43cd215da2604f889d7ba69b9506a43758f22345","sha256":"e35011a2c49e3135051094ceb9f0538eea8f99dd262f0fdba8f3c2da128b0761","sha512":"ab63a0e0c51e5c3373947a6ccc103405d0fac284d6758cb8122a828b457a56c6031dd190dba343ef1abc982172ca4ceb5576a3019a273c2ea861883a43b1fbbc","ssdeep":"768:hX3zOvf1BM4AzHRDy800Tb/rSXJ3uIuIuIuCMaR1pAkjgKQ8ybZmQ3ih/7thRNDJ:uBM4AzHRDy800TYe555CQB+","tlshash":"1c837376910192a7d50f1a92b321bfddb1bfdb0aca2fe824f7bd868027c4d768527105","first_seen":"2026-02-14T04:09:30.044021Z","last_seen":"2026-02-14T04:09:30.044021Z","times_seen":1,"resource_available":false,"data":null}},"time_used":679,"timings":{"blocked":314,"dns":264,"connect":22,"send":0,"wait":46,"receive":1,"ssl":30},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/ff3f0b9b4f4168af.css","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.696Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/ff3f0b9b4f4168af.css HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: text/css; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"321e9-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205289,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"90663b6d4baccc896dbd350b3e698ae2","sha1":"66e5bce3e797da1bb0702c30d30d2654f8e6a545","sha256":"9bdfc0ccc21f8012c10b86baf4ab88b355c37f516c54f7ba43a9bfac5d3f54b4","sha512":"02ef2f7975094f760ed83a9145fd33e55b3b923ea7c31293e6683abbaa2c10faadcf312e58099cac1a2b278cc07b3e2a60cc4feb7ea774d7bfd60a415dcbf33f","ssdeep":"3072:piIIlI6HY10I+4qq5UM025bS3WrquCl44hmOmV:IIIlI6HY10I+4qq5xWuo48mOO","tlshash":"8b1444b0f0b09177be17b5fd539df48da60de0a6dd1697dcb960620523e3af72892a00","first_seen":"2026-02-14T04:09:30.045876Z","last_seen":"2026-02-14T04:09:30.045876Z","times_seen":1,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":25,"send":0,"wait":59,"receive":117,"ssl":55},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/auth/signup?_rsc=nn07o","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.395Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /auth/signup?_rsc=nn07o HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://heyaxle.click/\r\nrsc: 1\r\nnext-router-prefetch: 1\r\nnext-router-segment-prefetch: /_index\r\nnext-url: /\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/beta/logo.svg","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:04.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /beta/logo.svg HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Temporarily Unavailable\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:04 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Temporarily Unavailable","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":190,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3267dd8f0e96711dd54dbb1f5676b447","sha1":"202602c4ec4a5e2498e3d24a3ed025ce70bf749c","sha256":"b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554","sha512":"e600bc9f41fffc28854805387f485a578dc4b0ff354ddc5868040952ca6d902ffad9123304e0c1d8b698925caf0d8544a90f2ec3c8b6d6dfb9d258c528c6904e","ssdeep":"","tlshash":"acc012eb38823cadd4e3313d28c36a98f29081ec14f8611001a05f2372cb296afc3b13","first_seen":"2023-04-05T16:44:06Z","last_seen":"2026-06-18T00:24:28.341613Z","times_seen":4278,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"heyaxle.click/_next/static/chunks/7e4633a676f99669.js","fqdn":"heyaxle.click","domain":"heyaxle.click","tld":"click"},"ip":{"addr":"193.181.214.73","port":443,"asn":0,"as":"","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://heyaxle.click/","date":"2026-02-14T04:09:03.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"heyaxle.click","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 19:36:13 GMT","end":"Wed, 06 May 2026 19:36:12 GMT"},"fingerprint":{"sha1":"3F:3E:E4:11:B7:E4:D4:AB:A2:06:05:68:2E:74:A6:C4:18:81:87:4C","sha256":"07:14:25:B2:2A:94:68:D5:C3:EA:9A:83:F8:11:A4:A3:C3:33:25:6C:FE:80:04:67:97:E8:13:0C:01:8F:D4:64"}}},"request":{"raw":"GET /_next/static/chunks/7e4633a676f99669.js HTTP/1.1\r\nHost: heyaxle.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://heyaxle.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 14 Feb 2026 04:09:03 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: public, max-age=31536000, immutable\r\nEtag: W/\"e56c-19c58b73e50\"\r\nLast-Modified: Fri, 13 Feb 2026 20:35:30 GMT\r\nVary: Accept-Encoding\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58732,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (58721), with no line terminators","md5":"39e814eb95edd98d3818bac06b3bfbff","sha1":"6871d0ef46225115040622f06bf8451b8d074f49","sha256":"03ad2953bc8cd5d1a163a5fd5066c6375318604268c0954e440cd5f70e639c2e","sha512":"e4c701a346158629b47088f8601375ff013d22762e67d73cdae12717915cc6a16e5a123de74679315365974da952bb8244b157c3466f9579f1fee741a689c7c6","ssdeep":"768:09oKrorPJkHT0LK8xJL/Fu2U2OwZTim3SXl8TimVE83Dr7eYuoBuC0ZAirq5pJYk:3RG0LK8xFFu2U4E8OC0XrGHYC5","tlshash":"b4431236d14053e9e42b0b42570db88cb27f6f4aea3f9430fbf959506e449a7623b706","first_seen":"2026-02-14T04:09:30.049021Z","last_seen":"2026-02-14T04:09:30.049021Z","times_seen":1,"resource_available":true,"data":null}},"time_used":283,"timings":{"blocked":222,"dns":0,"connect":0,"send":0,"wait":52,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-14","alert":"Sinkholed","trigger":"heyaxle.click","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}