{"report_id":"0f1ae19a-63d6-4bee-a082-0bd456673c1c","version":6,"status":"done","tags":[],"date":"2026-01-11T07:37:12Z","url":{"schema":"http","addr":"aere-luxeron.net/","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":0,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"aere-luxeron.net/","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"title":"Aere Luxeron | Official Website Platform","dom":{"size":138809,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (33549)","md5":"778ebeed506c6c7c9b15a13698d8ef6f","sha1":"17220aceba085c637011f99d87c95fd961598dcf","sha256":"d4f9acbb3798384a39bef7c276650f7d034871fcf39f8e03a176e6cef06998a5","sha512":"4c2cf01494334a7f2ac4a111c5340afa67fa50dcdb72f592dc990d684cc3374dd9e097a8b01d5629e956a1c0b2336a485bafa926ab109096b8e06ba5555b57a9","ssdeep":"1536:4W9tMbXlOJi55R+OviZOdYlicOY6N8haUMIQbIumw:4WMwXWYiLUhsxmw","tlshash":"5ad3111342a93526403782d530aa1f3bd5a9d94bfae609403edcc7f62ffac94702b65d","dom_hash":"domhash4fd0c7b268407bee312e10d78542b9d5","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"aere-luxeron.net/","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":0,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-15T07:37:12Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-01-04T22:27:18.120727Z","alert_count":0,"request_count":3,"received_data":332423,"sent_data":1413,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"aere-luxeron.net","ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":66,"request_count":11,"received_data":252239,"sent_data":5022,"comment":"","tags":null,"fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"UIKit","description":"UIKit is the framework used for developing iOS applications.","website":"https://getuikit.com","common_platform_enumeration":"","icon":"UIKit.svg","categories":["UI frameworks"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-04T22:17:15.216142Z","alert_count":0,"request_count":1,"received_data":8791,"sent_data":465,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-01-04T22:14:09.841371Z","alert_count":0,"request_count":1,"received_data":707111,"sent_data":571,"comment":"","tags":null,"fingerprints":null},{"fqdn":"amos-mamaya.fun","ip":{"addr":"198.211.98.91","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"domain_registered":"2020-12-23","domain_rank":0,"first_seen":"2021-01-05T13:51:07Z","last_seen":"2026-01-09T05:33:42.830018Z","alert_count":0,"request_count":1,"received_data":341,"sent_data":438,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"aere-luxeron.net/","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"7dd010c8b4ee0afa80874cc46b864148","sha1":"a0b6b1f1c61803e7d5b2edaa0b74d5b628c00618","sha256":"cb3e1146e3091f54558b191406ae9c29da209569da47a13d65c1dc41c4daf0f4","sha512":"3344fdf9425332f33b1b8187521a779f8a7e30a348e381ae44f980b9d233c35bda9a4c9ef2e49147f78e2949613c1db583f61c0a76829704a2751a98db47f7d3","ssdeep":"","tlshash":"99611e6a12bb013202739afe5bcf5205b26990477cc0cd453f5c43471f898aa6be27ed","size":3433,"data":"","first_seen":"2025-10-21T03:51:56.44819Z","last_seen":"2026-01-24T12:44:33.08917Z","times_seen":214,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"a8703eaac8f802b1d53888f832991e33","sha1":"7ce3f7c6c77b065765a51d69b4931e84ca93a548","sha256":"881be2bc9e7e95f190358491642b4279de5ea93ffe2c83cd7619578355debbfe","sha512":"25ae68f7c96f76795f2c71fa4745ebe3808e35f281c3be8724e5877bf16b2385a2ab43922f12b4cf35163abdf0cba11c5fbee0d856fd44764a7bed036882b81f","ssdeep":"","tlshash":"eaf06708f38dc9722661074e27ed9c0e62d0c9978dc0614936bd120a0fabaaa5a9465e","size":499,"data":"","first_seen":"2025-10-21T03:51:56.450204Z","last_seen":"2026-04-02T10:01:19.668472Z","times_seen":376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@25.8.3/build/js/intlTelInput.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7657299ef4e0a3abdc478c0b9d7075aa","sha1":"25138af863e2ad69bb09af4e93009449f2e75ccb","sha256":"8e184485db8b6a8a741dd831f7bae84644eedf8f0c371172e69721e1236a7cd1","sha512":"eb5e7ae63fb48ea7b543f7339625284b3cc5477b6c8be03667714ebab1eb7c493a1445bae46348d992a4477a2080634c532b16c7b6ae4102e1524e51ab142b6b","ssdeep":"768:U+h03XVqC/iPIqXpwJxsyysdjx2nmY249lHGIw:UiPIsy/tWHG","tlshash":"c0f2f9aeb3646637abfd82a270e54403ae6f79444604043d78bc8ede1399dd171f6b38","size":34586,"data":"","first_seen":"2025-10-21T03:51:56.40324Z","last_seen":"2026-04-02T10:01:19.649052Z","times_seen":387,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@25.8.3/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9bee4a74ffbbe72187a236bea356b2b2","sha1":"f59fed8371be6a1546f6ec8c3e86d45c835469e6","sha256":"b606e1dd5ec0876b3ad78b251b9cb83459d99e1dc4b660466383a0377a0a7fb8","sha512":"0fef840d5afb8ad8d0b9834bd52c14484c02539d74d1e611a5381a8da10cd0df66bed6b1bb2d65eb872a87708161e03f0e26ca0c66d9c2294f74bbe7216fffb4","ssdeep":"3072:9klM0tDKjFs3OwPss3MwP5y1APtA2x2MfMPihvi8EA4JhNyf4L9jo/QKWV+lumVu:9klMmDO11Ix2MfMPig7ou","tlshash":"a744f0ebd63c973ba1d87b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","size":266273,"data":"","first_seen":"2025-10-21T03:51:56.414562Z","last_seen":"2026-04-02T10:01:19.652236Z","times_seen":396,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@25.8.3/build/img/flags.webp","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.496Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/intl-tel-input@25.8.3/build/img/flags.webp HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\ncontent-type: image/webp\r\ncontent-length: 28186\r\ncf-ray: 9bc2bed39fb956a9-OSL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 25.8.3\r\nx-jsd-version-type: version\r\netag: W/\"6e1a-JHPdY1y9Ow2NjbjaGyegi0Qmya4\"\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-eddf8230073-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 3538516\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=aSRfIhDFe5aiR9TpUUXp%2BwS%2F%2BSnJcHublJGR9Bryl%2F2lybhup5BHXsyjU54UUQBArPCImQ7U5e25blk%2B5xhCzcF%2B2Yn3WSXFnH9LQi02sP%2BD%2Fd2Jub6gCA5fznITAgSzTw0%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":28186,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4af30d041d95c5a83b016ec6812cda19","sha1":"2473dd635cbd3b0d8d8db8da1b27a08b4426c9ae","sha256":"0e2a53ec4d77d08efa8e8f5fc86b1c25e8f2af39d6b44334e1219ed3e0687a61","sha512":"a43b49d0a8830608a8351b1fe3afc5d468664ad79b674583f6e8f1c647fd5270181e9b1d35cbbbddc0285dc15b49e9d53f34a8bd414d32ae3ad6d659168e095e","ssdeep":"384:NmynJhMcWfubAG0nXDutFs4CIwMB7Po+NKC5NPQic7vmUbx2Kh4du2r0mRo3d0:NmynJhMze5CD+3PZ7AEZPyx2KhSRj","tlshash":"66c2e133be32a6c76d998ab018364ffa97354446bdd359c3a1f6ba98dd374c3294020d","first_seen":"2025-03-06T15:46:52.721855Z","last_seen":"2026-04-03T17:03:13.919571Z","times_seen":1268,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/form/intltelinput.min.css","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /form/intltelinput.min.css HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000;\r\netag: \"ddltux7wa1u4bge-gzip\"\r\ncontent-type: text/css; charset=utf-8\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\ncontent-length: 3247\r\nserver: Caddy\r\nx-frame-options: DENY\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14846,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (14846), with no line terminators","md5":"3c71b12a16f4136cc71d73c73ea7eec3","sha1":"9bb9bc6a029e3e780e12ddd4b602f7665bab5d58","sha256":"c5f324d37d9ea6edfeba4eef39996051d09da795b1bba26959294b0f663bb437","sha512":"3e3acfe52d04776e028b4a05796c901e8ff23e512c90535e041e255def900f597dd32d6f0faca3ca5e4a3af723b799763affda683fbe85b86829a43d13a4e0a2","ssdeep":"192:eRbLgqLmLdLiqE4P5fnX/zScObOFhs+bpmTYCM9oRZJiEnJWoCdsPyj9KKaM:eNaBD/xvgbOEM73","tlshash":"046284030318913ee716d1397172d5bc3bbfbb4174d7cad1e6c8822f988799089aba59","first_seen":"2025-10-21T03:51:56.428574Z","last_seen":"2026-04-02T10:01:19.645902Z","times_seen":387,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/images/shape-01.avif","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /images/shape-01.avif HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: Caddy\r\nstrict-transport-security: max-age=31536000;\r\nvary: Accept-Encoding\r\ncontent-type: image/avif\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=2628000\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\netag: \"ddltux7wa1u4vp\"\r\ncontent-length: 1141\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1141,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"f24f37c43d59df4362d94af9b9f7b2f9","sha1":"517da8a13986b69429bd823f250914588864ea13","sha256":"918281d1e2e279a8867eb05690fdf8d6ea4551a68a5effa83a4bdf7af38090a5","sha512":"1d13b32b8902b5a01429844b155d32842b23b17d44a9b1e09c5fb8c2a3fc35b53cf71848ebe6185aa429bc828781ff08b981e2cc55f85916aa49709c0e00073e","ssdeep":"","tlshash":"ae21466533583d52d04e0bba5ebcd3017b61d3b897ef6455b9c17211a9151f1c951c18","first_seen":"2025-10-21T03:51:56.420259Z","last_seen":"2026-04-02T10:01:19.655788Z","times_seen":389,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/images/background-5.avif","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.410Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /images/background-5.avif HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/styles/main.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nvary: Accept-Encoding\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\netag: \"ddltux7wa1u4n85\"\r\ncontent-type: image/avif\r\naccept-ranges: bytes\r\ncontent-length: 30101\r\nserver: Caddy\r\ncache-control: public, max-age=2628000\r\nstrict-transport-security: max-age=31536000;\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":30101,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"83c8d26271cb94d94c31432abf14fbee","sha1":"b3b2c8447940eda43c2423678e7334b6d89ff50a","sha256":"cef01082169630b2ff8bdafb0cc0fb41960295c754566e624770b6531a73378e","sha512":"236257382fa987eb37414af91bf59042309620f166795fe69a8b379b25feb7de7c5597f505ca12a295e8340e26728481588ead1583740f78adb00bf98ed1348f","ssdeep":"768:SC9i23D+riblDTIA3oFgywx8cTaCO+2KabcoGVtFCw+e2pZX:S6Dui9TIZZXcWCODAok/+bXX","tlshash":"07d2f11774e04a97cd707d3a93416d1c30a6c450baaca27f4c653feeb51d09968f2933","first_seen":"2025-10-21T03:51:56.400965Z","last_seen":"2026-04-02T10:01:19.642497Z","times_seen":389,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/images/shape-02.png","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.412Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /images/shape-02.png HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/styles/main.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=2628000\r\nstrict-transport-security: max-age=31536000;\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nvary: Accept-Encoding\r\ncontent-type: image/png\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\ncontent-length: 276\r\nserver: Caddy\r\netag: \"ddltux7wa1u47o\"\r\naccept-ranges: bytes\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":276,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 259 x 259, 4-bit colormap, non-interlaced","md5":"9edc85636b3c04e8825e4d75ee49f4f9","sha1":"678f5cae7eefd779c38d0b5a062f6f3a88693df6","sha256":"6afacb29b13eafebc237920ce8200dea928978569a65a73600e8562c992d9971","sha512":"755986d69d69d5687ec0c38c0cbb309cb851a4e20ec75f8e731892a406b8fb94a0325f5d1312209e71e9c3c85eb83b25db5d72c9c03820c1c8b117a51132f3b8","ssdeep":"","tlshash":"6ad05ec9daf0faf519255a55f1218199986c03e8703f416e93cb84382e62789d7853a3","first_seen":"2025-10-21T03:51:56.422169Z","last_seen":"2026-04-02T10:01:19.65735Z","times_seen":411,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/images/background-2.avif","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.414Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /images/background-2.avif HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/styles/main.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\nserver: Caddy\r\ncache-control: public, max-age=2628000\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\netag: \"ddltux7wa1u4cl5\"\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\ncontent-length: 16313\r\nstrict-transport-security: max-age=31536000;\r\nvary: Accept-Encoding\r\ncontent-type: image/avif\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16313,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"3cfe8d0bff1f59eec36c84b6916d12c7","sha1":"58ea66f373562c323da76d5b916e3882b75182f1","sha256":"b700c328b344cba6adad8e162d56b3ec5bac81faff29d76e40cfd03f95372487","sha512":"8b31e7abb8c04791c2118f01435fd63310de7d6e70627c80e4b7152f9ba1ec881c3700af540cce7d2d84e16378dc5c51517f1afa85cc65a73834f4de18f024cb","ssdeep":"384:N1tO+4aXZGYUW/T9Q6w6K/Cmt4pwzY6RrODYTXu:NnPBtb9QcOCmt/kTDme","tlshash":"6672c0a33322d048e25171b617cfa2e97e7f4e3660fb1c64bd6a26c5ce8344e1f641a5","first_seen":"2025-10-21T03:51:56.446042Z","last_seen":"2026-04-02T10:01:19.652687Z","times_seen":389,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-11T07:36:49.787Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nalt-svc: h3=\":443\"; ma=2592000\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=UTF-8\r\nstrict-transport-security: max-age=31536000;\r\nvary: Accept-Encoding\r\nvia: 0.0 Caddy\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\ndate: Sun, 11 Jan 2026 07:36:49 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"UIKit","description":"UIKit is the framework used for developing iOS applications.","website":"https://getuikit.com","common_platform_enumeration":"","icon":"UIKit.svg","categories":["UI frameworks"]}],"data":{"size":68923,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1707)","md5":"bf8f648704c79c15718f86a144089796","sha1":"e814718a148be7e9f236ab37553ecc5743b115c0","sha256":"b3f42043d844d1d0a7abd6fd7ffbc5ba464e0aa5b4660c07974dff537ed6df71","sha512":"fb482dd6ace39315c8ae71da7d16210dad08e9754594ffd278c21865941c09f4039ee207bfd80143fa068225be6852edaa931e30db6f113a533169d58ae54cec","ssdeep":"768:LbwvT5bZOPVYlicOY6N8ha/HWMJmQlIumw:LoZOdYlicOY6N8haeMIQlIumw","tlshash":"9d63f725e2f1212a419305c537e31a0f7fa9824bd7868069b7ac43f41f9bc9dca7366d","first_seen":"2026-01-11T07:37:18.035763Z","last_seen":"2026-01-11T07:37:18.035763Z","times_seen":1,"resource_available":false,"data":null}},"time_used":142,"timings":{"blocked":60,"dns":7,"connect":17,"send":0,"wait":22,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/styles/main.css","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /styles/main.css HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\ncontent-encoding: gzip\r\ncache-control: public, max-age=3600, stale-while-revalidate=2592000\r\nvary: Accept-Encoding\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 4055\r\nserver: Caddy\r\nx-frame-options: DENY\r\nstrict-transport-security: max-age=31536000;\r\nx-content-type-options: nosniff\r\netag: \"ddltux7yns99e4s-gzip\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":18316,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"0953aa50970255d0eb8f396cbe65f1a3","sha1":"dd47ac24bd1aa9cf67bf278566190a514a6a9d33","sha256":"4611d983a26b92a689a775597e121da36df0417d18c1275f5448838f7d151b88","sha512":"9166d141b279d3d4c5b4bfb072b619fce2bde98ecf348159c4a876c41c9a79aa805d96126aaf88696b94668ff8e3aede7f4de9e11980e7d584ee7ee4d09b636b","ssdeep":"192:ADf7LE0ko+BpS8qHjzAqbmppi48BXhNSq36VQVDXylYTt46YNi7CUVQykBXySvmX:YkhyzRu8OUODuxc0Dqm","tlshash":"4782216797a31945b00b846c2beba754336c4043960ece7d7f9e7348cf4a1e8d5a2b8d","first_seen":"2025-10-21T03:51:56.418504Z","last_seen":"2026-01-30T11:24:25.176954Z","times_seen":240,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@25.8.3/build/js/intlTelInput.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.063Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/intl-tel-input@25.8.3/build/js/intlTelInput.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 12976\r\ncf-ray: 9bc2bed0efd256ca-OSL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 25.8.3\r\nx-jsd-version-type: version\r\netag: W/\"871a-JROK+GPirWm7Ca9OkwCUSfLnXMs\"\r\ncontent-encoding: br\r\nx-served-by: cache-fra-eddf8230133-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 6606695\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=funjrxhkppFsBvtPYYr9gUTK2jPv4B%2BQyJybuxxmMWnF59wxVsOu5zVaCYy%2FVZGRNv3WHs71Mx8JpTdzFy9RNN2b0R1DakIb%2FlKhVsqv7tRLkMvSCZjh4eIPZqkSIuN5UB0%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":34586,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (18251)","md5":"7657299ef4e0a3abdc478c0b9d7075aa","sha1":"25138af863e2ad69bb09af4e93009449f2e75ccb","sha256":"8e184485db8b6a8a741dd831f7bae84644eedf8f0c371172e69721e1236a7cd1","sha512":"eb5e7ae63fb48ea7b543f7339625284b3cc5477b6c8be03667714ebab1eb7c493a1445bae46348d992a4477a2080634c532b16c7b6ae4102e1524e51ab142b6b","ssdeep":"768:U+h03XVqC/iPIqXpwJxsyysdjx2nmY249lHGIw:UiPIsy/tWHG","tlshash":"c0f2f9aeb3646637abfd82a270e54403ae6f79444604043d78bc8ede1399dd171f6b38","first_seen":"2025-10-21T03:51:56.40324Z","last_seen":"2026-04-02T10:01:19.649052Z","times_seen":387,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":1,"dns":1,"connect":1,"send":0,"wait":11,"receive":1,"ssl":10},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Noto+Color+Emoji\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"43:D3:3F:93:6C:4F:F7:67:58:9D:D5:48:20:4C:74:A2:69:DB:13:9F","sha256":"8C:DB:D2:85:E1:AB:12:7B:1D:5A:65:A7:EC:22:67:6F:B3:A6:65:01:28:29:FA:D2:3B:01:8D:10:7E:4D:09:52"}}},"request":{"raw":"GET /css2?family=Noto+Color+Emoji\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 11 Jan 2026 07:36:50 GMT\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8105,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1209)","md5":"771ee8054657fb87ffa95c369d47125c","sha1":"30cd188f099ee147a8935715ae5a6587f3b187b7","sha256":"b5ca1b1d65572bee8745573a2037028f3e1b351d16f1ae6591c30178ea2cb50f","sha512":"dcc5d270c80c565c03be98cf47efe018c1da96087647e04adc0af7f7972961f4d60667406ebceee0fa37b85c1f7539aad848420f485c011377ba04be4abe7cef","ssdeep":"96:qOEaFcOEaFKlgOEaFfwSer9hWlJ+OEaFs0B8mH+MIlnOEaFQAvUqH3BeOEaFvVNg:NR6Mr9OZ9R+4aqXwjkOPsFeOK/","tlshash":"8df1ef684816cb48f9533ca743df1e25f93d14807910cd6f5afa7b53aeca4a6858db0c","first_seen":"2026-01-07T08:08:44.651963Z","last_seen":"2026-02-17T14:44:10.112412Z","times_seen":890,"resource_available":false,"data":null}},"time_used":348,"timings":{"blocked":153,"dns":1,"connect":14,"send":0,"wait":35,"receive":0,"ssl":142},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/styles/uikit.min.css","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.057Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /styles/uikit.min.css HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\nserver: Caddy\r\nstrict-transport-security: max-age=31536000;\r\netag: \"ddltux7yns99gtw-gzip\"\r\ncontent-type: text/css; charset=utf-8\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\ncache-control: public, max-age=3600, stale-while-revalidate=2592000\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":21812,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (21810), with no line terminators","md5":"567a4fb6fbe8f44d9c063b797faa75fe","sha1":"da3b6560c912170fd4464c5fe75fcc3c44d0445c","sha256":"08fae18a093d29e7a1fb3ecff2268fbef7ed37be7a93168528357b579205cedd","sha512":"5fe76d61f3338d447e442178edfad11f4bda9198852aed0b13e364915c09ef383b1aac386979a19024791ebbe7e4c19b649a4c46757e7abf4f2289850a684d25","ssdeep":"384:D8Z2Rak8G3S6ixiXC8vZ/vu6cror9ACQgvm:4ZTk8GbixiXC8vZ/vu6cror9ACQgvm","tlshash":"eea23348a24478fecd33894b619472fceb995d12b3b61efbe6ae52824b426c70174918","first_seen":"2025-10-21T03:51:56.416779Z","last_seen":"2026-04-02T10:01:19.645248Z","times_seen":389,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/images/background-4.avif","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /images/background-4.avif HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/styles/main.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\nserver: Caddy\r\nstrict-transport-security: max-age=31536000;\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\netag: \"ddltux7wa1u41ah5\"\r\ncontent-length: 60233\r\ncache-control: public, max-age=2628000\r\nx-frame-options: DENY\r\ncontent-type: image/avif\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":60233,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"cdb0ec10556444a17569d8e5d0e0ff96","sha1":"ce14f4961c02c1fa6ff750981e2d6e9176ce51e4","sha256":"8624f05152f3ce27b3c2a596d7c93bf39f1208b0246dff5b073b94f747cb95ae","sha512":"5ff6812dd4009f70e7eb631f8a32f9e68c0e07835503c5b4bb00cc81f001f204ca29c0f6aa59e0222dc3fd59125fa7baedf99512f557f0eb22a70d9f135a422f","ssdeep":"1536:UrA18Z6po8yFG1+2mSWd6xtxIOvUzWGVPQPDXi7jX:00a8RBBWMxECQiPDWL","tlshash":"7b4312babd302a7d6b978bafc57343051833d12bcc76fa7139d11ac0a091a928fd5b50","first_seen":"2025-10-21T03:51:56.44395Z","last_seen":"2026-04-02T10:01:19.661007Z","times_seen":389,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":18,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/notocoloremoji/v38/Yq6P-KqIXTD0t4D9z1ESnKM3-HpFabsE4tq3luCC7p-aXxcn.0.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.323Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/notocoloremoji/v38/Yq6P-KqIXTD0t4D9z1ESnKM3-HpFabsE4tq3luCC7p-aXxcn.0.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://aere-luxeron.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 706276\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 10 Jan 2026 18:24:25 GMT\r\nexpires: Sun, 10 Jan 2027 18:24:25 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 06 Jan 2026 19:10:52 GMT\r\ncontent-type: font/woff2\r\nage: 47545\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":706276,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 706276, version 1.0","md5":"bb546224fba847bc0428bc8c0043c3a5","sha1":"6a571183d91953b7d8266de05aa62276825f4067","sha256":"b50ad80f3d3c28349babf021ca967656213c1da614a923b4ec1bda692a1e55e2","sha512":"58af971bc48e888d322412888df04496defa968f1ec5d5de8030ced7abab5a8d4e6dc6a755d56db32fa1ef1d10e2d3634e8d465048732c28ee11629f694ecf15","ssdeep":"12288:I+/lHoBQosSKbIVP4aa8PniwS9HIafnmn0O8zwpJ9FsKT/ev8Sbl+:IaKRNKbIVAwP6HIonm0O8zWLFsW/ev83","tlshash":"62e4230b8c643623e39e28a34572b7e57bfe744371889680ea9e0765ff71a4434989c3","first_seen":"2026-01-07T08:08:44.647676Z","last_seen":"2026-02-17T03:02:55.544519Z","times_seen":181,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":80,"dns":0,"connect":7,"send":0,"wait":12,"receive":59,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/images/cropped-Favicon-32x32.png","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /images/cropped-Favicon-32x32.png HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=2628000\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\netag: \"ddltux7wa1u4gx\"\r\ncontent-type: image/png\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\naccept-ranges: bytes\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\nserver: Caddy\r\nx-frame-options: DENY\r\nstrict-transport-security: max-age=31536000;\r\ncontent-length: 609\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":609,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"f17b2d52496a7b6283c91478bcb1d51f","sha1":"c497b97a94a45f2de7310d4722a10c6c54abfacc","sha256":"06a0640bb63a5e1ffb8e6204b8bc4b267997a6a5c0834d2e54cdc5cfe5c2d3c2","sha512":"22a93460f5dae42f5005a67ce62f2f46ab640c060b14a07819a84cc3bba6bb8a12a7cffbbe751a4f24fe32e27144739c7f4bd310d5513776d462f3d0637a08eb","ssdeep":"","tlshash":"3df062dd15d0280942e6e6f2db4f0467f887ffa102ca105cc1a07ce9f1868a174fab05","first_seen":"2025-03-03T22:55:46.45545Z","last_seen":"2026-04-02T10:01:19.651681Z","times_seen":3275,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@25.8.3/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/intl-tel-input@25.8.3/build/js/utils.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://aere-luxeron.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 62752\r\ncf-ray: 9bc2bed4b85956a9-OSL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 25.8.3\r\nx-jsd-version-type: version\r\netag: W/\"41021-9Z/tg3G+ahVG9uyMPobUXINUaeY\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-etou8220121-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 6963593\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=T3XmwrrAwi9qvZFfyvtQCrNbwKHPwcWf7WcMxuGJgk7KPFPQxiArWEjT5hRc%2BNq3vrFBJWUvA2fHI2fy0t8tH%2Fi62ZGdlIW7RAsU27GooyghJc0%2B0qJFNZlMLaP6yWvqDeU%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":266273,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1903)","md5":"9bee4a74ffbbe72187a236bea356b2b2","sha1":"f59fed8371be6a1546f6ec8c3e86d45c835469e6","sha256":"b606e1dd5ec0876b3ad78b251b9cb83459d99e1dc4b660466383a0377a0a7fb8","sha512":"0fef840d5afb8ad8d0b9834bd52c14484c02539d74d1e611a5381a8da10cd0df66bed6b1bb2d65eb872a87708161e03f0e26ca0c66d9c2294f74bbe7216fffb4","ssdeep":"3072:9klM0tDKjFs3OwPss3MwP5y1APtA2x2MfMPihvi8EA4JhNyf4L9jo/QKWV+lumVu:9klMmDO11Ix2MfMPig7ou","tlshash":"a744f0ebd63c973ba1d87b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","first_seen":"2025-10-21T03:51:56.414562Z","last_seen":"2026-04-02T10:01:19.652236Z","times_seen":396,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aere-luxeron.net/images/003.avif","fqdn":"aere-luxeron.net","domain":"aere-luxeron.net","tld":"net"},"ip":{"addr":"185.107.44.123","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aere-luxeron.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 21 Dec 2025 20:41:56 GMT","end":"Sat, 21 Mar 2026 20:41:55 GMT"},"fingerprint":{"sha1":"A3:09:65:2F:33:F7:04:3D:CD:B1:B3:F4:5E:53:F8:29:62:BC:52:99","sha256":"04:3D:95:03:48:D8:59:F5:82:D8:6B:55:74:AD:1B:AF:A7:21:B4:6B:62:C4:C6:96:E2:C1:1E:8B:2D:51:79:2B"}}},"request":{"raw":"GET /images/003.avif HTTP/1.1\r\nHost: aere-luxeron.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aere-luxeron.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\netag: \"ddltux7wa1u4c02\"\r\ncontent-type: image/avif\r\nlast-modified: Sat, 18 Oct 2025 23:13:24 GMT\r\ncontent-length: 15554\r\nstrict-transport-security: max-age=31536000;\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\ndate: Sun, 11 Jan 2026 07:36:50 GMT\r\nserver: Caddy\r\ncache-control: public, max-age=2628000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":15554,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"e6009bcbcd96356eb1a28a8af5c7db10","sha1":"7503dd022f2d2666be2ec20fc3701fa58284f079","sha256":"ddf95beaa3052a04d92b996fa5c3522af31cb9aef367a6d9af39e90f2026f035","sha512":"b49d94fa6ded572467743983f1a5637e93fdfa7d70b80eb5bf2a3e3b6341f0699b4cfa049c00269b2c57463a75cc223c3411eb2130b49ec796a3c5169d5f21d4","ssdeep":"384:PUO3if3cksNQl1Pc5oz7ile7XbUmHDNsiZvQff04:MO3u/salz7i6IIDNfZ27","tlshash":"b162c0f8e541a5ceee8ada3c1d19b616260c63641b3575b0390df72c8c96fe49d40ef8","first_seen":"2025-10-21T03:51:56.431567Z","last_seen":"2026-04-02T10:01:19.656718Z","times_seen":389,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-11","alert":"Sinkholed","trigger":"aere-luxeron.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"amos-mamaya.fun/geo","fqdn":"amos-mamaya.fun","domain":"amos-mamaya.fun","tld":"fun"},"ip":{"addr":"198.211.98.91","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aere-luxeron.net/","date":"2026-01-11T07:36:50.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"amos-mamaya.fun","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Dec 2025 22:57:09 GMT","end":"Thu, 19 Mar 2026 22:57:08 GMT"},"fingerprint":{"sha1":"A2:AF:60:31:A8:90:AD:FD:4A:A7:7E:08:12:2F:4F:DC:F1:1B:66:C1","sha256":"A9:7D:A0:9D:D4:FA:E1:9E:3F:74:1C:2F:1D:5C:EC:6F:A2:F7:A8:4C:59:03:40:C5:C1:0D:73:E1:30:1A:DC:14"}}},"request":{"raw":"GET /geo HTTP/1.1\r\nHost: amos-mamaya.fun\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aere-luxeron.net/\r\nOrigin: https://aere-luxeron.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 11 Jan 2026 07:36:50 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nAccess-Control-Allow-Methods: GET, POST\r\nAccess-Control-Allow-Origin: *\r\nContent-Length: 63\r\nContent-Type: text/plain; charset=utf-8\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":63,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"JSON text data","md5":"334c666989ad91c846ab39bdf7d14b7b","sha1":"cac16c3ac21b7f2a15e1f42133d09c343774bf3d","sha256":"8b8d050c0f2fe1918f6ac77bd3300080a7a7286e72718aa8837b1be844f7bf16","sha512":"c522d2adeda58a728ec6c892d3b7eecd59e4ad7faff4be59eca73d52d9d1b8f61a998ad88afc4cbcbfd496016c55d5c3a8a5c718409fe64833626349502a0b2a","ssdeep":"","tlshash":"85a0021c00750f4ac8f6d6c8297d725322da420dd359a6134cc527e4b21c4fd5415552","first_seen":"2026-01-08T05:10:19.318587Z","last_seen":"2026-04-02T10:01:19.658335Z","times_seen":299,"resource_available":false,"data":null}},"time_used":635,"timings":{"blocked":265,"dns":66,"connect":97,"send":0,"wait":98,"receive":1,"ssl":103},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}