{"report_id":"10dc3a08-75a9-4652-abb3-d2359788c3b0","version":6,"status":"done","tags":[],"date":"2026-01-02T14:47:34Z","url":{"schema":"http","addr":"r.linksprf.com/v1/redirect?type=url\u0026url=mentscom.com/\u0026api_key=b1d6399e1c65361a866d3a6f8bc11b8c\u0026site_id=c4bc9a20948142d2a6d2f5e6b7953f32\u0026dch=feed\u0026ad_t=advertiser\u0026yk_tag=1a029kf9g","fqdn":"r.linksprf.com","domain":"linksprf.com","tld":"com"},"ip":{"addr":"63.33.119.172","port":0,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"final":{"url":{"schema":"https","addr":"globallstore24.com/","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"title":"Security Check","dom":{"size":5404,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2079)","md5":"b7ddc3244f0fe58b33ae9c77115776ba","sha1":"67bd7ac28a30dcb26f4a332394dbea99fb897eeb","sha256":"daa3d288b85ed19c8ff8b117d2e5a6111bc4180132ee81f909a728aad03acd58","sha512":"f538090e148bdeaeaaa54ea5ec80d44c2f9d56ba6d58fbdbde151725885d6752c796962b02db7392b36d0cff4ac1dd0634218d4bc6d1cd2296fb2e925c79d228","ssdeep":"96:YNu0pwebOcq9tBAWAACBPlQXn1OwiBH3vzt:YLI9tR1OwiBHrt","tlshash":"cab18621465d6c170017219470b68b9db36bc223eb178939baff3195d7cdeec852b2e2","dom_hash":"domhashce78ba36a7b82dd8035bd93eaeefd311","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"r.linksprf.com/v1/redirect?type=url\u0026url=mentscom.com/\u0026api_key=b1d6399e1c65361a866d3a6f8bc11b8c\u0026site_id=c4bc9a20948142d2a6d2f5e6b7953f32\u0026dch=feed\u0026ad_t=advertiser\u0026yk_tag=1a029kf9g","fqdn":"r.linksprf.com","domain":"linksprf.com","tld":"com"},"ip":{"addr":"63.33.119.172","port":0,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-06T14:47:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":4}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-02T14:47:12Z","timestamp":1767365232,"ip_dst":{"addr":"54.240.174.76","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.23","port":38858,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed FingerprintJS Domain (openfpcdn .io in TLS SNI)","source":"{\"timestamp\":\"2026-01-02T14:47:12.561117+0000\",\"flow_id\":653710572159138,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.23\",\"src_port\":38858,\"dest_ip\":\"54.240.174.76\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2049251,\"rev\":1,\"signature\":\"ET INFO Observed FingerprintJS Domain (openfpcdn .io in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2023_11_17\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_11_17\"]}},\"tls\":{\"sni\":\"openfpcdn.io\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":914,\"bytes_toclient\":4622,\"start\":\"2026-01-02T14:47:12.557218+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"mentscom.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"mentscom.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"globallstore24.com","ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"domain_registered":"2025-09-30","domain_rank":0,"first_seen":"2025-09-30T17:18:31.343981Z","last_seen":"2025-12-28T10:32:43.238106Z","alert_count":22,"request_count":11,"received_data":222549,"sent_data":6147,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery:3.3.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"r.linksprf.com","ip":{"addr":"63.33.119.172","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"domain_registered":"2023-09-05","domain_rank":963970,"first_seen":"2023-09-14T15:12:25Z","last_seen":"2025-12-29T20:53:40.898029Z","alert_count":0,"request_count":1,"received_data":2113,"sent_data":645,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"openfpcdn.io","ip":{"addr":"54.240.174.76","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2021-11-10","domain_rank":9255,"first_seen":"2021-11-11T13:02:44Z","last_seen":"2025-12-29T13:11:43.305884Z","alert_count":0,"request_count":1,"received_data":15896,"sent_data":430,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"mentscom.com","ip":{"addr":"185.55.242.150","port":80,"asn":35042,"as":"Layer7 Networks GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2025-10-30","domain_rank":0,"first_seen":"2025-10-31T00:26:00.065003Z","last_seen":"2025-12-28T10:32:43.227149Z","alert_count":4,"request_count":2,"received_data":2613,"sent_data":746,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server:2","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"globallstore24.com/js/check.min.js?v=1767023653","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"dbdb97c2f91c01502910b22e27fc0b24","sha1":"5f51141d704b71675da200e9593c9b004700cee3","sha256":"41a7a2af77c7c8a201bcf46c4a09f4b0eb69add9c988c7cb34e9c3ad9aec0a2d","sha512":"d04d4e495f6c915d28ec218a77a47cc52f41d36c2ae675f5b3722d33a59f7b4c12cc2a63493eb10e27b364e145bb52e1db16384d6f923055837b8cfa1326f886","ssdeep":"192:nq0gFASWUZlkYZKim26fYOClK3ZKjz1sntc2Q6OrF+SMGiLbb:nDgFVlnk26gOOzA22Q6OR+g+bb","tlshash":"15623501f9e16817c39f6f52b327e7e2e81938ce79105c8fb651f8a0edca9316982471","size":15085,"data":"","first_seen":"2023-09-16T06:20:58Z","last_seen":"2026-04-03T02:50:13.212562Z","times_seen":873,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/themes/common/js/jquery-3.3.1.min.js?v=1767023715","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86927,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-06T04:55:56.993392Z","times_seen":118547,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/js/omgrd.min.js?v=1767023653","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":false,"md5":"f8642c37023dc6b980cadeca382613d9","sha1":"ece8cd68d208d5cc078ae06ce390652d2621ff84","sha256":"f5b3e0b1781f3fbbec437303884a58af2cefd4c6a66eaf0eb66f61a57be1d7be","sha512":"7a288db4ba123a3b1ceaafb4e8fb3915231d211c48ab1963fe7ffb9f4d53f58148c069008cb57c2c2cfc204f991dfdd179f685bb606ebd75152e5a4122a5acaf","ssdeep":"192:8ly1HHIQn9xhhz5r1rzp4o1adRFwMcSwIjOtdm1P1whiEwaIDlvNOTu:8ly1nIOzJ1rzuo1aztw43gTu","tlshash":"d362881c6ed029ba57620a2a2ee658ece60a0c4d7a450059f4137cffded4267bde3133","size":14530,"data":"","first_seen":"2023-06-17T22:38:20Z","last_seen":"2026-04-03T02:50:13.215255Z","times_seen":873,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"mentscom.com/","fqdn":"mentscom.com","domain":"mentscom.com","tld":"com"},"ip":{"addr":"185.55.242.150","port":80,"asn":35042,"as":"Layer7 Networks GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"0d97f1faa51b8beda80c3c9b5aa422cc","sha1":"e30b29dea840e6c64d6bd158e291daf868f6db09","sha256":"0d255fc44f78f1722a32ce9580986a72788b006a9e7a94e13e2f940566893775","sha512":"bf51572baba5fac0edb20c60b5fa5980e8cbd0ae416decbbd4eee04a572b4483fb672b99f3bfee6ab48820ecdabb5816f762037845a449ad1a577d1124575ea2","ssdeep":"","tlshash":"3a2100670597016f6f97005e376bb6ab70a174272449f409b09e8f2d1fd0e21d8b35dc","size":1223,"data":"","first_seen":"2025-09-30T17:18:37.092435Z","last_seen":"2026-01-17T06:32:54.224732Z","times_seen":171,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"openfpcdn.io/botd/v1","fqdn":"openfpcdn.io","domain":"openfpcdn.io","tld":"io"},"ip":{"addr":"54.240.174.76","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"234a8c1c15df9b03c65e9e14c82fc872","sha1":"e5ca36727846aede7dfbc07e88b2b025eb0cae90","sha256":"29cb26e06f2a4a877f1134a46480d9b78f8b6e0e6f9b0fe67e34307c312b5a89","sha512":"9aeee4e620de49e0ed303917e9afc1806da0815896bc5feef3add9f89e0429678bfe0d9f0ad3fc940bd8e48f7e235e5c8d23463407c42b6fbc740b50c43a0b53","ssdeep":"384:/yKlnAKXPD899vDMKXExXI7EhgKkVGVXvPGt7MD:hfPD899vDMKHLVGVXvPGNA","tlshash":"bd62a4cef996b07553bb34a1503f2206b2362655745e84a0cf2bc2c16879e5ac23bf6d","size":15196,"data":"","first_seen":"2024-04-04T09:37:24Z","last_seen":"2026-04-06T00:47:40.43943Z","times_seen":12528,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"cbc74b15a730015452d646bdd6846633","sha1":"c0a660f3c41947d811dad368e61291838a5c82da","sha256":"b60627970b74ac466aba716ec668266b092aba4df563093846f6dd7a3f152d05","sha512":"b1fa5efa0b475a34719223f57c18b29f2b2e227558208ff964a71575d89cb449a6b56959227c87d0daa705d46fbd91dad0ed42486e74c4cc2d32bafecd8ef45b","ssdeep":"","tlshash":"ade0abc0e7cf6c630d6d101c0b2f99cc905cf273dd684876dc0a2312936041acf11ba4","size":419,"data":"","first_seen":"2025-04-24T14:33:05.532202Z","last_seen":"2026-04-03T02:50:13.218931Z","times_seen":682,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"globallstore24.com/","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-02T14:47:13.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:13 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nSet-Cookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415; expires=Mon, 12 Jan 2026 14:47:13 GMT; Max-Age=864000; path=/\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery:3.3.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":3562,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"547f5e9bec32c666a00e93647bf1c8c0","sha1":"0fee2b10145ae825c60a83f44181a88f1b194769","sha256":"100bafafa0ab59eb50db494cc202be0472fef2e1706f30fac64857e4a4001a14","sha512":"c026f75dca79ae09874a9dcb97095ff31797c1d8f1a5aafd2f5c9b349cf54f6aae680fa8dabb0b7dddaea905f6b44e6c76e13941ca9ce9d7f0a29cdb9079d841","ssdeep":"","tlshash":"11714312ae9eec33120311e661b9574de29f5e32e753c572b6ff4190e350f98c91718a","first_seen":"2025-12-30T07:53:54.131412Z","last_seen":"2026-01-06T14:21:55.578093Z","times_seen":29,"resource_available":false,"data":null}},"time_used":338,"timings":{"blocked":83,"dns":33,"connect":14,"send":0,"wait":171,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/js/check.min.js?v=1767023653","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /js/check.min.js?v=1767023653 HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/\r\nCookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:54:13 GMT\r\nETag: W/\"6952a425-3aed\"\r\nExpires: Sat, 02 Jan 2027 04:18:25 GMT\r\nCache-Control: max-age=31536000, public, public\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15085,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (15085), with no line terminators","md5":"dbdb97c2f91c01502910b22e27fc0b24","sha1":"5f51141d704b71675da200e9593c9b004700cee3","sha256":"41a7a2af77c7c8a201bcf46c4a09f4b0eb69add9c988c7cb34e9c3ad9aec0a2d","sha512":"d04d4e495f6c915d28ec218a77a47cc52f41d36c2ae675f5b3722d33a59f7b4c12cc2a63493eb10e27b364e145bb52e1db16384d6f923055837b8cfa1326f886","ssdeep":"192:nq0gFASWUZlkYZKim26fYOClK3ZKjz1sntc2Q6OrF+SMGiLbb:nDgFVlnk26gOOzA22Q6OR+g+bb","tlshash":"15623501f9e16817c39f6f52b327e7e2e81938ce79105c8fb651f8a0edca9316982471","first_seen":"2023-09-16T06:20:58Z","last_seen":"2026-04-03T02:50:13.212562Z","times_seen":873,"resource_available":true,"data":null}},"time_used":119,"timings":{"blocked":49,"dns":1,"connect":18,"send":0,"wait":14,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/user-verification/","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.244Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"POST /user-verification/ HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 10\r\nOrigin: https://globallstore24.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/\r\nCookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":10,"data":"type=check"}},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nSet-Cookie: CGISID=cc2d4740b77ca2bfff45f2ce198f76e75beecec7e9879d14759c256704e66d; expires=Mon, 12 Jan 2026 14:47:14 GMT; Max-Age=864000; path=/\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"624f8e41fd7a95854660bfe31cb0ac3e","sha1":"45cf60ee80d3cdf3bbb4314b17d89841cd173b66","sha256":"ba0b925b2ea4c2f40cb949c350915a5b1434ef7c9380701838c9850ea4879875","sha512":"22a9095a265fdd6a9ad11a031f6bb75ee6277754f3c4c8d87e9c1f308553ef3dcf7a4ba6a1f53b81e3d3f0bd5c2e74c719dbb2fa00bb4de6c30c9713aa29391e","ssdeep":"","tlshash":"f66000c03c000000cc00c0c3300000000c003f00000000030cc03003c0c003030c0c30","first_seen":"2023-09-16T06:20:58Z","last_seen":"2026-04-03T02:50:13.216286Z","times_seen":861,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":102,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/js/omgrd.min.js?v=1767023653","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.119Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /js/omgrd.min.js?v=1767023653 HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/\r\nCookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:54:13 GMT\r\nETag: W/\"6952a425-38c2\"\r\nExpires: Sat, 02 Jan 2027 04:30:57 GMT\r\nCache-Control: max-age=31536000, public, public\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14530,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (14528), with no line terminators","md5":"f8642c37023dc6b980cadeca382613d9","sha1":"ece8cd68d208d5cc078ae06ce390652d2621ff84","sha256":"f5b3e0b1781f3fbbec437303884a58af2cefd4c6a66eaf0eb66f61a57be1d7be","sha512":"7a288db4ba123a3b1ceaafb4e8fb3915231d211c48ab1963fe7ffb9f4d53f58148c069008cb57c2c2cfc204f991dfdd179f685bb606ebd75152e5a4122a5acaf","ssdeep":"192:8ly1HHIQn9xhhz5r1rzp4o1adRFwMcSwIjOtdm1P1whiEwaIDlvNOTu:8ly1nIOzJ1rzuo1aztw43gTu","tlshash":"d362881c6ed029ba57620a2a2ee658ece60a0c4d7a450059f4137cffded4267bde3133","first_seen":"2023-06-17T22:38:20Z","last_seen":"2026-04-03T02:50:13.215255Z","times_seen":873,"resource_available":true,"data":null}},"time_used":148,"timings":{"blocked":48,"dns":1,"connect":17,"send":0,"wait":44,"receive":1,"ssl":34},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/img/icon-check.svg","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:16.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /img/icon-check.svg HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/themes/common/css/checking.min.css?v=1767023715\r\nCookie: CGISID=cc2d4740b77ca2bfff45f2ce198f76e75beecec7e9879d14759c256704e66d\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:16 GMT\r\nContent-Type: image/svg+xml\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:54:12 GMT\r\nETag: W/\"6952a424-38b\"\r\nExpires: Sat, 03 Jan 2026 03:53:40 GMT\r\nCache-Control: max-age=86400, public, public\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":907,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3f03a8bf472dfa36e6521da93da0b512","sha1":"68649ff75b674752184b1a711ac00f02164ea3f7","sha256":"a46b9e16fdb4ec63902f7de4814add0b738e2896691f084766f900f310f013fa","sha512":"cf87990e78e1d9d0c019d410011c9e71db88f058ccfaf81f8defef70ba623fc5c0e77313861ddf8774302f90a09a423fa392442be79781fd27d3d56141db1b94","ssdeep":"","tlshash":"731112d423769861e205ca29f7f9b50c4d3830c75ad50115758d1815bb382de9fbf348","first_seen":"2023-05-21T15:40:04Z","last_seen":"2026-04-03T02:50:13.217185Z","times_seen":860,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":79,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/themes/506/assets/img/favicon.ico","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /themes/506/assets/img/favicon.ico HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/\r\nCookie: CGISID=cc2d4740b77ca2bfff45f2ce198f76e75beecec7e9879d14759c256704e66d\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 21822\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:55:15 GMT\r\nETag: \"6952a463-553e\"\r\nExpires: Sat, 03 Jan 2026 09:58:29 GMT\r\nCache-Control: max-age=86400, public, public\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21822,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"d48da7d7caa19c8546b4e0ae854b9a0c","sha1":"d780395316a595d2692d478d708aeab2ede95322","sha256":"b964ba4aacbd02615978663ee33b6d313d4af0c7d5253e97cc3104eea14549f2","sha512":"16e2caaf7df435b6135c700c97a88c9bcb65a7ba78653e254f29ee81ffe6030f286318e17d9747d22ea8fcfd74f8e1fc4e5e5956b1e3931d571780a8fe5a150b","ssdeep":"192:KJUUoJDEXLUSiW5vPwEpyFybfEF3H31E2XrBT9C5IIIbLUSiW5vPh:KJ/oCXYSidOyFy4E2Xrh9C5IIIbYSio","tlshash":"e3a220097967e42ac4c4c734c171f27e71e0fdc63926939638c07edb3ea86459ad52e8","first_seen":"2023-05-02T01:43:44Z","last_seen":"2026-04-03T02:50:13.213698Z","times_seen":830,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"r.linksprf.com/v1/redirect?type=url\u0026url=mentscom.com/\u0026api_key=b1d6399e1c65361a866d3a6f8bc11b8c\u0026site_id=c4bc9a20948142d2a6d2f5e6b7953f32\u0026dch=feed\u0026ad_t=advertiser\u0026yk_tag=1a029kf9g","fqdn":"r.linksprf.com","domain":"linksprf.com","tld":"com"},"ip":{"addr":"63.33.119.172","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-02T14:47:11.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"linksprf.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 13 Nov 2025 02:27:25 GMT","end":"Wed, 11 Feb 2026 02:27:24 GMT"},"fingerprint":{"sha1":"B1:03:CC:B9:93:32:B8:D6:CD:63:AB:21:5D:5C:AC:6E:25:5D:64:3F","sha256":"CA:B6:83:F3:45:14:9E:3F:F6:4D:D7:95:3D:FB:7B:0C:A7:04:58:D9:2E:56:01:2F:F7:CF:A3:08:30:B1:D8:30"}}},"request":{"raw":"GET /v1/redirect?type=url\u0026url=mentscom.com/\u0026api_key=b1d6399e1c65361a866d3a6f8bc11b8c\u0026site_id=c4bc9a20948142d2a6d2f5e6b7953f32\u0026dch=feed\u0026ad_t=advertiser\u0026yk_tag=1a029kf9g HTTP/1.1\r\nHost: r.linksprf.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Fri, 02 Jan 2026 14:47:11 GMT\r\ncontent-length: 0\r\nlocation: http://mentscom.com/\r\nset-cookie: ykuid=2f39ce8bb08f489da752aa860adc2477; Path=/; Secure; Domain=.linksprf.com; Max-Age=31536000; SameSite=None\nJSESSIONID=DDB76777BFC9E1C01C1CD01E659CBCBE; Path=/; HttpOnly\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1736,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T05:11:47.473796Z","times_seen":13406904,"resource_available":true,"data":null}},"time_used":233,"timings":{"blocked":78,"dns":1,"connect":33,"send":0,"wait":76,"receive":0,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"openfpcdn.io/botd/v1","fqdn":"openfpcdn.io","domain":"openfpcdn.io","tld":"io"},"ip":{"addr":"54.240.174.76","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://mentscom.com/","date":"2026-01-02T14:47:12.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"openfpcdn.io","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 29 Oct 2025 00:00:00 GMT","end":"Fri, 27 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"7E:88:9B:B1:7C:CB:A7:14:49:10:D6:FC:A3:64:23:03:9F:CC:6A:B0","sha256":"6A:98:96:56:64:4A:39:7A:9F:12:CE:F5:99:D3:C8:24:ED:17:AF:92:3F:E3:AC:C7:7D:1F:2D:74:46:2F:95:D9"}}},"request":{"raw":"GET /botd/v1 HTTP/1.1\r\nHost: openfpcdn.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: http://mentscom.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://mentscom.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: CloudFront\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\ndate: Fri, 02 Jan 2026 13:06:10 GMT\r\ncache-control: public, max-age=594655, s-maxage=10386\r\netag: W/\"5co2cnhGrt59+8B+iLKwJesMrpA\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: xhPpGCxUkSjje_6ySPWJsOPA6HlbpkuWA-AYBvMT7XQIJ3HstfNvjQ==\r\nage: 6062\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15196,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (15005)","md5":"234a8c1c15df9b03c65e9e14c82fc872","sha1":"e5ca36727846aede7dfbc07e88b2b025eb0cae90","sha256":"29cb26e06f2a4a877f1134a46480d9b78f8b6e0e6f9b0fe67e34307c312b5a89","sha512":"9aeee4e620de49e0ed303917e9afc1806da0815896bc5feef3add9f89e0429678bfe0d9f0ad3fc940bd8e48f7e235e5c8d23463407c42b6fbc740b50c43a0b53","ssdeep":"384:/yKlnAKXPD899vDMKXExXI7EhgKkVGVXvPGt7MD:hfPD899vDMKHLVGVXvPGNA","tlshash":"bd62a4cef996b07553bb34a1503f2206b2362655745e84a0cf2bc2c16879e5ac23bf6d","first_seen":"2024-04-04T09:37:24Z","last_seen":"2026-04-06T00:47:40.43943Z","times_seen":12528,"resource_available":true,"data":null}},"time_used":93,"timings":{"blocked":44,"dns":36,"connect":1,"send":0,"wait":2,"receive":0,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"mentscom.com/favicon.ico","fqdn":"mentscom.com","domain":"mentscom.com","tld":"com"},"ip":{"addr":"185.55.242.150","port":80,"asn":35042,"as":"Layer7 Networks GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://mentscom.com/","date":"2026-01-02T14:47:12.611Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: mentscom.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://mentscom.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Fri, 02 Jan 2026 14:47:15 GMT\r\nServer: Apache/2\r\nContent-Length: 315\r\nKeep-Alive: timeout=2, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server:2","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":315,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"a34ac19f4afae63adc5d2f7bc970c07f","sha1":"a82190fc530c265aa40a045c21770d967f4767b8","sha256":"d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3","sha512":"42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765","ssdeep":"","tlshash":"b0e0e75f41473347402252907dc110d1d505236b797161fd3d85b4ab501dc3dc99f7dc","first_seen":"2023-03-07T01:02:33Z","last_seen":"2026-04-06T05:01:45.400296Z","times_seen":143809,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"mentscom.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"mentscom.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/themes/common/css/checking.min.css?v=1767023715","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /themes/common/css/checking.min.css?v=1767023715 HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/\r\nCookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:55:15 GMT\r\nETag: W/\"6952a463-1b8e\"\r\nExpires: Sat, 02 Jan 2027 04:19:28 GMT\r\nCache-Control: max-age=31536000, public, public\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7054,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (7054), with no line terminators","md5":"6a06f768867f614fcf089b09e42229a5","sha1":"024427deeae319540dd967a5c129385722295557","sha256":"1bdfa74184cd54a76df6c1b09a6ef448f751cd7b3981091a7ccbe048bdd6b1c5","sha512":"476e39c0f93d21f971c435d09c66f7e33e7145111a319fb718549f5f46e796ccbb8dc98ee978bd758e8a6c11281a23c012e347cb66c044b39abaf84fe32dc583","ssdeep":"96:QcnlJ59DjGC1NkVq++BntR2Hk7pXOcDQucmnVfQ:Nlf9Dj91NkVq++BntckJxDQucC6","tlshash":"0be1311719513b3f6017ada146cc835676b9c563ab422fff29e1a470cb8b2a70137e4e","first_seen":"2023-06-17T22:38:20Z","last_seen":"2026-04-03T02:50:13.210886Z","times_seen":873,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/img/icon-loading-white.png","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /img/icon-loading-white.png HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/themes/common/css/checking.min.css?v=1767023715\r\nCookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 2298\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:54:12 GMT\r\nETag: \"6952a424-8fa\"\r\nExpires: Sat, 03 Jan 2026 08:27:32 GMT\r\nCache-Control: max-age=86400, public, public\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2298,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, interlaced","md5":"b472e76889226a02dfc44e43fe2bbb02","sha1":"fe89e773206a3f904c28363c405c0dd97eb3a530","sha256":"91287e5ed0f61955da9df08e382552661fdaeb4962a6f1de229795f4ea36ade0","sha512":"35db131da425f877c7c918adc2528c509de53da103ad3118eba1fc65e4f7842835487b1aad8de80fc62ee004a60722f8362b1f34df0036cef676e8424fd98465","ssdeep":"","tlshash":"15414bce7fac3e7eb4c30eb82f215b118489702f73e44542751e876bd71462060f825a","first_seen":"2023-05-02T01:43:44Z","last_seen":"2026-04-03T02:50:13.215778Z","times_seen":873,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"mentscom.com/","fqdn":"mentscom.com","domain":"mentscom.com","tld":"com"},"ip":{"addr":"185.55.242.150","port":80,"asn":35042,"as":"Layer7 Networks GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-02T14:47:11.880Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: mentscom.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 02 Jan 2026 14:47:15 GMT\r\nServer: Apache/2\r\nUpgrade: h2,h2c\r\nConnection: Upgrade, Keep-Alive\r\nLast-Modified: Tue, 30 Sep 2025 11:01:01 GMT\r\nETag: \"6c8-64002aadd3540-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\nContent-Length: 684\r\nKeep-Alive: timeout=2, max=100\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1736,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"d90efb7199fc45a0c460710b1d91d0f6","sha1":"44e55a0f54852d4f9038e6edbce9dbe4b98c89a1","sha256":"9a57c3e3d510298e5e3540c1e7951c7c76b522d83497b0213e1cd4cc1d7c0f36","sha512":"0e0f58749b9fbb0f2935b61869d15b66f911c34bf6a01263e8d896677f630e14b624d06a196613e87d92889d6f825474c6dfa1feae4922f16b24e842c014da71","ssdeep":"","tlshash":"e13123574ac5045f6a770138f7b1f2a7f4a225231545e118b09dab3a1ff0e40c8a3ac8","first_seen":"2025-09-30T17:18:37.076473Z","last_seen":"2026-01-17T06:32:54.213658Z","times_seen":171,"resource_available":true,"data":null}},"time_used":816,"timings":{"blocked":384,"dns":338,"connect":47,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"mentscom.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"mentscom.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/themes/common/css/fonts.min.css?v=1767023715","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.116Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /themes/common/css/fonts.min.css?v=1767023715 HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/\r\nCookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:55:15 GMT\r\nETag: W/\"6952a463-1d8\"\r\nExpires: Sat, 02 Jan 2027 04:20:54 GMT\r\nCache-Control: max-age=31536000, public, public\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":472,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (472), with no line terminators","md5":"c75229c404d812bed7e45178cb5de880","sha1":"60d577f786a85ae2da0ce10fb5d2ad44f891d350","sha256":"03b7968aebb847843841403a6c90ca504fd44d6aa876724710f632e94e91eb03","sha512":"f7764a2212354be7ef6108a61de7da0f3f39b1f629e5e4962daa031abfb79e9bb8ffefe4d907f75dc82c4fa66c72cb13362a413b24929b134d536414c056d37b","ssdeep":"","tlshash":"65f0fe72cbf9258385ab0506e0f1bb11bf1e6a3d3410f843c20c56766af3d810594be2","first_seen":"2023-06-17T22:38:20Z","last_seen":"2026-04-03T02:50:13.211492Z","times_seen":863,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":9,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/themes/common/js/jquery-3.3.1.min.js?v=1767023715","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.118Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /themes/common/js/jquery-3.3.1.min.js?v=1767023715 HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/\r\nCookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:55:15 GMT\r\nETag: W/\"6952a463-1538f\"\r\nExpires: Sat, 02 Jan 2027 04:03:17 GMT\r\nCache-Control: max-age=31536000, public, public\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":86927,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-06T04:55:56.993392Z","times_seen":118547,"resource_available":true,"data":null}},"time_used":129,"timings":{"blocked":45,"dns":1,"connect":16,"send":0,"wait":31,"receive":1,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"globallstore24.com/themes/common/fonts/roboto-regular.woff2","fqdn":"globallstore24.com","domain":"globallstore24.com","tld":"com"},"ip":{"addr":"91.197.2.125","port":443,"asn":42532,"as":"SIA VEESP","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://globallstore24.com/","date":"2026-01-02T14:47:14.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globallstore24.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Dec 2025 07:53:00 GMT","end":"Tue, 24 Mar 2026 07:52:59 GMT"},"fingerprint":{"sha1":"D4:E6:D2:F8:DF:AF:99:19:DA:4B:3E:FD:82:B3:BE:14:35:C0:6B:89","sha256":"CD:66:DF:78:F9:47:79:B7:0B:EF:0C:A1:5B:9A:F2:CE:5C:59:EF:BE:AD:24:B8:AB:CA:96:A8:A4:35:0B:78:AD"}}},"request":{"raw":"GET /themes/common/fonts/roboto-regular.woff2 HTTP/1.1\r\nHost: globallstore24.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://globallstore24.com/themes/common/css/fonts.min.css?v=1767023715\r\nCookie: CGISID=10bb705db353a8f82da53bb5e16598fd9c9fd4aee48db5ebafbd8031392415\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 02 Jan 2026 14:47:14 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 64692\r\nConnection: keep-alive\r\nLast-Modified: Mon, 29 Dec 2025 15:55:15 GMT\r\nETag: \"6952a463-fcb4\"\r\nExpires: Sat, 03 Jan 2026 04:14:14 GMT\r\nCache-Control: max-age=86400, public, public\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Security-Policy: img-src https: data:; upgrade-insecure-requests\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":64692,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 64692, version 1.0","md5":"8fa8a82f0969cd7d7027c1171ca08061","sha1":"bf4da7aa5737d5567f826fb83e000db8d171ab16","sha256":"4b9f4b6894c43b1ad68c54790e1b7d0f3aa0947b3fff960452ea6d8e172b4683","sha512":"077328ea0a91f1624215aadbcf06dbf8dbabc16589c0cbad311a9356012f87853a75ac079c7a0a10f9e0a291fefeed7b64d14624df2a570a9f9018e9283c6987","ssdeep":"1536:XVT4hvNacjznVQheM9WToUGuwCZWmjct2d5ipE:h4hbjzWeuWTUCZZQs","tlshash":"0e53f17893971a3eddbce52b6c8419294ee6f9f6c2e18d914c0dd4289cc8233b75d1b8","first_seen":"2023-04-18T19:35:59Z","last_seen":"2026-04-04T06:46:26.360011Z","times_seen":971,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":29,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-02","alert":"Sinkholed","trigger":"globallstore24.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}