{"report_id":"12533e57-7e53-4629-8bd1-02c59b7dfeea","version":6,"status":"done","tags":[],"date":"2024-12-01T20:08:49Z","url":{"schema":"http","addr":"lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","fqdn":"lysyvan.com","domain":"lysyvan.com","tld":"com"},"ip":{"addr":"172.67.136.136","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","fqdn":"lysyvan.com","domain":"lysyvan.com","tld":"com"},"title":"Page not found -"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-02-09T20:08:49Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"lysyvan.com","ip":{"addr":"172.67.136.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2011-08-15","domain_rank":0,"first_seen":"2013-02-07T23:47:40Z","last_seen":"2024-11-27T19:24:31.897024Z","alert_count":3,"request_count":3,"received_data":29628,"sent_data":1446,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.ampproject.org","ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2015-08-31","domain_rank":329,"first_seen":"2015-10-09T06:27:01Z","last_seen":"2024-11-27T19:11:45.803897Z","alert_count":0,"request_count":5,"received_data":123642,"sent_data":2189,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-01","alert":"Sinkholed","trigger":"lysyvan.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-01","alert":"Sinkholed","trigger":"lysyvan.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-01","alert":"Sinkholed","trigger":"lysyvan.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.ampproject.org/v0/amp-next-page-1.0.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"348d3e0d9324f90853c87b2117bad26e","sha1":"223969033e391ea52f845aa4b2d9801c98e59e0a","sha256":"9c4f57c9a64b48250f8fce88ab8347981560b8e2841c1b193dffc5de9c519f9c","sha512":"83456571c981d73bd1eb4681086fd5106a993cbf55299157377aad0ece4991a83582fc6e6cd64796b60eaf593ff156903101b5fad8ff82ad5fad9b7cd5cac5ec","ssdeep":"768:r4TCGFEA+RfLCGdm0ZWH9dMB5cuQCIk7lWdaI63kaK0A7U/3F9+eJK6vFkiS8E2v:cvGdwDZCnv2PkEjmgV/MzN","tlshash":"5c03e9b93292e0334bd690f1a0375142f3256959340a846cf1acddc7bcb9d8671b6fba","size":37773,"data":"","first_seen":"2024-11-12T18:58:29.624626Z","last_seen":"2025-01-22T18:11:33.826014Z","times_seen":1452,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0/amp-bind-0.1.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8d5484fa9b4bd603043e2ed7ae111487","sha1":"cdb3a6c752ae63373cfcd1090814b277c9e6ab3b","sha256":"c22801331d97206cf467e2b40c6e183604fc200fa5ff19b2e1d986a5066b4381","sha512":"45450ed978dfbd3b200564c909082453aa0e5b8f9b989612015fb4ef01e2cc03b0539a25c38ca8569e1556b25362db357cef719f516b3fa907cf35c0bc7b5f1c","ssdeep":"768:IXCvqZr3K6LtckYGN89vHTLTfA5UE5tAWc5Ql0p43fHLM+gcbecqyHXN4RKS8YKk:pqrd3oLiUARcw3z+cb37Hd4L0bJXDocm","tlshash":"5813e9b53282a43647d648f684377012e32d2956304ac8ecf16ceec7bc77955a6b9e3c","size":41951,"data":"","first_seen":"2024-11-12T18:58:29.626738Z","last_seen":"2025-01-22T18:11:33.832986Z","times_seen":1477,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0/amp-form-0.1.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ad5c0334300d1a3f909b883a2d0e52d2","sha1":"664ca0defc0d92e197c04eb377d60feb2a1c5783","sha256":"968987a637c231c557c786ff7c2b6dc8e3ba6466b02922602ddf6cf7f127a8d2","sha512":"8bc5598a88f62bf3794bea70ae548b65f94e950d580c46aee642313a426162824292ace941475a70015604df66c6c1ca5a4498e67e0d860f9c354fe3c1662abb","ssdeep":"768:bnMWFZFzBNzZNt2fVh0idCmgrwwfMDifm9SNJuSddfGhS2TWaJSm5IyCBQtWprmt:bn1HAfZdgdfGc29IyCXxlI7ifUUpcy78","tlshash":"3e03d6ea3292b0770be144f580a69042f32a28583407856cb5acedd77e2ddc572b6f7d","size":41185,"data":"","first_seen":"2024-11-12T18:58:29.614753Z","last_seen":"2025-01-22T18:11:33.826974Z","times_seen":1459,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"18f1857e08922a14b90864c658896291","sha1":"668fb9b59fb68d25fbd1c30e8679d0ead5b84ec2","sha256":"3a7869ac772d4453fdea9b8b7642205ed2c3c91ee6615b0efaeb3db1c10df716","sha512":"53fafb784c000f119691e1ad628bad6cf0bd956dce42a07a59e8cb1b2ccf4315b21c4f07a4594ad4f6096b5096f34f9d6b26955acc505b7c29f2bf5bdd15c3fe","ssdeep":"6144:zxm6M7Hl4ckahpyWJXcuvnyq/lASjog3xaH:Nm6M7Hl4Ehv/y+jsg3xw","tlshash":"2c24c5e63296b03247e554f5d4770002e3296998340b816cf96ceecb7ca9d86b1b6f7c","size":228142,"data":"","first_seen":"2024-11-12T18:58:29.612835Z","last_seen":"2025-08-08T16:33:58.177121Z","times_seen":1531,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","fqdn":"lysyvan.com","domain":"lysyvan.com","tld":"com"},"ip":{"addr":"172.67.136.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-12-01T20:08:25.736Z","timestamp":1733083705736,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lysyvan.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Nov 2024 09:12:07 GMT","end":"Mon, 10 Feb 2025 09:12:06 GMT"},"fingerprint":{"sha1":"FF:91:3A:7A:4D:D5:65:E0:CC:DA:B4:0A:18:63:2A:6E:B3:40:9B:D3","sha256":"55:C1:B9:4D:DF:EF:80:DC:2B:17:49:3D:70:1D:A9:D8:CA:CB:65:E3:1E:92:C2:EB:32:9A:23:85:EA:A6:D7:19"}}},"request":{"raw":"GET /http:/lyvywed.com/http:/qexyqog.com/ HTTP/1.1\r\nHost: lysyvan.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Sun, 01 Dec 2024 20:08:25 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLocation: https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/\r\nCF-Cache-Status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=C8yFRy0pnNiVnFwPEZM2LoH13oDnqfSFO6GnSlZj8csPSnaagMYwRr0owWG9dcHk7pR1NmWHkyL9MeqKnKT1NbqOBYS5Lz%2BtKz0IPvA%2BUdQwKVRjv3vv4rpQP8r7LA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 8eb5b5853af30afa-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=16860\u0026min_rtt=16860\u0026rtt_var=8430\u0026sent=1\u0026recv=3\u0026lost=0\u0026retrans=0\u0026sent_bytes=0\u0026recv_bytes=420\u0026delivery_rate=0\u0026cwnd=249\u0026unsent_bytes=0\u0026cid=0000000000000000\u0026ts=0\u0026x=0\"\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":162,"size_decoded":162,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"4f8e702cc244ec5d4de32740c0ecbd97","sha1":"3adb1f02d5b6054de0046e367c1d687b6cdf7aff","sha256":"9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a","sha512":"21047fea5269fee75a2a187aa09316519e35068cb2f2f76cfaf371e5224445e9d5c98497bd76fb9608d2b73e9dac1a3f5bfadfdc4623c479d53ecf93d81d3c9f","ssdeep":"","tlshash":"0bc08cadab022cc8b8a73b3861c36160e2ec80701699451101b04a07f1cf1979ec23d1","first_seen":"2023-04-05T03:07:27Z","last_seen":"2025-10-21T23:58:19.216342Z","times_seen":131101,"resource_available":false,"data":null}},"time_used":487,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":487,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-01","alert":"Sinkholed","trigger":"lysyvan.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","date":"2024-12-01T20:08:26.330Z","timestamp":1733083706330,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 21 Oct 2024 08:37:13 GMT","end":"Mon, 13 Jan 2025 08:37:12 GMT"},"fingerprint":{"sha1":"B6:9F:5B:7B:44:4E:44:17:FD:E5:C5:A4:8B:21:B9:A4:0B:99:9D:88","sha256":"55:BD:C2:28:A6:04:DF:7F:AA:14:99:06:20:0A:7E:B1:4D:4F:34:05:18:E6:04:D3:4A:62:55:5E:AD:AA:19:CD"}}},"request":{"raw":"GET /v0.mjs HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lysyvan.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lysyvan.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 63581\r\ndate: Sun, 01 Dec 2024 20:08:26 GMT\r\nexpires: Sun, 01 Dec 2024 20:08:26 GMT\r\ncache-control: private, max-age=3000, stale-while-revalidate=1206600\r\netag: \"025f941185ebedb2\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":63581,"size_decoded":228142,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64648)","md5":"18f1857e08922a14b90864c658896291","sha1":"668fb9b59fb68d25fbd1c30e8679d0ead5b84ec2","sha256":"3a7869ac772d4453fdea9b8b7642205ed2c3c91ee6615b0efaeb3db1c10df716","sha512":"53fafb784c000f119691e1ad628bad6cf0bd956dce42a07a59e8cb1b2ccf4315b21c4f07a4594ad4f6096b5096f34f9d6b26955acc505b7c29f2bf5bdd15c3fe","ssdeep":"6144:zxm6M7Hl4ckahpyWJXcuvnyq/lASjog3xaH:Nm6M7Hl4Ehv/y+jsg3xw","tlshash":"2c24c5e63296b03247e554f5d4770002e3296998340b816cf96ceecb7ca9d86b1b6f7c","first_seen":"2024-11-12T18:58:29.612835Z","last_seen":"2025-08-08T16:33:58.177121Z","times_seen":1531,"resource_available":true,"data":null}},"time_used":195,"timings":{"blocked":70,"dns":1,"connect":8,"send":0,"wait":25,"receive":24,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0/amp-next-page-1.0.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","date":"2024-12-01T20:08:26.336Z","timestamp":1733083706336,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 21 Oct 2024 08:37:13 GMT","end":"Mon, 13 Jan 2025 08:37:12 GMT"},"fingerprint":{"sha1":"B6:9F:5B:7B:44:4E:44:17:FD:E5:C5:A4:8B:21:B9:A4:0B:99:9D:88","sha256":"55:BD:C2:28:A6:04:DF:7F:AA:14:99:06:20:0A:7E:B1:4D:4F:34:05:18:E6:04:D3:4A:62:55:5E:AD:AA:19:CD"}}},"request":{"raw":"GET /v0/amp-next-page-1.0.mjs HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lysyvan.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lysyvan.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 12069\r\ndate: Sun, 01 Dec 2024 20:08:26 GMT\r\nexpires: Sun, 01 Dec 2024 20:08:26 GMT\r\ncache-control: private, max-age=604800, stale-while-revalidate=604800\r\netag: \"036223bb75a5bafe\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12069,"size_decoded":37773,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (37401)","md5":"348d3e0d9324f90853c87b2117bad26e","sha1":"223969033e391ea52f845aa4b2d9801c98e59e0a","sha256":"9c4f57c9a64b48250f8fce88ab8347981560b8e2841c1b193dffc5de9c519f9c","sha512":"83456571c981d73bd1eb4681086fd5106a993cbf55299157377aad0ece4991a83582fc6e6cd64796b60eaf593ff156903101b5fad8ff82ad5fad9b7cd5cac5ec","ssdeep":"768:r4TCGFEA+RfLCGdm0ZWH9dMB5cuQCIk7lWdaI63kaK0A7U/3F9+eJK6vFkiS8E2v:cvGdwDZCnv2PkEjmgV/MzN","tlshash":"5c03e9b93292e0334bd690f1a0375142f3256959340a846cf1acddc7bcb9d8671b6fba","first_seen":"2024-11-12T18:58:29.624626Z","last_seen":"2025-01-22T18:11:33.826014Z","times_seen":1452,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":82,"dns":1,"connect":23,"send":0,"wait":33,"receive":1,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0/amp-bind-0.1.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","date":"2024-12-01T20:08:26.332Z","timestamp":1733083706332,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 21 Oct 2024 08:37:13 GMT","end":"Mon, 13 Jan 2025 08:37:12 GMT"},"fingerprint":{"sha1":"B6:9F:5B:7B:44:4E:44:17:FD:E5:C5:A4:8B:21:B9:A4:0B:99:9D:88","sha256":"55:BD:C2:28:A6:04:DF:7F:AA:14:99:06:20:0A:7E:B1:4D:4F:34:05:18:E6:04:D3:4A:62:55:5E:AD:AA:19:CD"}}},"request":{"raw":"GET /v0/amp-bind-0.1.mjs HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lysyvan.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lysyvan.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 13903\r\ndate: Sun, 01 Dec 2024 20:08:26 GMT\r\nexpires: Sun, 01 Dec 2024 20:08:26 GMT\r\ncache-control: private, max-age=604800, stale-while-revalidate=604800\r\netag: \"da49c39172d1a215\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13903,"size_decoded":41957,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (41835)","md5":"9da79ed1c1dc2393bae79ae92c987e9e","sha1":"ca1dddaff3e2d6ca4ec7523d9282e1a9d853aa3f","sha256":"242c47deb5ed41eeb1960fbe3543992eda9f81541cfacba41f4f6b014207e701","sha512":"e2278ed204311bb910ccfefcb4868a39d6faa0ea1629fe9f761440ae4c7f09d647c81f390b8ee30a9d35818e7f870f1330492ca1d06573c5ecd5ffd59d958cc6","ssdeep":"768:IpCvqZr3K6LtckYGN89vHTLTfA5UE5tAWc5Ql0p43fHLM+gcbecqyHXN4RKS8YKk:3qrd3oLiUARcw3z+cb37Hd4L0bJXDocm","tlshash":"2113e9b53282a43647d648f684377012e32d2956304ac8ecf16ceec7bc77955a6b9e3c","first_seen":"2024-11-12T18:58:29.618039Z","last_seen":"2025-01-22T18:11:33.822644Z","times_seen":1391,"resource_available":false,"data":null}},"time_used":209,"timings":{"blocked":81,"dns":1,"connect":21,"send":0,"wait":38,"receive":2,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0/amp-form-0.1.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","date":"2024-12-01T20:08:26.334Z","timestamp":1733083706334,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 21 Oct 2024 08:37:13 GMT","end":"Mon, 13 Jan 2025 08:37:12 GMT"},"fingerprint":{"sha1":"B6:9F:5B:7B:44:4E:44:17:FD:E5:C5:A4:8B:21:B9:A4:0B:99:9D:88","sha256":"55:BD:C2:28:A6:04:DF:7F:AA:14:99:06:20:0A:7E:B1:4D:4F:34:05:18:E6:04:D3:4A:62:55:5E:AD:AA:19:CD"}}},"request":{"raw":"GET /v0/amp-form-0.1.mjs HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lysyvan.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lysyvan.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 12953\r\ndate: Sun, 01 Dec 2024 20:08:26 GMT\r\nexpires: Sun, 01 Dec 2024 20:08:26 GMT\r\ncache-control: private, max-age=604800, stale-while-revalidate=604800\r\netag: \"f2575cb9f4cf0f6e\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12953,"size_decoded":41185,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (41069)","md5":"ad5c0334300d1a3f909b883a2d0e52d2","sha1":"664ca0defc0d92e197c04eb377d60feb2a1c5783","sha256":"968987a637c231c557c786ff7c2b6dc8e3ba6466b02922602ddf6cf7f127a8d2","sha512":"8bc5598a88f62bf3794bea70ae548b65f94e950d580c46aee642313a426162824292ace941475a70015604df66c6c1ca5a4498e67e0d860f9c354fe3c1662abb","ssdeep":"768:bnMWFZFzBNzZNt2fVh0idCmgrwwfMDifm9SNJuSddfGhS2TWaJSm5IyCBQtWprmt:bn1HAfZdgdfGc29IyCXxlI7ifUUpcy78","tlshash":"3e03d6ea3292b0770be144f580a69042f32a28583407856cb5acedd77e2ddc572b6f7d","first_seen":"2024-11-12T18:58:29.614753Z","last_seen":"2025-01-22T18:11:33.826974Z","times_seen":1459,"resource_available":true,"data":null}},"time_used":217,"timings":{"blocked":91,"dns":1,"connect":8,"send":0,"wait":28,"receive":1,"ssl":85},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lysyvan.com/wp-content/uploads/2023/12/cropped-Sukses-Favicon-32x32.png","fqdn":"lysyvan.com","domain":"lysyvan.com","tld":"com"},"ip":{"addr":"172.67.136.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","date":"2024-12-01T20:08:27.284Z","timestamp":1733083707284,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lysyvan.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Nov 2024 09:12:07 GMT","end":"Mon, 10 Feb 2025 09:12:06 GMT"},"fingerprint":{"sha1":"FF:91:3A:7A:4D:D5:65:E0:CC:DA:B4:0A:18:63:2A:6E:B3:40:9B:D3","sha256":"55:C1:B9:4D:DF:EF:80:DC:2B:17:49:3D:70:1D:A9:D8:CA:CB:65:E3:1E:92:C2:EB:32:9A:23:85:EA:A6:D7:19"}}},"request":{"raw":"GET /wp-content/uploads/2023/12/cropped-Sukses-Favicon-32x32.png HTTP/1.1\r\nHost: lysyvan.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Dec 2024 20:08:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 2114\r\nlast-modified: Thu, 21 Dec 2023 15:51:09 GMT\r\netag: \"65845eed-842\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncf-cache-status: HIT\r\nage: 349025\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=2mp3ZncShjib9jZ9s7Uu8%2Burp2UIZVvz9ba6M7k6WmyO6sMxZyNQKWRMRCS%2BOt9eNFHu1n5mBld%2BZL6PHoh3YudmvHzRg7F6yk%2FainaUpXs7Bf6NcOFwDYqbvIhHbA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8eb5b5927e96712d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=19120\u0026min_rtt=17980\u0026rtt_var=5925\u0026sent=23\u0026recv=9\u0026lost=0\u0026retrans=0\u0026sent_bytes=15591\u0026recv_bytes=1839\u0026delivery_rate=9530\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=35f5fe418b80c921\u0026ts=2318\u0026x=1\", cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2114,"size_decoded":2114,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"f6a6647446afe48454f751d3a542a4d2","sha1":"0facbec7dfe3b1c5b66306f13c2fd2728532a8f3","sha256":"9f4664a29d0267976a69855551eeae242921c5cd6172f20a37658ab765182084","sha512":"aa6b7dc65f364a2cc09c54637934856aa0bd5207c8d82698144b81b9f06e8394f168f4af787051d882a113df47b9fad75caec0d15126360cf1274e2ffda5e9ac","ssdeep":"","tlshash":"6c413ad12a3afbb6a86cda4703805c0398fbdc6427b48f7036d88516148bb02a4bd035","first_seen":"2024-03-09T15:17:24Z","last_seen":"2025-03-10T07:41:10.509208Z","times_seen":2882,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-01","alert":"Sinkholed","trigger":"lysyvan.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012410292120000/ww.mjs","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"216.58.207.193","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","date":"2024-12-01T20:08:27.286Z","timestamp":1733083707286,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 21 Oct 2024 08:37:13 GMT","end":"Mon, 13 Jan 2025 08:37:12 GMT"},"fingerprint":{"sha1":"B6:9F:5B:7B:44:4E:44:17:FD:E5:C5:A4:8B:21:B9:A4:0B:99:9D:88","sha256":"55:BD:C2:28:A6:04:DF:7F:AA:14:99:06:20:0A:7E:B1:4D:4F:34:05:18:E6:04:D3:4A:62:55:5E:AD:AA:19:CD"}}},"request":{"raw":"GET /rtv/012410292120000/ww.mjs HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/plain\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://lysyvan.com/\r\nOrigin: https://lysyvan.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 13079\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 26 Nov 2024 18:48:09 GMT\r\nexpires: Wed, 26 Nov 2025 18:48:09 GMT\r\ncache-control: public, max-age=31536000\r\nage: 436818\r\netag: \"34d27d177a628b0e\"\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13079,"size_decoded":46270,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (46156)","md5":"4d9cfc807d715a42fbb067320c8d7f20","sha1":"7aa740ca75e3302b280e7038ab3147aa81f155c9","sha256":"20f6c7d1c32c576ab56a8347f936e234ac480b1b46c5227e853a60c3fa795086","sha512":"f7f386f0387de3a811125c941d54ee506a34e9ed992819a4456eec96be1e72934f08e165039345455d2121924a7df05cd74066efedc39bde0e232116b584fae0","ssdeep":"768:bCDFhINYGGBGJ87rpB67WhEA/nVfUImjkYvPibpPcsKdN4emH+AUKnOgyb9Q:wIjCV7ffUaZep1RgOG","tlshash":"2e23fab433a6546f839284e5005a3009e67e2c6a3006d8fcf678eed73db199795b6f34","first_seen":"2024-11-12T18:58:29.620856Z","last_seen":"2025-01-22T18:11:33.83163Z","times_seen":1463,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lysyvan.com/wp-content/uploads/2023/12/cropped-Sukses-Favicon-192x192.png","fqdn":"lysyvan.com","domain":"lysyvan.com","tld":"com"},"ip":{"addr":"172.67.136.136","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/","date":"2024-12-01T20:08:27.281Z","timestamp":1733083707281,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lysyvan.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 Nov 2024 09:12:07 GMT","end":"Mon, 10 Feb 2025 09:12:06 GMT"},"fingerprint":{"sha1":"FF:91:3A:7A:4D:D5:65:E0:CC:DA:B4:0A:18:63:2A:6E:B3:40:9B:D3","sha256":"55:C1:B9:4D:DF:EF:80:DC:2B:17:49:3D:70:1D:A9:D8:CA:CB:65:E3:1E:92:C2:EB:32:9A:23:85:EA:A6:D7:19"}}},"request":{"raw":"GET /wp-content/uploads/2023/12/cropped-Sukses-Favicon-192x192.png HTTP/1.1\r\nHost: lysyvan.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lysyvan.com/http:/lyvywed.com/http:/qexyqog.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Dec 2024 20:08:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 24569\r\nlast-modified: Thu, 21 Dec 2023 15:51:09 GMT\r\netag: \"65845eed-5ff9\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncf-cache-status: HIT\r\nage: 12879298\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=UzM791End%2BTgY2%2BykR2%2B9UGYP%2FvCvTgYFFvJf8hnNa7MH4jyUiEVBVXPWWmYC%2B0fyw%2BGVDGBeurxFGtRkxa4izNhDLkjUPFiM4yenwf7nAA1X9hIQSy%2F%2FusKuggmvg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8eb5b5927e92712d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=19120\u0026min_rtt=17980\u0026rtt_var=5925\u0026sent=26\u0026recv=9\u0026lost=0\u0026retrans=0\u0026sent_bytes=18460\u0026recv_bytes=1839\u0026delivery_rate=9530\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=35f5fe418b80c921\u0026ts=2320\u0026x=1\", cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24569,"size_decoded":24569,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"4a072595bbc3902910b4a3c3c093611e","sha1":"24effcc5ec791cc721ed38194d6fa6f870caf8e4","sha256":"8255536f9c9eafadef7570a6f0d4ae7fb4ec4fb96d098647d9098240566555af","sha512":"6e77355ec8582058a6d05797b5a3df44e0a56623ee72690accdb1f7fda4363e4392a8adb2843172e637323c83ff61970968c275dc9e883602a7030db100900e3","ssdeep":"384:wHWH1kuNFugzLC+a3hi3yVTwP6lb71eo5skVu788JDVN0fsQ86DXjn/8:wHKBN1V6hi3OTjlbZeo5zcn1T0fstS/8","tlshash":"aab2e03e5a473f37291f2fc388a5cc31dc934186b16766fc2ba6c0e8a66e1a11755263","first_seen":"2024-03-09T15:17:24Z","last_seen":"2025-03-10T07:41:10.51006Z","times_seen":2886,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-01","alert":"Sinkholed","trigger":"lysyvan.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}