{"report_id":"15f08108-e7a2-4fba-973d-4eafdd114608","version":6,"status":"done","tags":[],"date":"2026-03-24T06:59:42Z","url":{"schema":"http","addr":"terothorfi.com/","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":0,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"terothorfi.com/","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"title":"Terothorfi Finance Bank - Online Banking \u0026 Financial Services","dom":{"size":4231,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"ba578b13f85c80b56ee11bd29c1e8bf9","sha1":"c8752256b43c565aaa57e10664b903e321be4bf0","sha256":"8de84ed0cacfb20ae0969b2a48d078cca4c2b799feb91ec31dc7d3f3791f8ee6","sha512":"8c92fc63a028e4eab8a2f0cddf16f2464acf3b21317d599d624aa7deb07e41e93516a74d08f98a31d40c4e39a390a2fbb3e83563d192326fc56295bd04e9b778","ssdeep":"48:+r9CQbi2e7MEwJIRlGlOA6u3b0FpFKpb4iPTiufDD5U0x7LhSVgC1+:eUu3b0r4b42Dp7LhSCC1+","tlshash":"5f91230a0cf2412b11429691acf62d1addd6950fc61cad70317d0d7c6fe3f8ad91bc9a","dom_hash":"domhashba07b40523e69bd0a7b7fe5f602f3d61","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"terothorfi.com/","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":0,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-28T06:59:42Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"terothorfi.com","ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-05-12","domain_rank":0,"first_seen":"2026-03-24T06:59:43.692987Z","last_seen":"2026-03-24T06:59:43.692987Z","alert_count":23,"request_count":23,"received_data":770909,"sent_data":10114,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"JivoChat","description":"JivoChat is a live chat solution for websites offering customizable web and mobile chat widgets.","website":"https://www.jivosite.com","common_platform_enumeration":"","icon":"JivoChat.png","categories":["Live chat"]},{"name":"Popper","description":"Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.","website":"https://popper.js.org","common_platform_enumeration":"","icon":"Popper.svg","categories":["Miscellaneous"]},{"name":"Magnific Popup","description":"Magnific Popup is a responsive lightbox \u0026 dialog script with focus on performance and providing best experience for user with any device.","website":"https://dimsemenov.com/plugins/magnific-popup/","common_platform_enumeration":"","icon":"Magnific Popup.png","categories":["JavaScript libraries"]},{"name":"Ezoic","description":"Ezoic is a website optimisation platform for digital publishers and website owners powered by machine learning.","website":"https://www.ezoic.com","common_platform_enumeration":"","icon":"Ezoic.svg","categories":["Analytics","Advertising"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"node-ya-4.jivosite.com","ip":{"addr":"158.160.54.153","port":443,"asn":200350,"as":"Yandex.Cloud LLC","country":"Russia","country_code":"RU"},"domain_registered":"2011-05-06","domain_rank":930580,"first_seen":"2023-01-18T09:50:44Z","last_seen":"2026-03-18T03:03:56.806074Z","alert_count":0,"request_count":1,"received_data":822,"sent_data":493,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"code.jivosite.com","ip":{"addr":"95.181.182.182","port":443,"asn":210756,"as":"EdgeCenter LLC","country":"Russia","country_code":"RU"},"domain_registered":"2011-05-06","domain_rank":232952,"first_seen":"2012-07-22T02:03:39Z","last_seen":"2026-03-18T16:51:50.002888Z","alert_count":0,"request_count":2,"received_data":20385,"sent_data":886,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.ezojs.com","ip":{"addr":"172.67.170.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-10-23","domain_rank":100154,"first_seen":"2017-11-17T07:37:11Z","last_seen":"2026-03-19T11:05:37.269868Z","alert_count":0,"request_count":1,"received_data":657,"sent_data":429,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-22T22:20:05.651051Z","alert_count":0,"request_count":2,"received_data":124257,"sent_data":1069,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"code.jivosite.com/widget/oE32nNZlkt","fqdn":"code.jivosite.com","domain":"jivosite.com","tld":"com"},"ip":{"addr":"95.181.182.182","port":443,"asn":210756,"as":"EdgeCenter LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"bb1b9a4a70243889751856b12e8ba017","sha1":"ae4e02d99a7ae21d19fcd639f28f3174d9d64aa9","sha256":"e1f61c376df11a517a765eabaea30f00207cece6158108e520fbdbe6041b9e16","sha512":"d01f77c7d8007faea78b17fd8f12f16fa0cb817ed1c10d6bf56cef8aa247130e84cb4e03ff6fd769872becb1cd5216e849b591c4f3f846c8116007bac91c4144","ssdeep":"384:boU+JvepohmPF0jjrArr0aX55Mf7qISOqrebz8sROweqWcPdv:UI/AAjX54cr7sXWcPdv","tlshash":"8c823b6e7959b97743b218f9516f620a733549ebd404c920a401e98d7cb8ace813fef8","size":18118,"data":"","first_seen":"2026-03-12T11:56:30.35622Z","last_seen":"2026-04-02T00:30:16.283922Z","times_seen":873,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"terothorfi.com/assets/css/owl.theme.default.min.css","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.444Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/css/owl.theme.default.min.css HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 1013\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1013,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (846)","md5":"594b81805a98b267e47c70a8fad30d9f","sha1":"684d84ec40b305ca14efc88c91f12972cb6342b4","sha256":"924b0dc630d1c5dff9fa31aead9509775b1d476bfe0a5ac2977b2f11205a26ac","sha512":"b0c5ed30d2f5cd1ce894760a12e8ccd80a822d447d1760b8ff4e5c75bc638cb491bcc40872210f090668fbe9e4ee0a3706d4ae2bd91f6bfb3e6b87f88b9a4b93","ssdeep":"","tlshash":"4d11abc5f189221d301781904aa842cb6b1e687e529d0ef5f8ee8160c22dd053a6fbf9","first_seen":"2023-04-05T06:03:14Z","last_seen":"2026-04-05T08:48:06.112115Z","times_seen":18493,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":44,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/css/style.css","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/css/style.css HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Mon, 10 Jun 2024 19:24:04 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 161204\r\nKeep-Alive: timeout=5, max=94\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":161204,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (595)","md5":"58347b99611ab826f5c9286b07d530c5","sha1":"9ddae30d959717677f8e99648610083b903a08b0","sha256":"84a37448807c403d3f51a70170b6f1ad224f68498c060b0f9b108c7297985347","sha512":"6da39ef555a41099935f3fb19e88d5ba36f1d72ccc2ec8c42202c3ca4ff8b84082857760c19ddfd016ed5570648d4f2c473c11353335b397d90c854bed7d3239","ssdeep":"3072:K6rsJUaETjn48F0lQeVdVKbk6elsTD0pMp7jmu/WGwOTWk6D44lSQpkV6wpbPTgS:K6rsJUaETjn48FreVdVOk6elsTD0pMpR","tlshash":"9ff375d6aaf35904358b851c39c5ef102bad5182a20ecabd7ab7605cefc57c910a7f0d","first_seen":"2026-03-24T06:59:49.027131Z","last_seen":"2026-03-24T06:59:49.027131Z","times_seen":1,"resource_available":false,"data":null}},"time_used":145,"timings":{"blocked":113,"dns":0,"connect":0,"send":0,"wait":26,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"node-ya-4.jivosite.com/widget/status/2486672/oE32nNZlkt?rnd=0.6024880285632789","fqdn":"node-ya-4.jivosite.com","domain":"jivosite.com","tld":"com"},"ip":{"addr":"158.160.54.153","port":443,"asn":200350,"as":"Yandex.Cloud LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:31.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jivosite.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Sat, 05 Apr 2025 13:51:50 GMT","end":"Thu, 07 May 2026 13:51:50 GMT"},"fingerprint":{"sha1":"91:23:D5:42:EC:58:B2:51:EC:57:F6:5B:46:CF:F5:2F:07:F2:2C:A3","sha256":"15:FB:10:F4:11:BB:CB:AD:9E:84:5B:16:F6:74:34:08:80:C0:40:EC:9E:C7:48:9B:F2:28:5B:50:81:78:82:8E"}}},"request":{"raw":"GET /widget/status/2486672/oE32nNZlkt?rnd=0.6024880285632789 HTTP/1.1\r\nHost: node-ya-4.jivosite.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://terothorfi.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-max-age: 1728000\r\naccess-control-allow-origin: https://terothorfi.com\r\naccess-control-expose-headers: X-Geoip, X-Botmode\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-security-policy: frame-ancestors 'none';\r\ncontent-type: application/json; charset=utf-8\r\npragma: no-cache\r\nserver: foxy/6.0\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-botmode: no\r\nx-frame-options: DENY\r\nx-geoip: NO;03;Oslo (Alna District)\r\nx-powered-by: foxy/6.0\r\ncontent-length: 196\r\ndate: Tue, 24 Mar 2026 06:59:31 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":196,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e13e4f42d8c8fb5f2db2122e8a7c0091","sha1":"a2db5e7e434e913b1e1edd0720ada35ca102a790","sha256":"cc84905ccc8b68947db2933e07c6e3688868afb3fb0e7e8864b9eaf15ab267d4","sha512":"7929b0adfa66799bde6e80f82f7cbe30c4bc63ffc3aa00759a58c64b33b4a62d829dbe9c597263d924496374748ded84e8e28d88541c875d8ab4480069fc5682","ssdeep":"","tlshash":"d5d0223d453908ee0ec08a64a8c73b8e0a10020200e1af24e346a700a0efad6804c00b","first_seen":"2026-03-24T06:59:49.03009Z","last_seen":"2026-03-24T06:59:49.03009Z","times_seen":1,"resource_available":false,"data":null}},"time_used":764,"timings":{"blocked":367,"dns":300,"connect":29,"send":0,"wait":30,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/bootstrap.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/bootstrap.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 60174\r\nKeep-Alive: timeout=5, max=89\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":60174,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (59893)","md5":"6bea60c34c5db6797150610dacdc6bce","sha1":"544afefd148715da7dd52d368a414703390ca0e0","sha256":"38544024da1a0fc2f706be6582557b5722d17f48ad9a8073594a0cf928e2e3ff","sha512":"2394e4bad0290e39d6b97fac98b20f64d870f8b85377c5ab4217422acc421514af845c76926f197c4a4d22117d9ead389ac1e13a413c04c3818f9404d3bca130","ssdeep":"768:WLlcnSRAIvHVAYIE8Pg76Tjx4vbh3p6viDl0TS6SXH6G7e6Pxh35CCmVla4:WLl4SE0MJS36GPxhAV1","tlshash":"c743a54a7254787206df747a817b060bb3366c99a40a816cb8699ced2f7cd493277f3c","first_seen":"2023-03-07T01:07:32Z","last_seen":"2026-04-05T06:08:49.57506Z","times_seen":7285,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":232,"dns":0,"connect":0,"send":0,"wait":25,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/css/bootstrap.min.css","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.433Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/css/bootstrap.min.css HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 144878\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":144878,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65324)","md5":"f2f6a3988a33e1a210dca7d5d9a022b5","sha1":"9e20fb39dbe15b19f328a2c2c3a28646e03d00c7","sha256":"797e8723aae1f1780cebc8c70bcc488eb9ed040f46a3ccab3e3f23b2dfc166ed","sha512":"06bb445479853e1733d47103cb3020d2c552986b9ec5ef95493700036f7ef3198c5cade8a12387331c24e951ffd4961831b79231627689608cc29f2b18b4ae50","ssdeep":"1536:mcoqwrUPyDHU7c7TcDEBi82NcuSELL4d/+oENM6HN26Q:1oPgPard2oENM6HN26Q","tlshash":"74e37667f591322da097ca1851c0bbfa466f8156d6221ffbf4273b604b8a6c70a73d0d","first_seen":"2023-05-03T20:08:05Z","last_seen":"2026-03-28T13:41:34.452325Z","times_seen":55,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/popper.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.470Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/popper.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 19187\r\nKeep-Alive: timeout=5, max=90\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":19187,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (19015)","md5":"ce63aef33d4edb69c79234f06494348d","sha1":"8f1d21ce6ce95997b372e023eaf35bfcc7d6f9c5","sha256":"81fa29fe7e85fd164cb467ca87cdbed45ee0c43b22e60ead03fdbef981a54dfa","sha512":"268792f643fcedc8f90bcd96a7d7c40a2a8bb663c5aec67cb3af55c49633a8c279fcd670b8b7b18ad54c2bf6634f78ab8407b90c04f30f21e95be86404ebf415","ssdeep":"384:kCbuG4xGNoDic2UjKPafxwC5b/4xQviOJU7QzxzivDdE3pcGdjkd/9jt3B+Kb96G:5b4xGmiJfaf7gxQvVU7eziv+cSjknZ33","tlshash":"fd82a3cc3291b06643a79167a06f960fb2339979614e9410f199f2d87c70ef9913fc7a","first_seen":"2023-03-07T16:37:54Z","last_seen":"2026-03-28T13:41:34.436673Z","times_seen":52,"resource_available":true,"data":null}},"time_used":233,"timings":{"blocked":207,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/jquery.appear.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/jquery.appear.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 4227\r\nKeep-Alive: timeout=5, max=83\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":4227,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"ad1f16b6a13daf29169bf73cf29206d0","sha1":"990aaf5e09871660d3cda1f13367e2ae3425782f","sha256":"6eff971a28cb7a683daa4437b7b29832d3c78b8a35e3a4f42dbf5181e0942f05","sha512":"775f3aaef476b3be2930be2ccd81d7fbde95207fcf902f9bbfe4a0ead6aca314da1a7102015328f34416fb251106f72ab3e5c60f6e2f787745ff5f2ac1f98c68","ssdeep":"48:Yo3dwd2k3yV5egTkYRSdaMxlehOBOrMR6nZNBFxDNE9l92bA4FS4flyM:X3/skfRwbDOrdfFjg/2cmVflyM","tlshash":"bb910e0a79eb1ab54877713e8fafa2442231503b2202d8113ceddf6c6fa1c64a597fd4","first_seen":"2023-03-07T12:10:28Z","last_seen":"2026-04-04T18:20:43.354146Z","times_seen":572,"resource_available":true,"data":null}},"time_used":404,"timings":{"blocked":379,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-24T06:59:17.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 31 Jul 2024 10:17:47 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 54754\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"JivoChat","description":"JivoChat is a live chat solution for websites offering customizable web and mobile chat widgets.","website":"https://www.jivosite.com","common_platform_enumeration":"","icon":"JivoChat.png","categories":["Live chat"]},{"name":"Popper","description":"Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.","website":"https://popper.js.org","common_platform_enumeration":"","icon":"Popper.svg","categories":["Miscellaneous"]},{"name":"Magnific Popup","description":"Magnific Popup is a responsive lightbox \u0026 dialog script with focus on performance and providing best experience for user with any device.","website":"https://dimsemenov.com/plugins/magnific-popup/","common_platform_enumeration":"","icon":"Magnific Popup.png","categories":["JavaScript libraries"]},{"name":"Ezoic","description":"Ezoic is a website optimisation platform for digital publishers and website owners powered by machine learning.","website":"https://www.ezoic.com","common_platform_enumeration":"","icon":"Ezoic.svg","categories":["Analytics","Advertising"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":54754,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (406)","md5":"62d305974a00e2a12e6bf716a2a84a29","sha1":"8e7b713a19b5c23c311f4b8963051071922bee59","sha256":"d2a677cdcf6ed29ba4bad2126b0da745f06c52ba400a14f13a4cd45db690022e","sha512":"d2b2f73c3ff403836e2d759a5a729480cd5eaead870fab5586117a746ea40cb954edc15e57f10120548adbc62cabccdb3b15b1445eb4ae9cccce9c875c8470d7","ssdeep":"384:ghmZir1p/oDjGJKRQYRD6eWSdptIMWwVfs8Rf11KIDgDgToPh9IPnZfZwq88:ghdbo3eq4z8rLnpiN8","tlshash":"a533f92519f2113705c3a1a26ab46f1befc1d507ca6ba61532fc0bd9afe3e46cc03569","first_seen":"2026-03-24T06:59:49.037076Z","last_seen":"2026-03-24T06:59:49.037076Z","times_seen":1,"resource_available":true,"data":null}},"time_used":26058,"timings":{"blocked":12992,"dns":49,"connect":23,"send":0,"wait":28,"receive":46,"ssl":12918},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"code.jivosite.com/widget/oE32nNZlkt","fqdn":"code.jivosite.com","domain":"jivosite.com","tld":"com"},"ip":{"addr":"95.181.182.182","port":443,"asn":210756,"as":"EdgeCenter LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.452Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jivosite.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Sat, 05 Apr 2025 13:51:50 GMT","end":"Thu, 07 May 2026 13:51:50 GMT"},"fingerprint":{"sha1":"91:23:D5:42:EC:58:B2:51:EC:57:F6:5B:46:CF:F5:2F:07:F2:2C:A3","sha256":"15:FB:10:F4:11:BB:CB:AD:9E:84:5B:16:F6:74:34:08:80:C0:40:EC:9E:C7:48:9B:F2:28:5B:50:81:78:82:8E"}}},"request":{"raw":"GET /widget/oE32nNZlkt HTTP/1.1\r\nHost: code.jivosite.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 06:59:31 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 6197\r\naccess-control-allow-origin: *\r\ncache-control: max-age=7200\r\ncontent-encoding: br\r\netag: \"69b1726e-1835\"\r\nexpires: Tue, 24 Mar 2026 08:59:31 GMT\r\nlast-modified: Wed, 11 Mar 2026 13:47:26 GMT\r\nvary: Accept-Encoding\r\nvia: 1.1 sharxy\r\nx-geo-shard: ya\r\ncache: MISS\r\nx-node: m9-up-gc5\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18118,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (18118), with no line terminators","md5":"bb1b9a4a70243889751856b12e8ba017","sha1":"ae4e02d99a7ae21d19fcd639f28f3174d9d64aa9","sha256":"e1f61c376df11a517a765eabaea30f00207cece6158108e520fbdbe6041b9e16","sha512":"d01f77c7d8007faea78b17fd8f12f16fa0cb817ed1c10d6bf56cef8aa247130e84cb4e03ff6fd769872becb1cd5216e849b591c4f3f846c8116007bac91c4144","ssdeep":"384:boU+JvepohmPF0jjrArr0aX55Mf7qISOqrebz8sROweqWcPdv:UI/AAjX54cr7sXWcPdv","tlshash":"8c823b6e7959b97743b218f9516f620a733549ebd404c920a401e98d7cb8ace813fef8","first_seen":"2026-03-12T11:56:30.35622Z","last_seen":"2026-04-02T00:30:16.283922Z","times_seen":873,"resource_available":true,"data":null}},"time_used":1133,"timings":{"blocked":495,"dns":325,"connect":61,"send":0,"wait":105,"receive":1,"ssl":143},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ezojs.com/basicads.js?d=terothorfi.com","fqdn":"www.ezojs.com","domain":"ezojs.com","tld":"com"},"ip":{"addr":"172.67.170.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ezojs.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 11 Feb 2026 23:13:32 GMT","end":"Wed, 13 May 2026 00:13:31 GMT"},"fingerprint":{"sha1":"04:64:CE:D2:9D:26:A0:56:1F:70:3C:36:88:FE:95:AF:04:E0:DE:CE","sha256":"BF:67:63:01:63:B2:C3:7B:76:28:73:99:C4:DA:45:9F:AD:C7:55:F3:FA:A5:92:20:D6:B6:7F:E3:DC:90:83:F3"}}},"request":{"raw":"GET /basicads.js?d=terothorfi.com HTTP/1.1\r\nHost: www.ezojs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Tue, 24 Mar 2026 06:59:30 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RQ2amjj8qjMnR9OEZ7QLfAGCt4K852GR7IkJ4UmVYCs8lNAm7lsHxVknUmu8bM8XDB1LN2yqFSomtYsTyt7i9e%2BPoKd7%2BqVacLOlp4I%3D\"}]}\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nx-ezoic-cdn: Bypass\r\nx-middleton-display: sol_denied_passthru\r\nx-middleton-response: 404\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: MISS\r\ncontent-encoding: br\r\ncf-ray: 9e13cb239c85dfec-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T09:47:05.247441Z","times_seen":13369813,"resource_available":true,"data":null}},"time_used":351,"timings":{"blocked":-1,"dns":62,"connect":1,"send":0,"wait":272,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/odometer.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/odometer.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 10263\r\nKeep-Alive: timeout=5, max=84\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":10263,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (10241)","md5":"11d31aa38b4b7e29bacc61cc3fe5cdf6","sha1":"b6b3b8730db8ad254f86752040ccb8521a0524c9","sha256":"981edc2c368c79ffac0376dd41ff6bef2b6c0abe2918b91ec16f49efc8ff1396","sha512":"6a93bf0736145d817f5053414bf7960f72f758b5a51d677262ba6e6162c591000e7d08ce6ac77a74a25c10f60919b57c3fc31f761d26eceb4d7162695182904d","ssdeep":"192:HABzlvQK8QecCHAOcu2a+OdI5s/GMb8XuulT:gBhv18QecCxVxz+7dlT","tlshash":"35229680ba11a735835371e151bf0609b7bb99bea404401df67c9dd9be29c38e12bf74","first_seen":"2023-03-07T12:07:28Z","last_seen":"2026-04-04T23:19:31.99057Z","times_seen":1117,"resource_available":true,"data":null}},"time_used":380,"timings":{"blocked":356,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900\u0026amp;display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:21:09 GMT","end":"Mon, 18 May 2026 18:21:08 GMT"},"fingerprint":{"sha1":"63:D1:AE:99:1E:49:D7:6C:71:F3:BA:F5:BA:47:74:1E:EB:90:E7:D6","sha256":"69:90:BB:9D:82:60:82:88:FF:CE:F6:B3:3D:DD:B5:B5:FB:F0:56:17:FD:FA:0D:BC:9C:5B:83:51:98:0D:2F:CF"}}},"request":{"raw":"GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900\u0026amp;display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 24 Mar 2026 06:59:30 GMT\r\ndate: Tue, 24 Mar 2026 06:59:30 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":64800,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"2b0492055bb5b23c5ed11d557a9c290f","sha1":"26e59353da26632e9cdbddd804cb0f526f53fc00","sha256":"b56d6d4c80db94680717f75c471851d4ec67f81078099e54553046772b0f90a8","sha512":"d86e4e14d6f2cb643dbf842996ab4d78eee181f4fe7d3f0ef292798252541396c6806f76992a772a18258527a5c94e10eb7d802ec3bde489a72bcf50e5ee65c9","ssdeep":"768:yFdF9FAFNFgBFUKF7FnFwJpK5g9UEf7h4YXogEU9SWWjD8TgfUS9hMNtG9g5UoTV:wE9YIWHHIHTxj","tlshash":"83531da1041b5440ab834ce223ce7e35fe0f92547141d075ebfc9b6baedbda6526836c","first_seen":"2026-02-19T22:23:13.630851Z","last_seen":"2026-04-05T09:38:44.419799Z","times_seen":1506,"resource_available":false,"data":null}},"time_used":173,"timings":{"blocked":74,"dns":1,"connect":8,"send":0,"wait":22,"receive":0,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jivosite.com/script/widget/config/oE32nNZlkt","fqdn":"code.jivosite.com","domain":"jivosite.com","tld":"com"},"ip":{"addr":"95.181.182.182","port":443,"asn":210756,"as":"EdgeCenter LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:31.092Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jivosite.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Sat, 05 Apr 2025 13:51:50 GMT","end":"Thu, 07 May 2026 13:51:50 GMT"},"fingerprint":{"sha1":"91:23:D5:42:EC:58:B2:51:EC:57:F6:5B:46:CF:F5:2F:07:F2:2C:A3","sha256":"15:FB:10:F4:11:BB:CB:AD:9E:84:5B:16:F6:74:34:08:80:C0:40:EC:9E:C7:48:9B:F2:28:5B:50:81:78:82:8E"}}},"request":{"raw":"GET /script/widget/config/oE32nNZlkt HTTP/1.1\r\nHost: code.jivosite.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://terothorfi.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 06:59:31 GMT\r\ncontent-type: application/x-javascript\r\ncontent-length: 721\r\naccess-control-allow-origin: *\r\ncache-control: max-age=7200\r\ncontent-encoding: gzip\r\nexpires: Tue, 24 Mar 2026 08:59:31 GMT\r\nvary: Accept-Encoding\r\nvia: 1.1 sharxy\r\nx-geo-shard: ya\r\ncache: MISS\r\nx-node: m9p-up-gc42\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1427,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JSON text data","md5":"48afcb7001c9bfa80b4792c354304b8f","sha1":"f110014a9137ca2d025f7266e9c48080105ae525","sha256":"46be6d165e897f6bc4a56241fa0f325245177e2fdab55a48bbcce6a3b8077189","sha512":"dfd0cda6dd19088b5c8811cdc7ffe593ef01af9961f3a49239278585b3f6a8fa2ef567fede125c88cd7f1233abbc7678633cc43fc276420186fb455b99ac9ec3","ssdeep":"","tlshash":"312111e64c48586b09857ec7a11bfe07393c83a6ef814f70ca989d2c10563d6131b60e","first_seen":"2026-03-24T06:59:49.045148Z","last_seen":"2026-03-24T06:59:49.045148Z","times_seen":1,"resource_available":false,"data":null}},"time_used":524,"timings":{"blocked":136,"dns":1,"connect":64,"send":0,"wait":252,"receive":0,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/jquery.magnific-popup.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/jquery.magnific-popup.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 20216\r\nKeep-Alive: timeout=5, max=85\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":20216,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (20087)","md5":"ba6cf724c8bb1cf5b084e79ff230626e","sha1":"f455c5f153f872e52265f87a644ff89fe14a6fb6","sha256":"3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4","sha512":"22c361e44dde632dedaff2625f6631e2fb02ba3b6487097b48baa09f02cd81fd381ebb7d053f525e52e56655b1f8e2b89ddcc0a002e1b0c35c0a6920823641d7","ssdeep":"384:lPhVPXQ2G2XAQyqVxRQ5giCCMLtA15h5/F6l8aZwHwztLCpmst:lPBIt8I5h5t1qkOLCMst","tlshash":"bd921894f2b2b21383a735b8686f70093a729952ed06c855a55d94d87efcec89037f3c","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-05T08:50:46.111233Z","times_seen":54655,"resource_available":true,"data":null}},"time_used":357,"timings":{"blocked":332,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/jquery.ajaxchimp.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/jquery.ajaxchimp.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 2381\r\nKeep-Alive: timeout=5, max=82\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2381,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (2381), with no line terminators","md5":"36d1b0e5a3a7397b267e704beb2f7272","sha1":"86df23e41520d19dd0c6928e4a5de89c1ae172a2","sha256":"2dcc9f6916671ee0ee4c5f7c7b6f13c519189b65d371a39309c0d95b79050c28","sha512":"e728f97a563dbba72519ef7ff7b6e3de3265c3cf8ef574affed6e67bc9bf2d1f1c2a79d3e7ead1f2a1d6fd4610fcca332e0ddcbd31de608a4ce64464b404926e","ssdeep":"","tlshash":"4741444025101bc2418b21f2e4c7bbe370e7d5958824f558e668e0e30ee4dcdae27a9e","first_seen":"2023-03-07T01:41:09Z","last_seen":"2026-04-05T07:14:00.944824Z","times_seen":4183,"resource_available":true,"data":null}},"time_used":427,"timings":{"blocked":403,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/contact-form-script.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/contact-form-script.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 2058\r\nKeep-Alive: timeout=5, max=80\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2058,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"7080ea5e3dd64053fd26aba2ab9a1668","sha1":"226b91fc0214f3fe37ea57f57867b8af95e2723c","sha256":"5393831718a2d7e48f711cb74966b65c1c484da3b9fbb67fcaac34604fbaf535","sha512":"5b7fa0271c1732c82e8365e1643ca42797345ee9b48a65fc47cae562a2f5a36448695ac58dc315bc483d8f36632b843851347b81fba0f3e6a66305b367aa94b0","ssdeep":"","tlshash":"3741de08b57626c80a273abda6df5104e67052239509ed113c5cb9c49f9cfa936b23bd","first_seen":"2023-03-07T16:37:54Z","last_seen":"2026-03-24T06:59:49.052612Z","times_seen":39,"resource_available":true,"data":null}},"time_used":473,"timings":{"blocked":449,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800\u0026amp;display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 18:21:09 GMT","end":"Mon, 18 May 2026 18:21:08 GMT"},"fingerprint":{"sha1":"63:D1:AE:99:1E:49:D7:6C:71:F3:BA:F5:BA:47:74:1E:EB:90:E7:D6","sha256":"69:90:BB:9D:82:60:82:88:FF:CE:F6:B3:3D:DD:B5:B5:FB:F0:56:17:FD:FA:0D:BC:9C:5B:83:51:98:0D:2F:CF"}}},"request":{"raw":"GET /css2?family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800\u0026amp;display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 24 Mar 2026 06:59:30 GMT\r\ndate: Tue, 24 Mar 2026 06:59:30 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":58085,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"52d638a6553570c3ad986bba186f87a3","sha1":"da89c64b60fbc4f0d5442625759a6773ea59eb33","sha256":"36d64bccd2b2274c66aeb6e420a20c306ee9d350b7c873899fb5e31de0416765","sha512":"43c270c640ddf25de6bd9e9a0154e8c8d37b4c3cc2ebb810f853870910e5aa199c504b38478d0595f5fbf81904a4067863f7c8c0fea612932a24f8fb36f195bf","ssdeep":"384:+eO2pXt2tv/qY49Ynx8bOjI8t7KvGqY49xn+vROFuGttcvoqY497nMZ6OiFLty5e:YbPUiCAgkgHL8OOVosL3JbcI/z","tlshash":"84431c910417244066432dd233de3e30ee0fa2607084c076abfd9bdbeedad6a62b535d","first_seen":"2025-09-17T00:16:45.671638Z","last_seen":"2026-04-05T09:22:18.745536Z","times_seen":14859,"resource_available":false,"data":null}},"time_used":192,"timings":{"blocked":86,"dns":0,"connect":9,"send":0,"wait":20,"receive":0,"ssl":75},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/css/magnific-popup.min.css","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/css/magnific-popup.min.css HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 5235\r\nKeep-Alive: timeout=5, max=95\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5235,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5235), with no line terminators","md5":"f0472f2237f87aabc41e6a16f049ff58","sha1":"20eee4a760368f4e90402bee75909f213a9d024e","sha256":"9af0f4e90a7cba0dbe38575666bfedf0e853278155957eb78e63761e33b88a11","sha512":"d5026c8393afab927f309b026503dd1dbac712aa49f923a5be4cf39f4911b6c15e9070608f1ef54003cf74df364ca8a4dd02371fb785029233d1ea6ffd90e0a7","ssdeep":"96:Vc2SCO7EWPWNM0aDQX8EiUkhudlsbFDm5Mk9rCWhb:V0CO7EWPWNDaDQMEiUdiqMk9GWhb","tlshash":"b0b165f3a941313ad633d926d5c39b9c3223a227f6a3569fdf82a419c6cf4cc1625748","first_seen":"2023-04-05T06:43:08Z","last_seen":"2026-04-05T07:14:00.943213Z","times_seen":4122,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":90,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/main.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/main.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 7212\r\nKeep-Alive: timeout=5, max=78\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":7212,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"657d88853178d379ddc078ea16e14d38","sha1":"0d3e85e6a4782fb76b9357150a14cb10fe713161","sha256":"75e2f30d0b5dc236ffa2bea80cc7fc6c387bd3e560968020f4168ecac2c2de22","sha512":"b37ae0ff84975a6fe97a29836d2f2e8a001af7706ed4a90155beedb4cdafa22ee583cf6046c7c3d35fdd0b7a93fe58497bb212ed967bc56e1197eab1841cb487","ssdeep":"96:A6Ad5K3DQ43X51EHkX5sR1u1/n5sRDVyL5nR1u1VjpSkguiRUJx1MOT0YmGwpKJJ:dW5KD3HEHZEEVyE6rRUvkk1","tlshash":"7ae12304f33c14a6007b30a54dbea5c5de1e1023d90199aaf8ed1a7c5fd936e22b6e5a","first_seen":"2023-03-07T16:37:54Z","last_seen":"2026-03-28T13:41:34.509796Z","times_seen":39,"resource_available":true,"data":null}},"time_used":520,"timings":{"blocked":496,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/css/odometer.min.css","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/css/odometer.min.css HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 3116\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3116,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3116), with no line terminators","md5":"c5c5fd142cb067412692ca3202cf8884","sha1":"839930805cd5086af7bc88b4248d50f533bab7c0","sha256":"c023b507dce43045404d4f737df6672956dc2cb3dfca9dc61b74480219315ef0","sha512":"71b1a3dea5ed53d1a5356cbf3d09181b20f68191ac7a2b9edc31a48543bb0b47be25fcf4ec515b0cbc060c74d3687b9af4490ea4b07c3b1a4b59ede74dff6a8b","ssdeep":"","tlshash":"8351e2154f91136863367506bac81b60befce9015123e98e735da54bcf43db9e398b0b","first_seen":"2023-04-08T14:13:01Z","last_seen":"2026-04-05T07:14:00.89346Z","times_seen":1440,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":67,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/jquery.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/jquery.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 89698\r\nKeep-Alive: timeout=5, max=91\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":89698,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65245)","md5":"f6524134ec87c9db4a8daa80c26e981b","sha1":"a96b404a237ec558619ae29ea64a5755c19ec950","sha256":"a747e0544f2dfe65b83c1282bacc1356d47ff1dcf6c50da8b629ea8dcec13eb8","sha512":"03deaeff42426225306ab2ecf433b49e1a54a1520400e22ab344989c34715bb506b89cd0060bb891fc3e882a4461538e02781aac0c0e0f1175595f82c474444a","ssdeep":"1536:TjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h5cApwEjOPrBeU6QLiTFbc0QlQvakV:TYh8eip3hXuf6IidlrvakdtQ47GKl","tlshash":"c59309ddb2c6702257a720ba007f510bf236199d6c4d8450f125d8eabc78a4e827bf7d","first_seen":"2023-03-07T12:40:18Z","last_seen":"2026-03-28T13:41:34.460614Z","times_seen":114,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":180,"dns":0,"connect":0,"send":0,"wait":25,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/form-validator.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/form-validator.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 6055\r\nKeep-Alive: timeout=5, max=81\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":6055,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (5862)","md5":"81df0465f243a2e7b7b06b8ad6015173","sha1":"996eb26bb4bdb44ed5257d048cedaf3ed0a6f90c","sha256":"c31a654938abf168fca328d9663ea83999b87ff36d18b016ea8aace1a9cb2cb1","sha512":"80d479d6816cbebc780d89d37bdff0316f731c18e220042b63014875508b942699567271bdcde224f81ad07c31e7febac8e156249dc1217f5b5fac255679db73","ssdeep":"96:CFMhGbU563CvldugvwYdfWA3oTa9+xcuS+5ijkunc9s5BeK7p8vmiIKpiyW:CFMh+U563CvzugvXdfZUopjkunosfR+W","tlshash":"b3c12449366321921f9234f5419b838b72b97b3cc50a409435ea84f1aaf8fc567f7b39","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-04-05T06:57:02.350903Z","times_seen":1311,"resource_available":true,"data":null}},"time_used":450,"timings":{"blocked":426,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/wow.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/wow.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 8208\r\nKeep-Alive: timeout=5, max=79\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":8208,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (8152)","md5":"a924fea1853b41441d4a3218b92f0568","sha1":"86301088b2e346ca5119cb29125134f667f3be20","sha256":"aad34c30b42a10523b6227090d244b8f3cbc60166e11195b5d7e3026e776abe1","sha512":"0aaa13babf1eab63e6fe6813ad42f78e71b98c4541226792e6212f816c065118934433d7b37c27bccccabd3a52b693cfea52fd5de15bcb4a89c604a0eeb6b553","ssdeep":"96:drZgL1xvPV6GqKyR6TYdtHFMLzA4pOROVEE1fosvGeaMozHImBaokbl:dry9PVfSnAPAjROVEEdos+eatzHILoe","tlshash":"330265c9ba967035c75792f2833f0106b23a59eea028047cb5b88dd57d38858533bf38","first_seen":"2023-03-07T12:40:18Z","last_seen":"2026-03-28T13:41:34.427467Z","times_seen":78,"resource_available":true,"data":null}},"time_used":497,"timings":{"blocked":471,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/css/responsive.css","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/css/responsive.css HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 22223\r\nKeep-Alive: timeout=5, max=93\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":22223,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text","md5":"11689d630efa73898126701f787102e8","sha1":"ebeffab54ee3dedf16be06d38f18316c76e4965b","sha256":"913e8d7cd4b9b9b0869788df9f4719983a680d44e92d8cc66a4119ae8f1cc6c8","sha512":"f0e99a461b3d3fe7e072fcc71b92e20ee7cfc46e9adf24c2643732409ccbfb0dfb71aeb23cdc505359088d205c249ef890e829158cfe4d4c09d2840c0c353bdf","ssdeep":"384:PZARFnBgf8F7IzbyUt2RQ3ZARFuQNFIbH8AHFTFv:PZARF1MZARF0cAHFTFv","tlshash":"55a28a8f7aa2011c79b676b8ae6d3a51b281d803d28eece375c0617ccf857d589d264c","first_seen":"2023-05-03T20:08:05Z","last_seen":"2026-03-28T13:41:34.462585Z","times_seen":38,"resource_available":false,"data":null}},"time_used":170,"timings":{"blocked":144,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/translate.google.com/translate_a/elementa0d8.js?cb=googleTranslateElementInit","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /translate.google.com/translate_a/elementa0d8.js?cb=googleTranslateElementInit HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 13 Sep 2023 08:28:20 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 86567\r\nKeep-Alive: timeout=5, max=92\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":86567,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (2450)","md5":"e746333b7d25fb74bff26093442503f0","sha1":"1dd12c5e16dabed5391f7fa8e83594451a9c7539","sha256":"bd5d97d9ad99fe027103908c04c28da40867be459c423eabdd64518a419f295f","sha512":"8f4210fc75528925b4ccec1ab7916755265c198b60f2e0306dcfef9b6463a2fa5bcbc3a46712c2ad9dbdc607e5cc08dbfb9377cbed10c9887c86ebac4a1af528","ssdeep":"1536:XDyk+3tfkniaWXPC/s2eZrOCoSEZfq+ZT7K0g08KiCwNWsW:X7IXceZSCAaKiXW","tlshash":"d783c889b2a271618257f5b5413f000fb27f59aaf8584dacb288d8e16df094d427bf7c","first_seen":"2025-01-08T10:36:52.047078Z","last_seen":"2026-03-24T06:59:49.071653Z","times_seen":2,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":166,"dns":0,"connect":0,"send":0,"wait":25,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/owl.carousel.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.474Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/owl.carousel.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 44342\r\nKeep-Alive: timeout=5, max=86\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":44342,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (31997)","md5":"f416f9031fef25ae25ba9756e3eb6978","sha1":"e2a600e433df72b4cfde93d7880e3114917a3cbe","sha256":"a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d","sha512":"6cfb3b01eea956f84e4a221cc940a547bfead8e02c462a2fc38bc0917fb325bc374a101e7aa7b3ab9d11208708511abb39adb4ad6da7daaf9fc9704d714f65af","ssdeep":"768:UCI7dmuMFAAJG4dlQKNORpnXGAtep2lcwJeL+wr2RSGc7UuHjRUQuFBt33:PITMFC4dbMVRSGcgRDV","tlshash":"e7137346b3202d2a869b61a0663f160bb23a241ce414547d7d79e6de6d7dc8c213ffbc","first_seen":"2023-03-07T01:02:37Z","last_seen":"2026-04-05T08:52:22.575975Z","times_seen":48277,"resource_available":true,"data":null}},"time_used":333,"timings":{"blocked":306,"dns":0,"connect":0,"send":0,"wait":25,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/css/owl.carousel.min.css","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.443Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/css/owl.carousel.min.css HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 3352\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3352,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3185)","md5":"d964cdd4d9e85b8c1185a92bae34b049","sha1":"a0e2d64bcbb108f0415f364df5b6fabb8a290365","sha256":"aa7e59e6ec8871088cfeb47bac59a6475c815357deef042c61a5c3c965390546","sha512":"acc8bae151fb7542dd53d2a3ecacc9cf09e18109958970dd56d8b1cd2643811f9d5dfdf8499b5cf74e8cfdc6ad85e6be6d9cddea68670a368280576e9c093a13","ssdeep":"","tlshash":"c061bbe5314a265f480f83221dd81e86393dcc52d8660a5a92bbd71447dae6d213ffcf","first_seen":"2023-04-06T17:45:15Z","last_seen":"2026-04-05T08:43:16.932869Z","times_seen":1654,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":17,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/jquery.meanmenu.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/jquery.meanmenu.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 5941\r\nKeep-Alive: timeout=5, max=88\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5941,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (397)","md5":"6bebdd3712c76e032c638ae87533f6e2","sha1":"0f3be5ffa43040e1d66fa586217dc6dce37b4895","sha256":"b04a1f06f6d257efc7f82ec0e859589e0fa562794ca4bc5400a9dc14c4caf421","sha512":"5b71ff4f5ab0d52665bd351b6aa6a3f047ede54e19bd2a364fc8bfca7d436cb5065ffbe8c61f58bc97a3eeec9ce47fda1a61fdd407d4dd852f8f61c8ecaab81c","ssdeep":"96:nz71uMXsA2XNnaToz99t56txMsLcCMoGIh7b6eFSEvU:z7QMXsTP6VQCMlIhKAvU","tlshash":"6cc1ef6bb5b044f8a0bb7855b93eb23030f3640bf949e90031ad65262f19a7515b2ffd","first_seen":"2023-03-07T16:37:54Z","last_seen":"2026-04-03T08:53:52.619424Z","times_seen":110,"resource_available":true,"data":null}},"time_used":282,"timings":{"blocked":258,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"terothorfi.com/assets/js/jquery.nice-select.min.js","fqdn":"terothorfi.com","domain":"terothorfi.com","tld":"com"},"ip":{"addr":"109.199.100.15","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://terothorfi.com/","date":"2026-03-24T06:59:30.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"terothorfi.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 18:11:49 GMT","end":"Sat, 09 May 2026 18:11:48 GMT"},"fingerprint":{"sha1":"38:C9:2A:44:D3:D7:4F:29:F1:17:87:7B:13:D7:F0:11:A7:2C:95:56","sha256":"53:2B:98:A0:EF:F3:7F:19:B1:6D:40:76:F6:6F:44:2F:90:44:EF:6B:25:EA:20:54:51:71:13:55:0F:B9:FE:7D"}}},"request":{"raw":"GET /assets/js/jquery.nice-select.min.js HTTP/1.1\r\nHost: terothorfi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://terothorfi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 24 Mar 2026 06:59:30 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 21 Sep 2022 16:45:12 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 2942\r\nKeep-Alive: timeout=5, max=87\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2942,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2822)","md5":"d13462ec489f9f0c309a811f85feb3d6","sha1":"d9545f8b139eae5b387de1a60a84abe949c7e88f","sha256":"66bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a","sha512":"36a61db3cb2eea38afcb5fd62e85bcc75b593110fbff565f8561bf8dc4502cecd5d64d6b20e0c2a4c8280676abe505ec84a24657bbe2d0b5cb3573e816c33966","ssdeep":"","tlshash":"a4511114b10512f648ff25d37911b147a075493dc42ac14be97e86b21efec02aab6d5f","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-05T08:45:39.965567Z","times_seen":7282,"resource_available":true,"data":null}},"time_used":306,"timings":{"blocked":282,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"terothorfi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}