{"report_id":"1df43a6b-de39-451c-b077-413eaaf6ddbd","version":6,"status":"done","tags":[],"date":"2025-08-08T20:39:54Z","url":{"schema":"http","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":0,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"final":{"url":{"schema":"https","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"title":"Harmtide Trade ™ | The Official \u0026 Updated Website 2025 🥇"},"submit":{"url":{"schema":"http","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":0,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-12T20:39:54Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":1}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-08T20:39:32Z","timestamp":1754685572,"ip_dst":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.22","port":34438,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)","source":"{\"timestamp\":\"2025-08-08T20:39:32.193816+0000\",\"flow_id\":148326167354382,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":34438,\"dest_ip\":\"34.117.59.81\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2025331,\"rev\":5,\"signature\":\"ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)\",\"category\":\"Device Retrieving External IP Address Detected\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Linux\",\"Mac_OSX\",\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2018_02_07\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0043\"],\"mitre_tactic_name\":[\"Reconnaissance\"],\"mitre_technique_id\":[\"T1590\"],\"mitre_technique_name\":[\"Gather_Victim_Network_Information\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_09_19\"]}},\"tls\":{\"sni\":\"ipinfo.io\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3602,\"start\":\"2025-08-08T20:39:32.138254+0000\"}}"}],"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-08-06T15:10:32.619142Z","alert_count":0,"request_count":2,"received_data":17368,"sent_data":1078,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ipinfo.io","ip":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2013-04-23","domain_rank":8136,"first_seen":"2013-12-16T07:25:53Z","last_seen":"2025-08-08T17:49:33.137404Z","alert_count":0,"request_count":1,"received_data":1153,"sent_data":466,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"harmtidetrade.net","ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"domain_registered":"2025-03-30","domain_rank":0,"first_seen":"2025-08-08T20:39:55.035282Z","last_seen":"2025-08-08T20:39:55.035282Z","alert_count":34,"request_count":34,"received_data":678772,"sent_data":39900,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"jQuery:3.1.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":235,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-08-06T15:20:03.099982Z","alert_count":0,"request_count":1,"received_data":34818,"sent_data":476,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-08-06T15:14:12.503348Z","alert_count":0,"request_count":1,"received_data":6679,"sent_data":476,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":439,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2025-08-06T15:25:40.423241Z","alert_count":0,"request_count":4,"received_data":344832,"sent_data":1941,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-08T20:39:32Z","timestamp":1754685572,"ip_dst":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.22","port":34438,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)","source":"{\"timestamp\":\"2025-08-08T20:39:32.193816+0000\",\"flow_id\":148326167354382,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":34438,\"dest_ip\":\"34.117.59.81\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2025331,\"rev\":5,\"signature\":\"ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)\",\"category\":\"Device Retrieving External IP Address Detected\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Linux\",\"Mac_OSX\",\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2018_02_07\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0043\"],\"mitre_tactic_name\":[\"Reconnaissance\"],\"mitre_technique_id\":[\"T1590\"],\"mitre_technique_name\":[\"Gather_Victim_Network_Information\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_09_19\"]}},\"tls\":{\"sni\":\"ipinfo.io\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3602,\"start\":\"2025-08-08T20:39:32.138254+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/js/script1.js","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"3d0892d336959ffc3116f3c85ac1f1ca","sha1":"ba9dafbc2165b509325094c33f1ebe7458fe68be","sha256":"a82f48e366c855affe0c103158ae6b6d02923e633e95103bd196f2195790788e","sha512":"e88ed3b2a9ba03f7cc54f8c6cf3315156024974eba16e9f3e229dd99acff29c467f5555a6bc2a7ee55e12e835703b7d87f8aac29aa0b0ba6c20cc53ee45d9c1c","ssdeep":"384:uKWwubC7r3oQIrc6ZhTnJ4NjEgcMwPTa39F54Z/+w2fSLaBASB7V2bd4328DYSlS:uKWwubC7rYQIrcenJojEgePaX4Zr2fS/","tlshash":"ec72c5da328174a20baf20dd407e5547f2281899f44a90acf62d9dfd3d2988631b3f7c","size":16817,"data":"","first_seen":"2024-12-15T07:55:37.941654Z","last_seen":"2026-03-08T19:49:45.589996Z","times_seen":3034,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipinfo.io/?callback=jQuery31107851070688699865_1754685571969\u0026_=1754685571970","fqdn":"ipinfo.io","domain":"ipinfo.io","tld":"io"},"ip":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8cf96f4ccfa2e36bf35a6384b8630e3d","sha1":"eeac3cbfb8bbdb04b6a4f77b15cde90834352a3a","sha256":"32c346041e3f7a4d181a246bfe960b333d22cf65f104d3d5144053165cebcbec","sha512":"5eb3762ad6ad0b14290a5662520c82ca0ac4d36f764c6b7dd18ef9ff68381a41089e4e8e2e3e0143957eaa777d113bb8d3b1bb20dd138ff1ed7c57095338a347","ssdeep":"","tlshash":"2401cb1750381f7aa9b94648841b9e0b33592e2f0182b59a4ea22b5c44186b3a0b037e","size":672,"data":"","first_seen":"2025-08-08T20:39:57.571879Z","last_seen":"2025-08-08T20:39:57.571879Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"be8412b24dc2374a8eb8c446774e2765","sha1":"c98f7005e9dbd00ec118c3cc2370bf3bfe6cf8a6","sha256":"8d6246375bc856c30649b3e800b02a22d913a7f03f08d92a7b2440824ff2ce9c","sha512":"070efefcd7228793e742ac76bbbae58d49ad8de94cd56863838f97955bfd86dbbd53eb41b1ff2aa59eaa3e6aeeabd5334e622824a48234d8997b6db397c79004","ssdeep":"3072:9E030DWujFs3OwPss3MwPaPjq09Q2xFM8M0TrpEBW6cC56kmLxTg/QKWVSpDUkzy:9E03+WqHjvxFM8M0T7IUT","tlshash":"0044f0ebd63c9737a1e87b35968eb3cd5a8cbca3c858567826c3b54f52784e0706c205","size":264516,"data":"","first_seen":"2024-11-14T19:07:22.956908Z","last_seen":"2026-04-06T06:41:42.122536Z","times_seen":4248,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"eventHandler","is_inline":false,"md5":"d340024e4734e72c0555fc2a541e74a1","sha1":"995e53f4089e42f677947a6f48e5ff2a25ed9ab0","sha256":"8a04e32acd55cec723824bb94592371f3dc9ab66e579560075bd3c8e54efb9a6","sha512":"86a412db921513f86162b7864a0002032b11a6e4514b079ea5a81bc8299c46b5d1a1feaf8199b976b9a8b24257322822fed38cdffbc32c1575a242bcc39854a3","ssdeep":"","tlshash":"537000cc003c000000330300c03f00300c000c3f000cf30cfc0cc0c000cc0000030c00","size":19,"data":"","first_seen":"2023-07-02T07:28:12Z","last_seen":"2026-04-06T08:09:04.989229Z","times_seen":550,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"43cb7fdd8c6b65ac47a7744f384eb61f","sha1":"411a7ae7ac03b98a9c74c0288a2217d0c872db19","sha256":"1f15ca22a1520682c15afb82ad2fe5948e844527491a8ab9a7a25dba9f008117","sha512":"d097cc7c9641dc0418b15e63641a36c57413a5adb0f8ff06443c194eb02f3dfe4ac6b5a347cba2bc66173a7c8209c06b850765a5490a8e4e58bb95874e23ad23","ssdeep":"","tlshash":"99f0ec3400b44036c113579739ce7ec0511114b7a14c9c99775f860eafba8b00d792d6","size":474,"data":"","first_seen":"2024-12-15T07:55:37.981429Z","last_seen":"2026-03-08T19:49:45.614216Z","times_seen":3309,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"0ffb8176e4a722094cd99d9eba887a49","sha1":"b24b7d353897a313f011696e14fb8416afcf8ded","sha256":"77a606439f124b6bc8f8b543a67152c71b4a37a7e8f6c07ff4e94c29de68821f","sha512":"df65a232c82ca4d20e446f6ffdd3f9d9eb1bdf8c96d0f01518e174026e4d9ba54d64d488d2830336c71ece39e6373d286311edd1c37310273f02c96c1e8402a7","ssdeep":"","tlshash":"1211594916f411f2025fa06ad69b5b8a333050d7740aee097e0c4ba03fa5d664aba7d6","size":1043,"data":"","first_seen":"2025-04-04T02:28:34.857804Z","last_seen":"2025-08-10T17:37:29.31525Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"eventHandler","is_inline":false,"md5":"7c3c3ddeb80438dcbb3d081d2d00e152","sha1":"5a4016732ee72ec77b4f6ab17047bcea6d2ea34d","sha256":"321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187","sha512":"b252f7dc795284fe8ce404711809130d8e16670a8e49b271f9a24b04a542a0fccb7a8c7238c12b37db35fe73a2fbf1cdb374468574db4e6d39975a17dca547a3","ssdeep":"","tlshash":"de6000f0003000000003c30000330cf300000c0f00ccc30cfc0000c000c00000000c03","size":16,"data":"","first_seen":"2023-04-10T15:57:29Z","last_seen":"2026-04-06T10:09:37.167833Z","times_seen":235544,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"fa51229aa01856d2d2eb14edb15da2a9","sha1":"299c24a72b500c684012a92b603b0ceebb6cc4f7","sha256":"f895d30ca93f4c7ed3ab49afec67ddef3a67f6c54255d4d1b3f2ef2dc76e4776","sha512":"e663db8efdd666f90c5429a515f1ba1cdcaa1ef072cbb0243a1625a66507f01fd2311ace154e584dd40923cc9231836819d764c3ac18af57a567830738fb2f72","ssdeep":"96:ySvWs+v+JV89Xlt6jyJijWo6M24/z2i3/Js3:9vWs+vbdlvJijWo524/Ci3/O3","tlshash":"81b1108935b127798a33787967cf5100262aa16b4440ec417ddd4fe02fc8a9c27a7bdf","size":5471,"data":"","first_seen":"2025-08-08T20:39:57.605559Z","last_seen":"2025-08-08T20:39:57.605559Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/intlTelInput.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8d7c34c441a0c73f54b225cc51f30de1","sha1":"f0b6bee317c54aa421626eac803f682cb1b06fe8","sha256":"5aeda5f302d419537edff95e71c9ab97fa5f25f5cc4666e0ca5907a27ac1f4a7","sha512":"ae4eea7dfe62cd0ac55c3ea87ddd3f1da2a0e8514657b3a7bd608d64d95d6776522f2ecef700dc0a8eb83bded5602b5b0bd22103e2b71948d00525eea77c93c5","ssdeep":"768:3Pn03Xlqn/kiICXpwJx3ycC/nFjjB7dH24y4Js:3+iIfycCxB7dG","tlshash":"4bd2e6aeb3652b37a7fd82a260a50543af7f79444604042d7cac8ede1298ed171f5b38","size":31113,"data":"","first_seen":"2024-11-14T19:07:22.945119Z","last_seen":"2026-04-06T06:41:42.188932Z","times_seen":4319,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/js/jquery-3.1.1.min.js","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"e071abda8fe61194711cfc2ab99fe104","sha1":"f647a6d37dc4ca055ced3cf64bbc1f490070acba","sha256":"85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf","sha512":"53a2b560b20551672fbb0e6e72632d4fd1c7e2dd2ecf7337ebaaab179cb8be7c87e9d803ce7765706bc7fcbcf993c34587cd1237de5a279aea19911d69067b65","ssdeep":"1536:9NhEyjjTikEJO4edXXe9J578go6MWXqcVhrLyB4Lw13sh2bzrl1+iuH7U3gBORDT:jxcq0hrLZwpsYbmzORDU8Cu5","tlshash":"3183d5d9b2c670529b7730b850bf450bb17a98dab44c8d60f058c5d57eb8a8e507bf2c","size":86709,"data":"","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-06T08:20:49.796968Z","times_seen":138455,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/css/intlTelInput.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/intl-tel-input@24.5.0/build/css/intlTelInput.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 2361\r\ncf-ray: 96c1d2d70e0a56c4-OSL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 24.5.0\r\nx-jsd-version-type: version\r\netag: W/\"403c-QBsg/WGPIFw7qhwA2rXqpFy0oOU\"\r\ncontent-encoding: br\r\nx-served-by: cache-fra-eddf8230115-FRA, cache-lga21960-LGA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 3165700\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=qd8kZzVhlQQdzVixlYnVOHOFO%2FKbdzg6YG90mGfgtwPt7g6nueHSp0dkVmWmvgQ0xWqbq9p6bXTCnaGyXFFGnYwSuFXkL9VviSbT8OsEhk5X%2FwGFBIaHn6rUKQhoH5CM6%2FA%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16444,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"31cc7c1401a02ca75f8e903777df602a","sha1":"401b20fd618f205c3baa1c00dab5eaa45cb4a0e5","sha256":"04a435c7d3f367d9816544975c24deb53596f62f801d8a1f208d4e55cc7c4277","sha512":"13f510ea338392976fc33b28c2b7392e44ee0640bda2a0f1f7a7148fdbfd4f9aa47bf24b15bdd103f3c0be1cc003dc38adb3041dff2247d4873db62cc2a746d9","ssdeep":"192:WzvSqT2sd5uVsAPRY6e5yE9y3tzEUbyhG/JYyiKdjr+/TEHRik1B3EBu:4v2sdk1RdE9y3C+Rd3+/TyH","tlshash":"f3728c2742b41d3ea75dc1ba38a2c4f5733f588a70aecc96eec8100e5c87791a5ebc40","first_seen":"2024-10-22T10:29:57.919158Z","last_seen":"2026-04-06T06:41:42.16428Z","times_seen":5494,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":22,"receive":1,"ssl":10},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:32.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://harmtidetrade.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 06 Aug 2025 21:38:48 GMT\r\nexpires: Thu, 06 Aug 2026 21:38:48 GMT\r\ncache-control: public, max-age=31536000\r\nage: 169244\r\nlast-modified: Wed, 23 Apr 2025 16:05:59 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-04-06T10:07:28.895765Z","times_seen":296878,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":128,"dns":0,"connect":0,"send":0,"wait":16,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipinfo.io/?callback=jQuery31107851070688699865_1754685571969\u0026_=1754685571970","fqdn":"ipinfo.io","domain":"ipinfo.io","tld":"io"},"ip":{"addr":"34.117.59.81","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:32.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ipinfo.io","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Jun 2025 04:48:58 GMT","end":"Wed, 17 Sep 2025 04:48:57 GMT"},"fingerprint":{"sha1":"88:A4:4C:CB:13:BE:CA:B3:D3:96:C9:57:6A:11:AC:45:CA:0A:83:02","sha256":"EF:82:82:40:9D:7E:6E:0E:29:F7:26:8C:BE:6F:45:5A:78:DB:02:37:8A:E8:EA:95:39:17:EF:02:A4:05:30:B2"}}},"request":{"raw":"GET /?callback=jQuery31107851070688699865_1754685571969\u0026_=1754685571970 HTTP/1.1\r\nHost: ipinfo.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-encoding: gzip\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nvary: accept-encoding\r\nvia: 1.1 google\r\nstrict-transport-security: max-age=2592000; includeSubDomains\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":672,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (391)","md5":"8cf96f4ccfa2e36bf35a6384b8630e3d","sha1":"eeac3cbfb8bbdb04b6a4f77b15cde90834352a3a","sha256":"32c346041e3f7a4d181a246bfe960b333d22cf65f104d3d5144053165cebcbec","sha512":"5eb3762ad6ad0b14290a5662520c82ca0ac4d36f764c6b7dd18ef9ff68381a41089e4e8e2e3e0143957eaa777d113bb8d3b1bb20dd138ff1ed7c57095338a347","ssdeep":"","tlshash":"2401cb1750381f7aa9b94648841b9e0b33592e2f0182b59a4ea22b5c44186b3a0b037e","first_seen":"2025-08-08T20:39:57.571879Z","last_seen":"2025-08-08T20:39:57.571879Z","times_seen":1,"resource_available":true,"data":null}},"time_used":265,"timings":{"blocked":46,"dns":2,"connect":26,"send":0,"wait":155,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/zh-TW.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.789Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/zh-TW.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 870\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":870,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"2a2b643bc15c7363c9e58e6b47d7de30","sha1":"506ab44f76022397b3aa9682e8972d7944703d54","sha256":"c63293f5412adc096b8e492e88b8d8edfca5367a491acdd9071ef8d31b4ba9a1","sha512":"a742115cc74831e58f2607fda3ecdf88d8a01d1f9f19d784e1c46a24f9dc23f3a8b5f11251b1c6c911a53a18ee3a01d841e82952f7ab97fcc44b2a0673238e43","ssdeep":"","tlshash":"1f1196ca2450d5d7c2ea12e389ee4b452b4f4afc28560d886c151ab511df1d740e4710","first_seen":"2023-06-10T08:53:38Z","last_seen":"2026-04-06T08:09:04.978628Z","times_seen":4085,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":179,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/hr.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.791Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/hr.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 982\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":982,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"41a7b90f600ed32eefb5e620a4f653fc","sha1":"7a6ab7cfc55a1239de75e073430c9634d5c18746","sha256":"63e36970eea32e52849d7b4d3a15d1da36be12ad3078df8c2b848aa7e9baa19b","sha512":"004bddcda655838947c0922be1f74ac3833ca444f3c872c9432232e5660f7ca9288c87acf2d1df19a21a768ae8a04e3f67278f7b6be4998a5e0355f279ba92dd","ssdeep":"","tlshash":"261165dec411043c410b39e6ae9b0bd989b767ac43520a45906db49abc795043ee49a5","first_seen":"2023-06-13T00:33:19Z","last_seen":"2026-04-06T08:09:04.959103Z","times_seen":4097,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":204,"dns":0,"connect":0,"send":0,"wait":42,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/pl.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/pl.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 380\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":380,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"44c8193715ca274b0074f1bb80c9e597","sha1":"e0ad2c0c5ba99953d42dfafde03b81289e180168","sha256":"3cd67729cd6ce09de1e48b04d1246a349597239241989e61356b99b588c0d90f","sha512":"f303b9ac87a8e77eb79573b9b2d7df819474084430ea08d2da7a08800d42e7367857c8b3527b437e3c5d7cf941fb64bbf0fd0f8e87e68d356372825bf626a6ae","ssdeep":"","tlshash":"ade0f1e985542c6eca650ca212372875e89380a10e173492c0e466eb62867078953203","first_seen":"2023-05-07T21:05:59Z","last_seen":"2026-04-06T08:09:04.955319Z","times_seen":682,"resource_available":false,"data":null}},"time_used":334,"timings":{"blocked":296,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/images/arrow-down.svg","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/images/arrow-down.svg HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/frontend/assets/en/dist/css/style1.css\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 432\r\ncontent-type: image/svg+xml\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":687,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a60b35876f9b28d59bed3b7e4abf6ba2","sha1":"12c7639426c80f97352cf3fd7a5bb968da984459","sha256":"7ff5a0abbe0db2a64746dd03b7218d574c1cc2c0e1ff9ddc30850e51da43e373","sha512":"f11d5d96bc13d4f84716084714ed9935945f17c6f6b1066d2672342820a4a7f54e55d271197953468c11853f1159c754e9bddd4cad92da6099ef7fd54ce493de","ssdeep":"","tlshash":"1e01f4c4c20544f8f4929f50daf4d5c3eb3034baf1d44c4cb55526b42122586d90fabc","first_seen":"2023-11-27T07:36:46Z","last_seen":"2026-04-06T08:09:04.971709Z","times_seen":396,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":16,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/css/style2.css","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.741Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/css/style2.css HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\nexpires: Sun, 07 Sep 2025 20:39:31 GMT\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 931\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2715,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"c3dd2340f7e24c2f7d159924d0cf457d","sha1":"7c6ee56951069ae923caaf605699c80d0eee07c0","sha256":"902bddd481318e9f515b47d66fbea38072ef4e6088a27b674b4b3a3367c7b120","sha512":"82960fbdfc88ddcb82f2ada6bd80c52da51e38c27744d3292da3c38957c5fbcc12f4ff05dd7fc77f7d946a047421a046b09948f471860dc731808d8cda6a0a37","ssdeep":"","tlshash":"2851de19db401182a1379f7833f267a9f6541053860681b97becb360dfb98a587a1fcd","first_seen":"2024-12-15T07:55:37.939808Z","last_seen":"2025-10-08T22:37:24.586363Z","times_seen":175,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":1,"connect":10,"send":0,"wait":68,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/ru.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.813Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/ru.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 487\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":487,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"5ddf50d1327e2ecc28a980e93b9f538a","sha1":"581fa9ecc609a1a07fca205b6c9751e8c28f1ebb","sha256":"1bdc7040f02e999a17f291b59767d4101adefa2d89775272ac7c66f37c710fff","sha512":"2375f58bfd0c3fe7b54258a6b222e285dbf4b4e30e87f76387ec5e1033906d0a04eb78481ee8c78460934f5c1de26007a6488d7857d59d8ca8b7b3fe31228f0d","ssdeep":"","tlshash":"a1f054ee2d01086d493cd918106b0fe1d45b0cb50ae64414d0dab2c43e2278fa8f8ac1","first_seen":"2023-05-02T00:49:29Z","last_seen":"2026-04-06T08:09:04.980939Z","times_seen":977,"resource_available":false,"data":null}},"time_used":345,"timings":{"blocked":307,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/sv.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/sv.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 715\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":715,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"191c145f7eb3f4755cc9a019a42259ad","sha1":"3ab0abaf3d362e2f59284949f3f62779af5dbedd","sha256":"c6897e837702d73a8dad3043ec690277cecff9ef960555169cba79d4fa9c62a3","sha512":"13c9da7e72fcb954eb8a95c3b1045eef1372c832a798293336aaa6b069be60db0f72ae8037844962bd2ff7e07c5e75ed1f14e3c927b5bee7825061b57e19084e","ssdeep":"","tlshash":"190144dd03258f3a0a370b9e24691057ded72d931b1a63506ab8bc3d6d031cd518d319","first_seen":"2023-05-13T11:39:52Z","last_seen":"2026-04-06T08:09:04.987339Z","times_seen":598,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":262,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/js/script1.js","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/js/script1.js HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\nexpires: Sun, 07 Sep 2025 20:39:31 GMT\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 5771\r\ncontent-type: text/javascript\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16817,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (3636), with CRLF line terminators","md5":"3d0892d336959ffc3116f3c85ac1f1ca","sha1":"ba9dafbc2165b509325094c33f1ebe7458fe68be","sha256":"a82f48e366c855affe0c103158ae6b6d02923e633e95103bd196f2195790788e","sha512":"e88ed3b2a9ba03f7cc54f8c6cf3315156024974eba16e9f3e229dd99acff29c467f5555a6bc2a7ee55e12e835703b7d87f8aac29aa0b0ba6c20cc53ee45d9c1c","ssdeep":"384:uKWwubC7r3oQIrc6ZhTnJ4NjEgcMwPTa39F54Z/+w2fSLaBASB7V2bd4328DYSlS:uKWwubC7rYQIrcenJojEgePaX4Zr2fS/","tlshash":"ec72c5da328174a20baf20dd407e5547f2281899f44a90acf62d9dfd3d2988631b3f7c","first_seen":"2024-12-15T07:55:37.941654Z","last_seen":"2026-03-08T19:49:45.589996Z","times_seen":3034,"resource_available":true,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":1,"connect":12,"send":0,"wait":74,"receive":1,"ssl":16},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/intlTelInput.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/intl-tel-input@24.5.0/build/js/intlTelInput.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 10943\r\ncf-ray: 96c1d2d76ec356c4-OSL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 24.5.0\r\nx-jsd-version-type: version\r\netag: W/\"7989-8La+4xfFSqQhYm6sgD9oLLGwb+g\"\r\ncontent-encoding: br\r\nx-served-by: cache-fra-etou8220027-FRA, cache-lga21961-LGA\r\nx-cache: HIT, MISS\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 3165698\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=nn7i298bVv3cxykpnJtNjKTwxSRrU4qhtasV2GIS0xSu9vM7DBpx5mlxmyUolrYqob483bQ2EUl0J45mGEfS4YhGsmBtVWdaUiROm357wuvWo7FFR6rrMrJsztRjuTV%2BtxI%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31113,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (30745)","md5":"8d7c34c441a0c73f54b225cc51f30de1","sha1":"f0b6bee317c54aa421626eac803f682cb1b06fe8","sha256":"5aeda5f302d419537edff95e71c9ab97fa5f25f5cc4666e0ca5907a27ac1f4a7","sha512":"ae4eea7dfe62cd0ac55c3ea87ddd3f1da2a0e8514657b3a7bd608d64d95d6776522f2ecef700dc0a8eb83bded5602b5b0bd22103e2b71948d00525eea77c93c5","ssdeep":"768:3Pn03Xlqn/kiICXpwJx3ycC/nFjjB7dH24y4Js:3+iIfycCxB7dG","tlshash":"4bd2e6aeb3652b37a7fd82a260a50543af7f79444604042d7cac8ede1298ed171f5b38","first_seen":"2024-11-14T19:07:22.945119Z","last_seen":"2026-04-06T06:41:42.188932Z","times_seen":4319,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:32.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://harmtidetrade.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7816\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 06 Aug 2025 21:40:30 GMT\r\nexpires: Thu, 06 Aug 2026 21:40:30 GMT\r\ncache-control: public, max-age=31536000\r\nage: 169142\r\nlast-modified: Wed, 23 Apr 2025 16:07:25 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7816,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7816, version 1.0","md5":"25b0e113ca7cce3770d542736db26368","sha1":"cb726212d5d525021752a1d8470a0fb593e0c49e","sha256":"9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526","sha512":"a0d331e62ab4727f49ca286a1ee7fb81cddc5bb9edf71ef84f4bd4fa1552069af1a82752011ba88fae80862d034135926b7e99d70e59d626d66d4ede90e94c30","ssdeep":"192:Agw5ksLwlyK8F2BXU96Fc575OI3+ga534SlEFwTG4ovej9be:Al5y8FSUMS5VOq1KISlvS4ov+4","tlshash":"a3f1af19d5de5a73f80032b45b6911ba7e42fa83bc68bbedf8046a10ad542cb467cc91","first_seen":"2023-04-05T13:48:05Z","last_seen":"2026-04-06T10:07:28.836531Z","times_seen":205171,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":129,"dns":1,"connect":15,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/fav.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:32.416Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/fav.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 3451\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3451,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"203d2d642397231d83d672965b3f38d8","sha1":"6a880a055e1e9c015819ee727bfc896c3f053b91","sha256":"3393b4b8776e903e1ed1babcfdc0e39877ec036a2ecda0b7cde03e594c0ff3c2","sha512":"60d297ebb3bfb384c15ecafdfc76b06fb1cca6ff39bdf9f58500427013bd4e75962f5a7d2abceb808ec850230a41ed41cd4d9d90dac553d1fc6b152a78d39eb6","ssdeep":"","tlshash":"96615e0c810d94e9eb2abf731c78d86ab1f6d0fb547625461e6680c3dc1f6ec65db090","first_seen":"2024-09-19T22:31:52.209305Z","last_seen":"2025-10-08T22:37:24.60543Z","times_seen":188,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/en.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.788Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/en.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1767\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1767,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"ec7233b5c80e5db85f7733b2ec25203f","sha1":"d4c36fff06dc7d920b10eb13b58ea9cd9321b430","sha256":"347ee97a492f79675749d03533810ff899ee6a784b4e156f3e0a7613cdfb3d40","sha512":"89e59fa7fdef1f61485176467fd127acf55424aefcf78aca5c3944e59f0b802591587c9d90c4ff158f955b74798e933b41c84fd0d3842fa4600ec8b583c113b4","ssdeep":"","tlshash":"693109cf0b91610bd9cba7827ca71c17366659d422a7be1b4bda0dcc7f85c2ad004e38","first_seen":"2023-04-08T21:50:50Z","last_seen":"2026-04-06T09:05:06.365968Z","times_seen":5522,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":139,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/fr.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/fr.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 637\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":637,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"930f08c6829077e96cf25d58f26bd6d3","sha1":"0dfa244548435053bbebd2ed5914e2785f0f3dc3","sha256":"594f333e3a8fe65a0466e4f9c140dab97e6b6a073579edf130a87b86614d7ec8","sha512":"34b8e8c8f95a135cccd845a2513c69d0fc3489a2df5b347dae0b5c65f6b1d218c1c976332d97f69d40f38159ab7b51c8d8cfb40d32bd45f24162320727d2a6d9","ssdeep":"","tlshash":"92f0839a22c1602d852411d530320900f4bb0f1002d13ef694be84b3281e7cbb19179d","first_seen":"2023-05-02T00:49:29Z","last_seen":"2026-04-06T08:09:04.985838Z","times_seen":1182,"resource_available":false,"data":null}},"time_used":326,"timings":{"blocked":288,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/hu.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/hu.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 505\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":505,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"c789a334c212492af26b433c5e2b4d5b","sha1":"7bc986549c06acb5f13c177af6793be159f7c480","sha256":"e911743b60f76ab09482b0abdc256e58e9abcd693c8a382547180d18f0eef14a","sha512":"53dbd93f8b7f9cb71f439ad589c0e2ce980205da477bdd4dff12b0aff9faa85e8d383a8eddfda32f11d40da0b76976d921977b8465258b8c4db6df20c9139eff","ssdeep":"","tlshash":"3af00ee803321a32c1f86642262e09165983bca1b2578c6c80af589dbd8a03021c039b","first_seen":"2023-08-05T11:28:13Z","last_seen":"2026-04-06T08:09:04.979255Z","times_seen":527,"resource_available":false,"data":null}},"time_used":402,"timings":{"blocked":126,"dns":1,"connect":10,"send":0,"wait":67,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/vi.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.803Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/vi.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 818\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":818,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"931fa5c7d5aa2805b11fbc974b816d77","sha1":"8eb02f52bbe074b5dd681b95c6196890e49651fa","sha256":"06fc7512126a48e27890c8ac939d5821da05cc0b08d4d11698b2d95b32c3ab66","sha512":"fdb1cf9fa583d8f5fa55b0771228b69ae02873fe9db4827dab69677fbf897b7e993f15b5c3732bc66ab64fdf0534b4fa3ecdf6e6c3cc4c0803de0e48bb340b45","ssdeep":"","tlshash":"a70186a0ce845efd145fa97703a11e1aaf9b1ad01fea1c72407c6c2964924408154956","first_seen":"2023-05-06T09:49:14Z","last_seen":"2026-04-06T08:09:04.984594Z","times_seen":611,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":192,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/ja.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.804Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/ja.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 705\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":705,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"125d3bb3275409f964ec5023de1762c9","sha1":"f06d834f76897f2e8417a70b59b47419ad668ace","sha256":"4461385ad6fdaab33bd89e593c3fe1c14021644444d779584ddaec3cd4fe91f4","sha512":"bace0d647ae16a5a0c4cc9c169ef59e62a4db6b45ad839816d6e6113bbf0acbfee6e563e086a81396eb0b608eb5a0bd12b5cd82c8b102a40011f8096064d2c05","ssdeep":"","tlshash":"430160ee84182c9e40093161513f2b90ace342ca0a16301a82bfbc9d87e6931d32a66a","first_seen":"2023-05-04T12:51:22Z","last_seen":"2026-04-06T08:09:04.953708Z","times_seen":693,"resource_available":false,"data":null}},"time_used":400,"timings":{"blocked":122,"dns":1,"connect":11,"send":0,"wait":68,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/js/jquery-3.1.1.min.js","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/js/jquery-3.1.1.min.js HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\nexpires: Sun, 07 Sep 2025 20:39:31 GMT\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 30080\r\ncontent-type: text/javascript\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":86709,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (32030)","md5":"e071abda8fe61194711cfc2ab99fe104","sha1":"f647a6d37dc4ca055ced3cf64bbc1f490070acba","sha256":"85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf","sha512":"53a2b560b20551672fbb0e6e72632d4fd1c7e2dd2ecf7337ebaaab179cb8be7c87e9d803ce7765706bc7fcbcf993c34587cd1237de5a279aea19911d69067b65","ssdeep":"1536:9NhEyjjTikEJO4edXXe9J578go6MWXqcVhrLyB4Lw13sh2bzrl1+iuH7U3gBORDT:jxcq0hrLZwpsYbmzORDU8Cu5","tlshash":"3183d5d9b2c670529b7730b850bf450bb17a98dab44c8d60f058c5d57eb8a8e507bf2c","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-06T08:20:49.796968Z","times_seen":138455,"resource_available":true,"data":null}},"time_used":142,"timings":{"blocked":-1,"dns":1,"connect":11,"send":0,"wait":75,"receive":30,"ssl":19},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/sk.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/sk.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 942\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":942,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"f505130ed0303fde84806046537f1af0","sha1":"2571608ca84fa979a602373536380578ed7f3e53","sha256":"f264c92b7384498c50a373a441de7963aa8d20225884b59affadbb0e04de2a70","sha512":"5613b8520e3ae0e3a640493711e960803e2122d8d35675917639e69aa9e849b7a089f160de53c6f308c1d338b8d80c7ab5bc3b29d80224acbffc5f61f1742ed2","ssdeep":"","tlshash":"3911c8ef651c4a0e3d2b436249da098c0c8b0d109f06d85cd69bd1e63631a8e117ce84","first_seen":"2023-05-27T18:45:41Z","last_seen":"2026-04-06T08:09:04.956961Z","times_seen":544,"resource_available":false,"data":null}},"time_used":365,"timings":{"blocked":326,"dns":0,"connect":0,"send":0,"wait":38,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/images/498_908__922_664dc1916a6b0_Immediate-360-Serax.webp","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/images/498_908__922_664dc1916a6b0_Immediate-360-Serax.webp HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 189216\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: User-Agent\r\ncontent-type: image/webp\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":189216,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6ef7e9f8ee47830e8a697fe90a745f94","sha1":"a578019c2ed4afc8f3dbf21739bcd7827b8a1c8e","sha256":"d61098744ce24344f25a4b4682c4e1387116310edcc37712ef6eb72d4078642f","sha512":"45e791d3f9e22261baad7419d41551a4b7ed53c6c68a7d825c3034a2a95b2c676bac5c9b382a4a89022e016cb1abc3cd898c8d8fbfd2ca29e9b4c14dd1965b2a","ssdeep":"3072:6xg4p4nUsCF8Osw7tewg4PZ1jKciJNQo6AfwvOuBTif96IudI5N/P2H2NqRbt2pQ:Q7sy8Xwrgq5K9NoAIGuQ/Qbt2q","tlshash":"bd041272f4b799bccf4667f34997ba15198dcf90d4a3e20a776a634068839dcdc62032","first_seen":"2024-09-19T22:31:52.2025Z","last_seen":"2025-10-08T22:37:24.592032Z","times_seen":183,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":140,"dns":0,"connect":0,"send":0,"wait":40,"receive":97,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/da.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.794Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/da.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 595\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":595,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"a30b08094003e6cfa25800109f955b7a","sha1":"4d43a76c0889bd20f88905cf6ad76b4e0ccd8597","sha256":"a981b9c5114a52486766b43af45545d454234f8d99cb405f24382b225394f117","sha512":"8f2f6e54b5910f386ca584c3fb2fc230dd67120bf40560b2e49fb5628463a9c397ef835961469a95b04eed8201c1584346d58008da11b0a35d721ce704e377c6","ssdeep":"","tlshash":"17f047ced352cc19499b75b116335105c4f717b8122bc45d1095ae0c3d297419996be6","first_seen":"2023-05-19T00:59:36Z","last_seen":"2026-04-06T08:09:04.971122Z","times_seen":588,"resource_available":false,"data":null}},"time_used":290,"timings":{"blocked":250,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/nl.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.796Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/nl.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 469\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":469,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"213b7e930b8a41dcf4c9f95ac76dbe6b","sha1":"eccf14152b6ba26fe8a7d02f79586992be40db20","sha256":"5d75fea10bb270c341503bda4357e90bb069e3e46c7a670a3583f924f3524bd3","sha512":"11eb344a2480ad3f398f91dfc4e14a3f8fb1b916543986796b6d9c5b52112c4bfe6fe48b6dae287c892f4d73106644f8b5226e4a42920d847dede47113a61b3a","ssdeep":"","tlshash":"e8f0d4dd5762669b985a6b8701010c2088931f90191980474a4fe08d7e7320535bcd56","first_seen":"2023-05-02T00:49:29Z","last_seen":"2026-04-06T08:18:41.769484Z","times_seen":770,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":209,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/fi.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.798Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/fi.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 523\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":523,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"605699c0baa63458c609512fc19363c8","sha1":"b920ed840cba7fa302d5e6eca3b51a7c64095f64","sha256":"5bf3510eaa1ec9cb53c13393d67ab23ced2c1912bcc614828707ce0bcec20119","sha512":"84d6a445b4ed0cc42ed936f05ba272e33247294bd3e58401518862da0479a3cd8d58ae9c13db2cb2fef091bac9fc18603243fd435b7ec4310d5ddaa7f0d23b8f","ssdeep":"","tlshash":"87f075d60161497cee5905e641200916dfd30440e71b2b100a2ea7dda5f2274dd347b2","first_seen":"2023-05-27T18:45:42Z","last_seen":"2026-04-06T08:09:04.952387Z","times_seen":574,"resource_available":false,"data":null}},"time_used":370,"timings":{"blocked":329,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/it.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.802Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/it.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 642\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":642,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"922efc02f080135a63137dde4ffea287","sha1":"a4583be3e579a69a03a0d1f09995fdb6d1244f7d","sha256":"510116996dc4979a225c07962d84bb76e2b6340234c2c5e4280596ad08a632cb","sha512":"5d5cf4ee23afce714be0555318fbfabd0461aeae4530bd5f12d8fac947045438f97cf4a045751698514ace1465d6ae70c3f7d62cbc68437009d40553ffd7ff2b","ssdeep":"","tlshash":"bbf023a9016071eec83e2bf201410af955170da89b720008c04ff8d53c6e428c394686","first_seen":"2023-05-02T00:49:29Z","last_seen":"2026-04-06T08:09:04.980301Z","times_seen":1077,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":163,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/pt.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/pt.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1076\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1076,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"bb3cb490b63a8f51283c686b916cf4ff","sha1":"f325c9d27acb1d3e03a3481eb2c240368ae8460f","sha256":"f06d3def1549dd1b0a108ddc645d2e8906fb631e5812df19cdcbd887f3700bd8","sha512":"0bd183107bfbc19ad5ccb7458cdacbc089eb7335c3eabf4b47433c0ecff5fbabacb9beabfc026170c38cb7c71847ca274c3105c93fcc042c393cc53106fff3c7","ssdeep":"","tlshash":"3a11e9f94630fb9c8960f713b423ca2a988e0b250ba3381d50fcbe9a04135fb835c710","first_seen":"2023-05-07T21:05:59Z","last_seen":"2026-04-06T08:09:04.966623Z","times_seen":765,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":238,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:32.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 17:08:10 GMT","end":"Sat, 18 Oct 2025 18:08:03 GMT"},"fingerprint":{"sha1":"66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC","sha256":"52:CD:3D:83:E5:5A:57:37:9F:D9:0B:EB:C3:EA:67:B7:4C:F1:74:93:B7:C9:E8:0B:E3:E8:CB:2E:7A:94:A2:78"}}},"request":{"raw":"GET /ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1466\r\ncf-ray: 96c1d2d94e5d56b9-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e5d-841a\"\r\nlast-modified: Mon, 04 May 2020 16:10:05 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 835354\r\nexpires: Wed, 29 Jul 2026 20:39:32 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=EWuQ3fajwpNNfuoBaC4e20p4irGgWZkF7t1Ax77swyDIxZGPb7XIpSP5yOLZ0YjS0iJ%2FUnryVXEQaPkam6pn32S0k5l4NrGhf0m2nVTnJCG5bx%2BCu2aPkHgAMMR1mhoNL3t99LAy\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33818,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (33818), with no line terminators","md5":"79fb36dda0a235254c3e31bf00b57065","sha1":"89eb6d6adc16de57dda315fb2b5602bfe5728ccf","sha256":"623702bd791d4553ae7226c2f48e26052e359573eb59fa98d819e9b248593e7c","sha512":"c5b2a3dfc61a9b039ad72c82f604c52c4c616db57aafc599c1a11861869e75f534828b10ba772fea9ffff737232b534eda7915fcdbf95f94e433fce33a795cfb","ssdeep":"192:o5B9y1dbzi85+DkROJup2j0S+iSM2nTMVZVJggtfQxK/dySeOW:ldK85+DkROJup2j172nTeVJgAfQxOBW","tlshash":"dae2f963da83e41fb60756337a167618a3df2492db814f2a34bf52b1d576244343afb0","first_seen":"2023-04-05T03:09:34Z","last_seen":"2026-04-06T08:40:13.084614Z","times_seen":6185,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":19,"dns":1,"connect":1,"send":0,"wait":37,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-08T20:39:31.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\ncache-control: no-cache, private\r\nset-cookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; expires=Fri, 08 Aug 2025 22:39:31 GMT; Max-Age=7200; path=/; samesite=lax\nlaravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D; expires=Fri, 08 Aug 2025 22:39:31 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 14872\r\ncontent-type: text/html; charset=UTF-8\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery:3.1.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":65870,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (824), with CRLF, LF line terminators","md5":"b2a77230cfa7186ca7c11a48e55e2de5","sha1":"86735888cb7205f2d49d878d3d2d39315d1b5e29","sha256":"b695d0f76de7884d899e8a26d6021dc908be6dd597ca3384583afa2a41b8709e","sha512":"d8037a4e6c8ed875de9052bede71f9166f91eb68c15565522b887f39f5c5381c159086b1eb71b88795ade60a7d16e0a62e221ae58244b8d4af91254cb029c60f","ssdeep":"1536:vcvdySHIznMnWGRcFDjzZiBJ+pHsh058x:E3IHN2h058x","tlshash":"0853c47214c5236b827380d1a7652bdeef6241478316854dbbed1b433ff2ca28a776d8","first_seen":"2025-08-08T20:39:57.588803Z","last_seen":"2025-08-08T20:39:57.588803Z","times_seen":1,"resource_available":false,"data":null}},"time_used":501,"timings":{"blocked":24,"dns":1,"connect":8,"send":0,"wait":423,"receive":29,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Poppins:300,400,600,700,800\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css?family=Poppins:300,400,600,700,800\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 08 Aug 2025 20:39:31 GMT\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5993,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"0cc9bf27b3f7870e874e25f74f2c2ca8","sha1":"a3b12d147a59fb4cee0d0c8d61828ed37b3c2c17","sha256":"cee4c0d55bd9d191347ef22dd01dcda7b6a6f0212cd487070eeb0e5084a047de","sha512":"ab06e410168f1a87e95a45f1cb1ec8d082eed333812ac270e55a98633e3f3e42e12e2814aa567ab82e890f0920b4db8c3bf024dde0dcb732a6a6196c55b24ef4","ssdeep":"96:SO1aaO1aiJc+ukO1alN3OEaOOEarJc+ukOEalN3OxMa9OxMaNJc+ukOxMaQN3OpG:4wqdApvQK4laY4uJongsa","tlshash":"22c19ed1087be1049b871cc123cf7d36ee1ea255b410e5786bfd0c98adabc694362b2d","first_seen":"2025-05-09T13:47:46.603061Z","last_seen":"2025-09-12T15:44:03.439369Z","times_seen":138,"resource_available":false,"data":null}},"time_used":419,"timings":{"blocked":163,"dns":4,"connect":20,"send":0,"wait":30,"receive":0,"ssl":199},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/de.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/de.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 602\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":602,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"8a2ba86f3b7de7562445967e2c21843b","sha1":"3046cd0b51721f180c2dc75513fd4bfd316b45b5","sha256":"cc318f3be9ba75def2af54bd9d0fab4f3e316517de9bf138e40dee06d332602d","sha512":"bbfe0899d1e796e1635d12332d6e5ecc21c78c7073419b14236660d6524861ad078644a0de96c914a07988584105a4d503a7ba9f29480be720ce541ad7ebeb5f","ssdeep":"","tlshash":"8df002a8839266668e5b12f3c0031dd44dbb0db4573f3518622ba8be0b61e0263806f0","first_seen":"2023-05-02T00:49:29Z","last_seen":"2026-04-06T08:09:04.975539Z","times_seen":1134,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":209,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/cs.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.797Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/cs.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 849\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":849,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"4be819ea527d8a704539f3ce154c6a82","sha1":"882f02dee6104dfcda844e466b4ae8dd1e3f69c5","sha256":"2db01ff2e46696a2a9ffa5d4f5af6f2e95bef36e12aa0eb7e05045e73c0396ad","sha512":"550423dc23236b8963334e64fe6b6759aa07a9d0fa04f351d22629931f733b09b02309f1d8aadfc4abb40b0234e356d80b4d1c3b391612baeed106fdee1d25fb","ssdeep":"","tlshash":"910192d860a5ae999a04fac7920309f2a0a246192a06fc08c9ceb88e19cd8a7617070d","first_seen":"2023-05-27T18:45:41Z","last_seen":"2026-04-06T08:09:04.984001Z","times_seen":573,"resource_available":false,"data":null}},"time_used":378,"timings":{"blocked":339,"dns":0,"connect":0,"send":0,"wait":38,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/images/763_1920__1920_65e7292179089_main-bg-banner.webp","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/images/763_1920__1920_65e7292179089_main-bg-banner.webp HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/frontend/assets/en/dist/css/style2.css\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 12138\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: User-Agent\r\ncontent-type: image/webp\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12138,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x763, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"ac927b437c61f75a61872549dd22e86e","sha1":"31595082b099c7ccb44d8fbaf7554ae7c14e335a","sha256":"a36a8fafe8d188e961bce01bfdbd8d88785a8e71b068c53a9b98d7ff011b65ff","sha512":"decccb9ce38451fc7145ee3612a511c68da3c39f18005ba50454c5f20f8633d082b3999213f83a1aa707e7aa7211f6ca9201d8ffbd12750258d1b2571201628a","ssdeep":"192:Rj2jK8de8bRkFGU+NlZ74OQ9G+i025x4sGpm0ZNnzNxLGxOYykiF2Rm8MU0uuEpf:Rj2Osnb2F3+NlZ74Hih/Gpm0rNxLKwFi","tlshash":"bd42cfd393ab4620790104ad983650537d17d7ca8fe44fe265abfbc0c9d5aa5e81eccc","first_seen":"2023-08-05T11:28:13Z","last_seen":"2026-04-05T22:45:27.551778Z","times_seen":319,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":18,"dns":0,"connect":0,"send":0,"wait":39,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/images/459_459__459_6617c2a952d09_immediate_neupro_ai.webp","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:32.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/images/459_459__459_6617c2a952d09_immediate_neupro_ai.webp HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 54178\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/webp\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":54178,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"df7ee37a8f3e0609863e4d38a1a710f1","sha1":"43b94ec405631c03977f7f06f39350da9aba33f5","sha256":"3bc534b793190759f7f85702b943d481337ef1ae5b5166b239ad133b666ad719","sha512":"3e907a6e044eb7f81189484fe162adf359574991de9755a7228b9e4fc633943c33fa1f7e460ca236f9f95330fd0beacdea8cb8fdcfb7582725a65d6c3196a60b","ssdeep":"1536:Feuun/wIiESwOdhFgTxTvtAsxkBIGNvImakvAOb7V/fO:FV0qEjOdhoKsxMIGNvhIOb7V","tlshash":"e233f19a68984b920bf4f1437f98247ae33c5b0503633a52451e8e3649e7d6bbe0b48c","first_seen":"2024-12-15T07:55:37.965273Z","last_seen":"2025-10-08T22:37:24.614624Z","times_seen":170,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":16,"dns":0,"connect":0,"send":0,"wait":39,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/el.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/el.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 775\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:31 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":775,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"2a53590607a148f0533ed4748d8aa209","sha1":"bac5251024524bb9f5c39535cb99be24d10c92f7","sha256":"aa9fcea0dd91bdb0749763eff1466b252e00096d762946f1eb6f5330834d9161","sha512":"782b8ae9eb9cf9de06ec3ad5e53fc0bb43d8a6e8e5d5125bc2f8efe6c0c1ff99adbb0f8d473ebad385a95f3b8fb6839d2c6f2cba70ad8361293054b8adb45aab","ssdeep":"","tlshash":"450175de265c68f74d1c4607816b0e3cec470ea206759a11d338bddc57e38126040207","first_seen":"2023-05-02T00:49:29Z","last_seen":"2026-04-06T08:09:04.964752Z","times_seen":593,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":167,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/es.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.815Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/es.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 873\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":873,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"8bf31a924501d6db655fe75696b5f046","sha1":"94ba0f8d4db0c35c1246a55fcbd6e0ef3cd7f0e2","sha256":"5ae9561f31199bf8a892f797a69db1bc5d477e2f8318f2b7e95487f025f66f28","sha512":"37dac360a5ac86e3e0cb6672eab5db6baf1514225741615696d09cadd93492f3c666bb6c385d12475046fa21c1672250b8cee13b83f629d80b3a8aec752491dd","ssdeep":"","tlshash":"f31163e9cb60dc1da704955134135b78ef920fa9036f296d861490ffecaa61ca5d0325","first_seen":"2023-04-08T21:50:50Z","last_seen":"2026-04-06T09:37:52.762811Z","times_seen":1316,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":262,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/tr.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/tr.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 923\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":923,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"f9619dd9adc7fbb5244483ca00cace60","sha1":"4970f612a0e86100cf07629da3b9ea12af8891e5","sha256":"d11d2b8956d975cff1ea2a49763f6eec736506498be297be7ac1c4363cc95ee5","sha512":"a7517b1bc260669d644b2c61a533abc00cedfdb859254047ef6b41af111b9a09141c4cbb5871b13014a86978cd1730ae77f8dfc7cf6a27a2bbf46b69f0b70d81","ssdeep":"","tlshash":"de11c4d8f640b028237946efd102c9aee92fa5e65c8323c89109b08d738720d2292ba0","first_seen":"2023-05-06T09:49:14Z","last_seen":"2026-04-06T08:09:04.981556Z","times_seen":624,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":247,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:32.428Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/intl-tel-input@24.5.0/build/js/utils.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://harmtidetrade.net\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 56852\r\ncf-ray: 96c1d2dbab060b69-OSL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 24.5.0\r\nx-jsd-version-type: version\r\netag: W/\"40944-yY9wBenb0A7BGMPMI3C/O/5s+KY\"\r\ncontent-encoding: br\r\nx-served-by: cache-fra-etou8220148-FRA, cache-lga21929-LGA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 2986713\r\naccept-ranges: bytes\r\npriority: u=3,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=2YFMD6v3Y%2Fe5zYrSGJ%2F1xqpcgRxrSJs4k%2BnYyVdoJ%2FX2U1gaKrjQHHDInz235O8AzyZudS5uRXCzkVB5%2FIBrNBuVkks%2B%2FhbiIw71vREAZ9xhU6QgiyRyX56Q66E3rcN43cs%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":264516,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1903)","md5":"be8412b24dc2374a8eb8c446774e2765","sha1":"c98f7005e9dbd00ec118c3cc2370bf3bfe6cf8a6","sha256":"8d6246375bc856c30649b3e800b02a22d913a7f03f08d92a7b2440824ff2ce9c","sha512":"070efefcd7228793e742ac76bbbae58d49ad8de94cd56863838f97955bfd86dbbd53eb41b1ff2aa59eaa3e6aeeabd5334e622824a48234d8997b6db397c79004","ssdeep":"3072:9E030DWujFs3OwPss3MwPaPjq09Q2xFM8M0TrpEBW6cC56kmLxTg/QKWVSpDUkzy:9E03+WqHjvxFM8M0T7IUT","tlshash":"0044f0ebd63c9737a1e87b35968eb3cd5a8cbca3c858567826c3b54f52784e0706c205","first_seen":"2024-11-14T19:07:22.956908Z","last_seen":"2026-04-06T06:41:42.122536Z","times_seen":4248,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":14,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/css/style1.css","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.737Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/css/style1.css HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:31 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\nexpires: Sun, 07 Sep 2025 20:39:31 GMT\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 24497\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":214306,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (345), with CRLF line terminators","md5":"f3707e7f9b89619a600ade29a5c2955c","sha1":"8f3bde3b5918ea8f544a734c114bd7f5eaed372d","sha256":"df62ef181413fec79eefe2cea6d6b015cd7efe566ff7eb4305308b882b471e46","sha512":"945050324caef556fc22b8c761419e6ea648a17e8f6104c5f3e0416ffc045e51d4cebff782237596fcf1ad532fcfbe170b966aa7f6f6655bb845b5c9ee69af91","ssdeep":"1536:hr9qHLEXmlIm6n5HW+csJ0pDeL978HU1xLvNuxtdLfzYGQ7l:+LEiskipg0nQxtdLfzYGQ5","tlshash":"7c241faef880241a4d339779e7e3aabafe7d0097ca009865b9cf73508f751d15c51e88","first_seen":"2024-12-15T07:55:37.934506Z","last_seen":"2025-12-30T08:12:01.259638Z","times_seen":196,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/ar.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.792Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/ar.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1480\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1480,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"7fec8a94e0af73b8647803e1ff9887be","sha1":"aca14e7523e0bff0a9399a0998b49387d636da9e","sha256":"f093a618390e4ef10ee984262dd3334074536f565eb0ecf6cbd0939597073b3d","sha512":"61d5698ab4bcbf9589338c045a1a214edb887746e9e9a67d434dbc1ee81b3682a7cca8560c79a285dff0fd2d8550305e1d7b8f17fde68c1b9543e788a78379a0","ssdeep":"","tlshash":"fc3119e713000b75a02b96385a3b08b8244a4c4c0b6ad99b52cfbdae97563c58191e38","first_seen":"2023-05-07T21:05:59Z","last_seen":"2026-04-06T08:09:04.964118Z","times_seen":3564,"resource_available":false,"data":null}},"time_used":285,"timings":{"blocked":247,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/ko.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/ko.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1361\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1361,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"ed87e4c8a4dd16c9c3f8499a0aaa28bd","sha1":"f818a0782047c159ed8e5cd041ad7f09e8fe52fb","sha256":"eb59eb7dcf155a7b38c8f4c9db869ed942bf55a4457e3f4ff0791be4f2c736d5","sha512":"bcf1992bfb1d0ed92e4393e0b85fe5c768ed29285d38a259d0cfb60827537b74d39a925cfc4df58ed8b478d5015fad047a211ec2ddffa5a69b0d08f5abcdab6e","ssdeep":"","tlshash":"05210bad1b7c302cd6f9c5799909fb01ddfb04040c9fa1c59129d6cc28c588b70d5436","first_seen":"2023-05-07T21:05:59Z","last_seen":"2026-04-06T08:09:04.954543Z","times_seen":4216,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":198,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"harmtidetrade.net/frontend/assets/en/dist/flags/no.png","fqdn":"harmtidetrade.net","domain":"harmtidetrade.net","tld":"net"},"ip":{"addr":"91.236.116.53","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:31.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"harmtidetrade.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Jun 2025 00:51:54 GMT","end":"Fri, 19 Sep 2025 00:51:53 GMT"},"fingerprint":{"sha1":"41:6F:30:37:6B:88:AA:F7:D1:9B:04:F3:5B:C4:06:DC:52:04:EE:37","sha256":"CC:60:1C:00:88:D4:AA:8F:06:56:4D:CB:71:45:E4:D4:90:E2:8D:C7:64:A2:50:4D:A9:1F:83:46:BB:B6:4C:E8"}}},"request":{"raw":"GET /frontend/assets/en/dist/flags/no.png HTTP/1.1\r\nHost: harmtidetrade.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://harmtidetrade.net/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImtrNlFWYVVmTUZHOUg4S0hQWml5emc9PSIsInZhbHVlIjoiV3p5M255YmVDTU8xeU1qR3ZFMmMvMUZXSFpyUktTQU83L0ZXTm5DSXdnTjlZNkY0cWJML0FrTG5WTTRZaXZaS1U1Ym1Xb1BwZHRpSWxaN2NuM3lCNFcrQkdJWC9ZQWJVMUxhejZQdWFPSzl3V3VhWEExMnBTQTJjMlhESCswRS8iLCJtYWMiOiI2ODljNTVjNWI5OTQzNTRmOTVjNDNhYmQyMTBiZjFjMjgwZDVmYWFjNDQ4OWQxZGEwMjE4ZTExODMxMDAyY2NjIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjZWdnkxMVI5cDF5REFNMUY4MHdoZ0E9PSIsInZhbHVlIjoibHkybERqZi8rUjR3UHFtbG14cHhqK3N4dE5MOWthU1ovYldFUkd3NmF5TFNLZGMwYi84TTVvbTM2L0Nja0cxWmhvQi9aRFl1RHdEam14a3NTU1RWWWF6OHhsY1NZQ2ozRkdzbWRlSFVMSVRtMGUvRHpheDdtdGpHSjVTN3lpRjUiLCJtYWMiOiJkZTkwZjdlZDRlMGY3NDQ0NzE5Mzc2ZmQ2NzkzMjdkYjA4NzQ2YTI1NWZiMzQyMzA5MzMxMmUwMDQ0YWM0NmY5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\nserver: Apache\r\nlast-modified: Sun, 30 Mar 2025 21:54:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 743\r\ncache-control: max-age=31536000\r\nexpires: Sat, 08 Aug 2026 20:39:32 GMT\r\nvary: User-Agent\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":743,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"d3b58f803a9a01a59210dd673998a229","sha1":"6caddb6c8e749e9c5b786a3984bb7bdbba2bafc5","sha256":"3cf52e677d7f7be201cbf6e3ec56ed1f48b95c47e5969ef2c2510e270133c4f0","sha512":"88aade4affd629926e473df3d26ecca5ba49c4b77da9343e58729cf3a2b1cd0b9d27d9e019018455bffd18b7a7570a5c14d918eff46deecc5821903f76094988","ssdeep":"","tlshash":"5501b5c7a78024a68b3eca3b40066a23976b28186e26100c5128a9bd02c21ed3d50bfc","first_seen":"2023-05-19T09:59:50Z","last_seen":"2026-04-06T08:09:04.965993Z","times_seen":615,"resource_available":false,"data":null}},"time_used":336,"timings":{"blocked":297,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-08","alert":"Sinkholed","trigger":"harmtidetrade.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/img/flags.webp","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://harmtidetrade.net/","date":"2025-08-08T20:39:32.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/intl-tel-input@24.5.0/build/img/flags.webp HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/npm/intl-tel-input@24.5.0/build/css/intlTelInput.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 08 Aug 2025 20:39:32 GMT\r\ncontent-type: image/webp\r\ncontent-length: 28174\r\ncf-ray: 96c1d2d999fb0b69-OSL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 24.5.0\r\nx-jsd-version-type: version\r\netag: W/\"6e0e-+c9J+qvl4+pvpQpQCqvUf+8x4WA\"\r\nx-served-by: cache-fra-eddf8230035-FRA, cache-lga21929-LGA\r\nx-cache: HIT, MISS\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 3245424\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=uPs%2B7fzQP7Y613D1DYX%2Fg%2FzXWou1%2FxldukW0Hwws9goQMqfHhpxnJqDZqPLXkju03c35F86OGQzFoYRrw47C7sXuOJif8eQXitEJya5PfBa%2Bn2tXG189I3OJz4rSzMcCwDQ%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28174,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4099564bc7b03997031ad1348e646601","sha1":"f9cf49faabe5e3ea6fa50a500aabd47fef31e160","sha256":"667642959de122c4b844afcae211c1c54c9166d262fb833beb63abc02ebd0dd4","sha512":"e1633c3f57dc45e189d3d0ac97afe6ff1f44063cdb0948632e9c7fdfcb848f92ef854b22c11a9c58c6f304b0123f34f3b0d132399ec27c95943dc3564fb7640e","ssdeep":"768:Xtn4kqql2jDWRFRS21T2r9lDAkRYKU01RENG:Xtn4kq2wDGFRN16wwYKU01RE8","tlshash":"6ec2e2f1690d6390ad635390c0f66355cdd927393a7f8ca4f96292848234177db3eb64","first_seen":"2024-10-17T04:51:34.39147Z","last_seen":"2026-04-06T06:41:42.135216Z","times_seen":4936,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}