{"report_id":"1e90335e-4b95-4259-ba4c-bd643b03bb5c","version":6,"status":"done","tags":[],"date":"2023-12-07T09:27:30Z","url":{"schema":"http","addr":"www.allflagstafflodging.com/tosite.php?url=https://vk.cc/cow0Zw?9025\u0026pageid=22907","fqdn":"www.allflagstafflodging.com","domain":"allflagstafflodging.com","tld":"com"},"ip":{"addr":"50.16.80.81","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"title":"Knull damer nær deg i natt"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T08:42:18Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ocsp2.globalsign.com","ip":{"addr":"104.18.20.226","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"1999-04-19","domain_rank":1544,"first_seen":"2012-05-23 20:10:04","last_seen":"2023-12-06 05:15:08","alert_count":0,"request_count":3,"received_data":5799,"sent_data":1101,"comment":"","tags":null,"fingerprints":null},{"fqdn":"vk.cc","ip":{"addr":"87.240.132.67","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"domain_registered":"1997-10-13","domain_rank":170928,"first_seen":"2012-06-21 00:54:25","last_seen":"2023-12-05 05:17:19","alert_count":0,"request_count":1,"received_data":834,"sent_data":582,"comment":"","tags":null,"fingerprints":null},{"fqdn":"vkontakte.ru","ip":{"addr":"87.240.132.72","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"domain_registered":"2006-09-30","domain_rank":72994,"first_seen":"2012-05-21 17:01:22","last_seen":"2023-12-06 05:45:03","alert_count":0,"request_count":1,"received_data":863,"sent_data":576,"comment":"","tags":null,"fingerprints":null},{"fqdn":"vk.com","ip":{"addr":"87.240.137.164","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"domain_registered":"1997-06-24","domain_rank":2243,"first_seen":"2012-05-21 17:01:19","last_seen":"2023-12-06 05:10:51","alert_count":0,"request_count":2,"received_data":1910,"sent_data":1327,"comment":"","tags":null,"fingerprints":null},{"fqdn":"away.vk.com","ip":{"addr":"87.240.137.164","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"domain_registered":"1997-06-24","domain_rank":92855,"first_seen":"2017-04-11 13:32:47","last_seen":"2023-12-07 00:26:13","alert_count":0,"request_count":2,"received_data":6370,"sent_data":1361,"comment":"","tags":null,"fingerprints":null},{"fqdn":"honeygirlhere.life","ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"domain_registered":"2023-02-14","domain_rank":0,"first_seen":"2023-02-14 15:42:04","last_seen":"2023-12-02 09:37:28","alert_count":11,"request_count":11,"received_data":476183,"sent_data":5634,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2023-12-07 07:16:25","alert_count":0,"request_count":1,"received_data":121825,"sent_data":584,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2023-12-07 07:59:33","alert_count":0,"request_count":2,"received_data":48285,"sent_data":1062,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:19Z","timestamp":1701941239,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":51292,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET DNS Query for .cc TLD","source":"{\"timestamp\":\"2023-12-07T09:27:19.650173+0000\",\"flow_id\":1641268332981181,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":51292,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027758,\"rev\":5,\"signature\":\"ET DNS Query for .cc TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_07_26\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"DNS\"],\"signature_severity\":[\"Minor\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":3299,\"rrname\":\"vk.cc\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":76,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:19.650173+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:19Z","timestamp":1701941239,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":46756,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET DNS Query for .cc TLD","source":"{\"timestamp\":\"2023-12-07T09:27:19.650450+0000\",\"flow_id\":1614592291106002,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":46756,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027758,\"rev\":5,\"signature\":\"ET DNS Query for .cc TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_07_26\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"DNS\"],\"signature_severity\":[\"Minor\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":27983,\"rrname\":\"vk.cc\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":76,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:19.650450+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:21Z","timestamp":1701941241,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":42511,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:21.618118+0000\",\"flow_id\":353074497023622,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":42511,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":65020,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:21.618118+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:21Z","timestamp":1701941241,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":43124,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:21.618264+0000\",\"flow_id\":2045527834849048,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":43124,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":26801,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:21.618264+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:22Z","timestamp":1701941242,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":52174,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:22.331323+0000\",\"flow_id\":1399680717688379,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":52174,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":37886,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:22.331323+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:22Z","timestamp":1701941242,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55475,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:22.332769+0000\",\"flow_id\":1471110318789601,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":55475,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":17586,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:22.332769+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:22Z","timestamp":1701941242,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":52662,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:22.334316+0000\",\"flow_id\":1039350141426156,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":52662,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":13076,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:22.334316+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:22Z","timestamp":1701941242,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":59077,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:22.357643+0000\",\"flow_id\":18917451527435,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":59077,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":39668,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:22.357643+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:22Z","timestamp":1701941242,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":51143,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:22.368952+0000\",\"flow_id\":1850579269361976,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":51143,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":15896,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:22.368952+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:23Z","timestamp":1701941243,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":32797,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:23.509434+0000\",\"flow_id\":1709343564875258,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":32797,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":49090,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:23.509434+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-07T09:27:24Z","timestamp":1701941244,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":51165,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .life TLD","source":"{\"timestamp\":\"2023-12-07T09:27:24.150536+0000\",\"flow_id\":1403176821214216,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.116\",\"src_port\":51165,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027867,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .life TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":7789,\"rrname\":\"honeygirlhere.life\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":89,\"bytes_toclient\":0,\"start\":\"2023-12-07T09:27:24.150536+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"honeygirlhere.life/media/exit-new/exit1.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":false,"md5":"625e5e2950612f771e246beb33c9ea61","sha1":"e4fc251c6c000496c285f8dc3fa097040b031681","sha256":"618f345a156a0eda55177a1bf0e8a414104f9b6c6ff5cdbe71966f081ccb8a46","sha512":"655f0b373c605d0a464bedca4df204fb3aa12442c5b0aa3b8bf13e0604fd1e89480356e9c6cc9a432f81305bf1151caf4ac4ad9d8eb24eb78cbd11318e5b9657","ssdeep":"","tlshash":"ee81407c352d7579499a777c91efe94a207b6c53f001a2320808bc94e86ce4ce325df9","size":3473,"data":"","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-02-01T11:35:43.37734Z","times_seen":13050,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":true,"md5":"4eb01341bd62c588addd404ad6d1bc0c","sha1":"642b118cfb24cc5016626d944cb59dbd6b0a47c8","sha256":"3166bb4d6e90ae9dd6cfb06ee5932905bfbf8151bed0eedddb03cb7d593b79d7","sha512":"d046cba0ff14e572a541183df22bb6a3abdb879c69a64048032d4ec8f32b6549d24d1e55ed337fc3a70ce46c7213a42a93be6db4101e4495d3545360a2b94324","ssdeep":"","tlshash":"c50128c47a61ec49d062bcad9e3d6e376050bd3fc29eb5886549c20e39544b4631bcb9","size":665,"data":"","first_seen":"2024-08-20T16:29:01.250736Z","last_seen":"2024-08-20T16:29:01.250736Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/cookie/js.cookie.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":false,"md5":"a7e9883924072f15259de6888d5ef515","sha1":"7f4f6e5938e68f55aef81e0cd0145f008cd28382","sha256":"985659942ab60a92b3c0a7f876d9ef60e8f048ff655a622a172fa4b44f901b6c","sha512":"f6f2859b644b249cebe21b0af49c0efa046eedc95814ad4cac400b25d6fddbb7a155db420359ccfc8570eb18899cdc369dcbf5c137f4cb21f24b27f8f297be48","ssdeep":"96:3+bMojFkR0WIxWXATmnv5h8VatgNyyd2jMAp0:3zoa0WIcXATs8atgNyM6pp0","tlshash":"ec91b7783c1535b80d06237513bf668b7077bc567c865710b64cd998eb28c6b8316fe2","size":4264,"data":"","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-05-09T11:12:49.947101Z","times_seen":6128,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/util/utils.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":false,"md5":"01816d15ca03032751161a746e2fb7c3","sha1":"dcc72ea5fa1356490ba473288159df9786b4a3c3","sha256":"8b3c83a330bf1120a13eff6ef60c1e268b827b7bc49b42a7a1f5d8ad6941f2ea","sha512":"88f23b9e14db5d4cde23de38ac1a33e0423c9bf33ae714b39b79ba7a062eae33b74515fd9c095d86c1b6971e21990050f6457814a151dc01539a56f624996b9f","ssdeep":"192:C018ojHD3/HDg8bQgdT0p+MSRzS6S+8izeLeR4OeH/t060SDWF:T18ojHD3/HDnQgdTDMSJS6S+8ibR4OMk","tlshash":"a502517e3a3e352a1d0a237d1cdad949247bfc2b754156326929b848d0ece5ce312eb1","size":7512,"data":"","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-02-04T20:58:21.377863Z","times_seen":8809,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/dating/toon2/js/jquery-2.2.4.min.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f6b11a7e914718e0290410e85366fe9","sha1":"69bb69e25ca7d5ef0935317584e6153f3fd9a88c","sha256":"05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e","sha512":"0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2","tlshash":"1e83c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","size":85578,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-05-15T13:11:35.246028Z","times_seen":279120,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-15T13:20:41.686131Z","times_seen":15218079,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/bb.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d553e4bac91c74bfee2dbabba61e99e","sha1":"5af71e2377c9c012a7826a695f2724901941b19b","sha256":"1be1304c675449b1bad38ea8c3da6c1da0763ed2fad339ee1aa461c7bf4e2a68","sha512":"105e5b23733e7bb443ba2080d606c2814b0acd2aaf228467d2ce532ff2f2ec0b292f8eb5189a24cd9f79b69a7e983b176dbd29e2d539dae7ca443821084f2894","ssdeep":"","tlshash":"23f02341bd5435f147cf3255861f2230903f08cd7206d583b9a85e916e3179d9e1bbd0","size":639,"data":"","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-04-03T20:17:39.592645Z","times_seen":13211,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"ocsp2.globalsign.com/gsorganizationvalsha2g2","fqdn":"ocsp2.globalsign.com","domain":"globalsign.com","tld":"com"},"ip":{"addr":"104.18.20.226","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:20.253370596Z","timestamp":1701941240253,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gsorganizationvalsha2g2 HTTP/1.1\r\nHost: ocsp2.globalsign.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 79\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 07 Dec 2023 09:27:13 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 1459\r\nConnection: keep-alive\r\nExpires: Mon, 11 Dec 2023 07:54:26 GMT\r\nETag: \"14852fb73d9019499a295a9695baab5bce6ac70e\"\r\nLast-Modified: Thu, 07 Dec 2023 07:54:27 GMT\r\nCache-Control: public, no-transform, must-revalidate, s-maxage=3600\r\nCF-Cache-Status: HIT\r\nAge: 1574\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 831bbb47ac320b06-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1459,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"39b154c5a9507f1ea85340b76a0b4fc5","sha1":"14852fb73d9019499a295a9695baab5bce6ac70e","sha256":"d310f272d37e65994f3f55f6e43e26b08fad349141516fb2b016e9a9d90b15c4","sha512":"c60a9e977b2c67aab36be64856f899d7c7e81d379c12f1eac0a201f571f2c0aa8e4c83656131f4e5df35b804ebb6555345f8b56cb2acb9e706ef544ba833c507","ssdeep":"","tlshash":"de31c6576f34240957418f7c4e8b9e1b1f7f5994a8fb05026576c4722c00bd05f4c51d","first_seen":"2023-12-07T10:27:31Z","last_seen":"2023-12-07T10:27:31Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"vk.cc/cow0Zw?9025\u0026utm_source=AllTrips\u0026utm_campaign=AllTrips-AllFlagstaffLodging.com\u0026utm_medium=referral\u0026utm_content=","fqdn":"vk.cc","domain":"vk.cc","tld":"cc"},"ip":{"addr":"87.240.132.67","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:20.385646246Z","timestamp":1701941240385,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /cow0Zw?9025\u0026utm_source=AllTrips\u0026utm_campaign=AllTrips-AllFlagstaffLodging.com\u0026utm_medium=referral\u0026utm_content= HTTP/1.1\r\nHost: vk.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\nserver: kittenx\r\ndate: Thu, 07 Dec 2023 09:27:13 GMT\r\ncontent-type: text/html; charset=windows-1251\r\ncontent-length: 20\r\nlocation: https://vkontakte.ru/away.php?cc_key=cow0Zw\u0026to=https%3A%2F%2Fhoneygirlhere.life%2F%3Fu%3Dd0tpaeq%26o%3Dvnak8q9%26m%3D1\r\nx-powered-by: KPHP/7.4.115241\r\nset-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vkontakte.ru; secure; HttpOnly\nremixstlid=9083075250997394993_QzIqvj6E7rVDdvCjLwsz7bO2ORML4oZ0VuaL4MKLmcT; expires=Fri, 06 Dec 2024 09:27:13 GMT; path=/; domain=.vkontakte.ru; secure\r\ncache-control: no-store\r\ncontent-encoding: gzip\r\nx-frontend: front220007\r\naccess-control-expose-headers: X-Frontend\r\nstrict-transport-security: max-age=31536000; includeSubdomains;\r\nx-trace-id: PHJk4Z29QoMzD9F_XZuKBExmefQV-A\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":20,"size_decoded":0,"mime_type":"application/x-gzip","magic":"gzip compressed data, from Unix\\012- data","md5":"7029066c27ac6f5ef18d660d5741979a","sha1":"46c6643f07aa7f6bfe7118de926b86defc5087c4","sha256":"59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2","sha512":"7e8e93f4a89ce7fae011403e14a1d53544c6e6f6b6010d61129dc27937806d2b03802610d7999eab33a4c36b0f9e001d9d76001b8354087634c1aa9c740c536f","ssdeep":"","tlshash":"de70000000c03c30cc00003000000000000c30000000c00300000c3000030c000c003c","first_seen":"2023-04-09T15:32:38Z","last_seen":"2025-03-02T06:10:10.559841Z","times_seen":229342,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp2.globalsign.com/gsorganizationvalsha2g2","fqdn":"ocsp2.globalsign.com","domain":"globalsign.com","tld":"com"},"ip":{"addr":"104.18.20.226","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:20.492714366Z","timestamp":1701941240492,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gsorganizationvalsha2g2 HTTP/1.1\r\nHost: ocsp2.globalsign.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 79\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 07 Dec 2023 09:27:14 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 1459\r\nConnection: keep-alive\r\nExpires: Mon, 11 Dec 2023 07:54:26 GMT\r\nETag: \"14852fb73d9019499a295a9695baab5bce6ac70e\"\r\nLast-Modified: Thu, 07 Dec 2023 07:54:27 GMT\r\nCache-Control: public, no-transform, must-revalidate, s-maxage=3600\r\nCF-Cache-Status: HIT\r\nAge: 1575\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 831bbb492dbd0b06-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1459,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"39b154c5a9507f1ea85340b76a0b4fc5","sha1":"14852fb73d9019499a295a9695baab5bce6ac70e","sha256":"d310f272d37e65994f3f55f6e43e26b08fad349141516fb2b016e9a9d90b15c4","sha512":"c60a9e977b2c67aab36be64856f899d7c7e81d379c12f1eac0a201f571f2c0aa8e4c83656131f4e5df35b804ebb6555345f8b56cb2acb9e706ef544ba833c507","ssdeep":"","tlshash":"de31c6576f34240957418f7c4e8b9e1b1f7f5994a8fb05026576c4722c00bd05f4c51d","first_seen":"2023-12-07T10:27:31Z","last_seen":"2023-12-07T10:27:31Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"vkontakte.ru/away.php?cc_key=cow0Zw\u0026to=https%3A%2F%2Fhoneygirlhere.life%2F%3Fu%3Dd0tpaeq%26o%3Dvnak8q9%26m%3D1","fqdn":"vkontakte.ru","domain":"vkontakte.ru","tld":"ru"},"ip":{"addr":"87.240.132.72","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:20.563957211Z","timestamp":1701941240563,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /away.php?cc_key=cow0Zw\u0026to=https%3A%2F%2Fhoneygirlhere.life%2F%3Fu%3Dd0tpaeq%26o%3Dvnak8q9%26m%3D1 HTTP/1.1\r\nHost: vkontakte.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 301 Moved Permanently\r\nserver: kittenx\r\ndate: Thu, 07 Dec 2023 09:27:14 GMT\r\ncontent-type: text/html; charset=windows-1251\r\ncontent-length: 0\r\nlocation: https://vk.com/login?act=vkcomredirect\u0026to=YXdheS5waHA/Y2Nfa2V5PWNvdzBadyZ0bz1odHRwcyUzQSUyRiUyRmhvbmV5Z2lybGhlcmUubGlmZSUyRiUzRnUlM0RkMHRwYWVxJTI2byUzRHZuYWs4cTklMjZtJTNEMQ--\r\nx-powered-by: KPHP/7.4.115241\r\nset-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vkontakte.ru; secure; HttpOnly\nremixstlid=9073505101789484963_FV8emvdHn1QqhqdoxFa8nfZTHfxSAIZtEqhVdnww3Ps; expires=Fri, 06 Dec 2024 09:27:14 GMT; path=/; domain=.vkontakte.ru; secure\r\ncache-control: no-store\r\nx-frontend: front220204\r\nstrict-transport-security: max-age=15768000\r\naccess-control-expose-headers: X-Frontend\r\norigin-agent-cluster: ?0\r\nx-trace-id: mWVNoCFexK33O7FS0PhSGd0voaxQaA\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-15T13:20:41.686131Z","times_seen":15218079,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp2.globalsign.com/gsorganizationvalsha2g2","fqdn":"ocsp2.globalsign.com","domain":"globalsign.com","tld":"com"},"ip":{"addr":"104.18.20.226","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:20.706248642Z","timestamp":1701941240706,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gsorganizationvalsha2g2 HTTP/1.1\r\nHost: ocsp2.globalsign.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 79\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 07 Dec 2023 09:27:14 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 1459\r\nConnection: keep-alive\r\nExpires: Mon, 11 Dec 2023 07:54:26 GMT\r\nETag: \"14852fb73d9019499a295a9695baab5bce6ac70e\"\r\nLast-Modified: Thu, 07 Dec 2023 07:54:27 GMT\r\nCache-Control: public, no-transform, must-revalidate, s-maxage=3600\r\nCF-Cache-Status: HIT\r\nAge: 1575\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 831bbb4a7f510b06-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1459,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"39b154c5a9507f1ea85340b76a0b4fc5","sha1":"14852fb73d9019499a295a9695baab5bce6ac70e","sha256":"d310f272d37e65994f3f55f6e43e26b08fad349141516fb2b016e9a9d90b15c4","sha512":"c60a9e977b2c67aab36be64856f899d7c7e81d379c12f1eac0a201f571f2c0aa8e4c83656131f4e5df35b804ebb6555345f8b56cb2acb9e706ef544ba833c507","ssdeep":"","tlshash":"de31c6576f34240957418f7c4e8b9e1b1f7f5994a8fb05026576c4722c00bd05f4c51d","first_seen":"2023-12-07T10:27:31Z","last_seen":"2023-12-07T10:27:31Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"vk.com/login?act=vkcomredirect\u0026to=YXdheS5waHA/Y2Nfa2V5PWNvdzBadyZ0bz1odHRwcyUzQSUyRiUyRmhvbmV5Z2lybGhlcmUubGlmZSUyRiUzRnUlM0RkMHRwYWVxJTI2byUzRHZuYWs4cTklMjZtJTNEMQ--","fqdn":"vk.com","domain":"vk.com","tld":"com"},"ip":{"addr":"87.240.137.164","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:20.767277011Z","timestamp":1701941240767,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /login?act=vkcomredirect\u0026to=YXdheS5waHA/Y2Nfa2V5PWNvdzBadyZ0bz1odHRwcyUzQSUyRiUyRmhvbmV5Z2lybGhlcmUubGlmZSUyRiUzRnUlM0RkMHRwYWVxJTI2byUzRHZuYWs4cTklMjZtJTNEMQ-- HTTP/1.1\r\nHost: vk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 301 Moved Permanently\r\nserver: kittenx\r\ndate: Thu, 07 Dec 2023 09:27:14 GMT\r\ncontent-type: text/html; charset=windows-1251\r\ncontent-length: 20\r\nx-powered-by: KPHP/7.4.115241\r\nset-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly\nremixlang=3; expires=Wed, 04 Dec 2024 05:04:26 GMT; path=/; domain=.vk.com\nremixstlid=9072660676859561479_XX12d5NL40nFIbMLw4fCdtAu1IIBcUqbroHhpWzhHFT; expires=Fri, 06 Dec 2024 09:27:14 GMT; path=/; domain=.vk.com; secure\nremixvkcom=1; path=/; domain=.vk.com; secure\r\ncache-control: no-store\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nx-robots-tag: noindex\r\nlocation: /away.php?cc_key=cow0Zw\u0026to=https%3A%2F%2Fhoneygirlhere.life%2F%3Fu%3Dd0tpaeq%26o%3Dvnak8q9%26m%3D1\r\ncontent-encoding: gzip\r\nx-frontend: front512004\r\nstrict-transport-security: max-age=15768000\r\naccess-control-expose-headers: X-Frontend\r\norigin-agent-cluster: ?0\r\nx-trace-id: 0V6vaiSZMUPFTivzA4y1g8fRI-l8ng\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":20,"size_decoded":0,"mime_type":"application/x-gzip","magic":"gzip compressed data, from Unix\\012- data","md5":"7029066c27ac6f5ef18d660d5741979a","sha1":"46c6643f07aa7f6bfe7118de926b86defc5087c4","sha256":"59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2","sha512":"7e8e93f4a89ce7fae011403e14a1d53544c6e6f6b6010d61129dc27937806d2b03802610d7999eab33a4c36b0f9e001d9d76001b8354087634c1aa9c740c536f","ssdeep":"","tlshash":"de70000000c03c30cc00003000000000000c30000000c00300000c3000030c000c003c","first_seen":"2023-04-09T15:32:38Z","last_seen":"2025-03-02T06:10:10.559841Z","times_seen":229342,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"vk.com/away.php?cc_key=cow0Zw\u0026to=https%3A%2F%2Fhoneygirlhere.life%2F%3Fu%3Dd0tpaeq%26o%3Dvnak8q9%26m%3D1","fqdn":"vk.com","domain":"vk.com","tld":"com"},"ip":{"addr":"87.240.137.164","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:20.832112121Z","timestamp":1701941240832,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /away.php?cc_key=cow0Zw\u0026to=https%3A%2F%2Fhoneygirlhere.life%2F%3Fu%3Dd0tpaeq%26o%3Dvnak8q9%26m%3D1 HTTP/1.1\r\nHost: vk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: remixlang=3; remixstlid=9072660676859561479_XX12d5NL40nFIbMLw4fCdtAu1IIBcUqbroHhpWzhHFT; remixvkcom=1\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\nserver: kittenx\r\ndate: Thu, 07 Dec 2023 09:27:14 GMT\r\ncontent-type: text/html; charset=windows-1251\r\ncontent-length: 20\r\nlocation: https://away.vk.com/away.php?rh=8af7c713-dff4-4c18-80c3-ae103f5c5322\r\nx-powered-by: KPHP/7.4.115241\r\nset-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly\nremixsec_redir=https%3A%2F%2Fhoneygirlhere.life%2F%3Fu%3Dd0tpaeq%26o%3Dvnak8q9%26m%3D1; path=/; domain=.vk.com\nremixua=-1%7C-1%7C320%7C295475610; expires=Wed, 04 Dec 2024 03:14:43 GMT; path=/; domain=.vk.com; secure\r\ncache-control: no-store\r\nx-frame-options: DENY\r\ncontent-encoding: gzip\r\nx-frontend: front512004\r\nstrict-transport-security: max-age=15768000\r\naccess-control-expose-headers: X-Frontend\r\norigin-agent-cluster: ?0\r\nx-trace-id: kkAzUeB3vehWubgdWRPkao8rgudgCA\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":20,"size_decoded":0,"mime_type":"application/x-gzip","magic":"gzip compressed data, from Unix\\012- data","md5":"7029066c27ac6f5ef18d660d5741979a","sha1":"46c6643f07aa7f6bfe7118de926b86defc5087c4","sha256":"59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2","sha512":"7e8e93f4a89ce7fae011403e14a1d53544c6e6f6b6010d61129dc27937806d2b03802610d7999eab33a4c36b0f9e001d9d76001b8354087634c1aa9c740c536f","ssdeep":"","tlshash":"de70000000c03c30cc00003000000000000c30000000c00300000c3000030c000c003c","first_seen":"2023-04-09T15:32:38Z","last_seen":"2025-03-02T06:10:10.559841Z","times_seen":229342,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"away.vk.com/away.php?rh=8af7c713-dff4-4c18-80c3-ae103f5c5322","fqdn":"away.vk.com","domain":"vk.com","tld":"com"},"ip":{"addr":"87.240.137.164","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:21.227542829Z","timestamp":1701941241227,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /away.php?rh=8af7c713-dff4-4c18-80c3-ae103f5c5322 HTTP/1.1\r\nHost: away.vk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: remixlang=3; remixstlid=9072660676859561479_XX12d5NL40nFIbMLw4fCdtAu1IIBcUqbroHhpWzhHFT; remixvkcom=1; remixsec_redir=https%3A%2F%2Fhoneygirlhere.life%2F%3Fu%3Dd0tpaeq%26o%3Dvnak8q9%26m%3D1; remixua=-1%7C-1%7C320%7C295475610\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: kittenx\r\ndate: Thu, 07 Dec 2023 09:27:14 GMT\r\ncontent-type: text/html; charset=windows-1251\r\ncontent-length: 293\r\nx-powered-by: KPHP/7.4.115241\r\nset-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly\nremixsec_redir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; domain=.vk.com\nremixsec_redir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=away.vk.com\nremixsec_redir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/\r\ncache-control: no-store\r\nx-frame-options: DENY\r\ncontent-encoding: gzip\r\nx-frontend: front512004\r\naccess-control-expose-headers: X-Frontend\r\nx-trace-id: g1ey2mcJL_kw9CYxrN0jj1zhP68KdA\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":293,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (524), with no line terminators","md5":"6cdb8f8731365749be3cc8451e494178","sha1":"65f085d1c48f0fc879e310a6070a47c8c8e44e0c","sha256":"0dd9bc5d4680e87786dd79571a00920a303154ec31d85c1a5eb3d897287d7c6c","sha512":"49d679723b60d5f082f8fa9fb34c061e6f0ee93bc268fa5b1007c3566eec4773d3f74189e8a0b19b7d5e4392fad54e908dc77a507796a3827a039ec55acdf8fb","ssdeep":"","tlshash":"13f08ba21816ccb6dbf2e43061ea6d4e01136a0bbf441444f010036711f8d56d1576ec","first_seen":"2023-12-07T10:27:31Z","last_seen":"2023-12-07T10:27:31Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"away.vk.com/favicon.ico","fqdn":"away.vk.com","domain":"vk.com","tld":"com"},"ip":{"addr":"87.240.137.164","port":0,"asn":47541,"as":"VKontakte Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-07T09:27:21.764273724Z","timestamp":1701941241764,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: away.vk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://away.vk.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: remixlang=3; remixstlid=9072660676859561479_XX12d5NL40nFIbMLw4fCdtAu1IIBcUqbroHhpWzhHFT; remixvkcom=1; remixua=-1%7C-1%7C320%7C295475610\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: kittenx\r\ndate: Thu, 07 Dec 2023 09:27:15 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4944\r\nlast-modified: Tue, 05 Apr 2022 13:13:01 GMT\r\netag: \"624c405d-1350\"\r\nexpires: Thu, 14 Dec 2023 09:27:15 GMT\r\ncache-control: max-age=604800\r\nx-frontend: front512004\r\naccess-control-expose-headers: X-Frontend\r\nx-trace-id: dD2mJ34Zgv-lVa-gX7sPc9Uxs2U5DQ\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":4944,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\\012- data","md5":"d41fa4f682279a0c77159080255b3b9e","sha1":"7cdf65f129f33ddf76146c9fc0bb30bb80d25065","sha256":"25dfe61842345c39cb13beeee5b921cfe1c16b5f774067416728f8046c56f925","sha512":"39539b6378a59af4bef107fdab92ab7ebbcc9c480a104c3b6389f10d427244be1d818bf4b2a06012c3d68082a91d33351ad81a4a3217423f7d142eecf44cf929","ssdeep":"96:1SK+BjNz4cgm540qrpjMc4G6Lqg7Q92oIZ6x/tDJh43XCn4aoI8eBDHm3RTwVCDY:1SKaz4cg8wPM7Q0GHN4C4aouHJk8","tlshash":"4aa18fb9c21248469937e4a2708b38793757e8e8f603cee7077c8468c7e093b87cc525","first_seen":"2023-04-05T07:12:36Z","last_seen":"2026-05-15T10:29:39.058558Z","times_seen":1509,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-07T09:27:21.627Z","timestamp":1701941241627,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /?u=d0tpaeq\u0026o=vnak8q9\u0026m=1 HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://away.vk.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:15 GMT\r\nContent-Type: text/html\r\nContent-Length: 7215\r\nConnection: keep-alive\r\nset-cookie: sid=t9~1umqpozspavvwnt1t0e5t4yc; path=/\r\ncache-control: private, no-transform\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7215,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (531), with CRLF line terminators","md5":"2387dc25a0699d4ebc234282a2f1f6d4","sha1":"77187134939816757032633fdb55ac61238a17a2","sha256":"c9d8b03c342a53fe7a5e76b569f39422adea59f247f2f2a34fbc9bbef6fc2c01","sha512":"7f00438a71b2cafb9098213c838bcb8b22b3ad9e5c2daa4b8fb6e11580ab09fc498688b0e4799b3cf8f5c2f38383a9e55813ba6406ed63377a7dfb133ff02f92","ssdeep":"96:NY38Hnox54EZ/kKHcp4N4NyR5Qc95BWbEV:NNHnox54Edk6cpw4QRGy5oA","tlshash":"eee1be2034ceba7f812302d7417a975aa05fed418b23d426f2f96b3707d2c587957876","first_seen":"2023-12-07T10:27:31Z","last_seen":"2023-12-07T10:27:31Z","times_seen":1,"resource_available":false,"data":null}},"time_used":799,"timings":{"blocked":184,"dns":4,"connect":45,"send":0,"wait":377,"receive":46,"ssl":141},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/dating/toon2/css/style.css","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.378Z","timestamp":1701941242378,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /media/dating/toon2/css/style.css HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:16 GMT\r\nContent-Type: text/css\r\nContent-Length: 8608\r\nConnection: keep-alive\r\nETag: \"549edaff59c582a6a3ca91f95c60ea71\"\r\nLast-Modified: Tue, 21 Nov 2023 12:30:01 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Id-2: dd9025bab4ad464b049177c95eb6ebf374d3b3fd1af9251148b658df7ac2e3e8\r\nX-Amz-Request-Id: 179E826A2DEBD0F7\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nx-amz-meta-mc-attrs: atime:1695223378#43689163/gid:0/gname:root/mode:33279/mtime:1655387458#962597414/uid:0/uname:root\r\nx-amz-meta-mm-source-mtime: 2022-06-16T13:50:58.962597414Z\r\nExpires: Fri, 06 Dec 2024 09:27:16 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8608,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"549edaff59c582a6a3ca91f95c60ea71","sha1":"a9edcba7d667efcfd812bcd413ccbdcb2b67cc88","sha256":"b28722475035fc8fdc751034c2df8f49d66eb25cf28cf031c4e7357414a131da","sha512":"69583176f47a674a92faf8bf56d8eb69d99b886607476a4d3ae2d885809677f32587ac4931bc2181db60e227f8d01b6b9dc67183686afbe6ac66ae2084a86424","ssdeep":"192:NHGjjjjm9O6xSzeRUeycnGJnJQbcp/oNVYJYQmse5co6womse5co6wGm:NHmjmwzHnJnJ4hoJmseNDseN1","tlshash":"79020015768b204d630aefa8bbb12fa1ae7400756b4784bef0e45978a2c473537627cd","first_seen":"2023-11-25T10:07:36Z","last_seen":"2024-08-29T17:49:50.16527Z","times_seen":538,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":81,"dns":0,"connect":37,"send":0,"wait":38,"receive":1,"ssl":81},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/util/utils.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.385Z","timestamp":1701941242385,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /util/utils.js HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:16 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 7512\r\nConnection: keep-alive\r\nContent-Security-Policy: block-all-mixed-content\r\nETag: \"01816d15ca03032751161a746e2fb7c3\"\r\nLast-Modified: Mon, 20 Feb 2023 09:36:45 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Request-Id: 179E81F46FAA5C90\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nx-amz-meta-mc-attrs: atime:1676885559#334512232/gid:0/gname:root/mode:33188/mtime:1659085489#684136000/uid:0/uname:root\r\nx-amz-meta-mm-source-mtime: 2022-07-29T09:04:49.684136Z\r\nExpires: Fri, 06 Dec 2024 09:27:16 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7512,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (641), with CRLF line terminators","md5":"01816d15ca03032751161a746e2fb7c3","sha1":"dcc72ea5fa1356490ba473288159df9786b4a3c3","sha256":"8b3c83a330bf1120a13eff6ef60c1e268b827b7bc49b42a7a1f5d8ad6941f2ea","sha512":"88f23b9e14db5d4cde23de38ac1a33e0423c9bf33ae714b39b79ba7a062eae33b74515fd9c095d86c1b6971e21990050f6457814a151dc01539a56f624996b9f","ssdeep":"192:C018ojHD3/HDg8bQgdT0p+MSRzS6S+8izeLeR4OeH/t060SDWF:T18ojHD3/HDnQgdTDMSJS6S+8ibR4OMk","tlshash":"a502517e3a3e352a1d0a237d1cdad949247bfc2b754156326929b848d0ece5ce312eb1","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-02-04T20:58:21.377863Z","times_seen":8809,"resource_available":true,"data":null}},"time_used":257,"timings":{"blocked":87,"dns":22,"connect":34,"send":0,"wait":34,"receive":1,"ssl":76},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/cookie/js.cookie.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.381Z","timestamp":1701941242381,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /cookie/js.cookie.js HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:16 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 4264\r\nConnection: keep-alive\r\nContent-Security-Policy: block-all-mixed-content\r\nETag: \"a7e9883924072f15259de6888d5ef515\"\r\nLast-Modified: Wed, 31 Aug 2022 09:31:17 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Request-Id: 179E81FB866A42B1\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nExpires: Fri, 06 Dec 2024 09:27:16 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4264,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (1709), with CRLF line terminators","md5":"a7e9883924072f15259de6888d5ef515","sha1":"7f4f6e5938e68f55aef81e0cd0145f008cd28382","sha256":"985659942ab60a92b3c0a7f876d9ef60e8f048ff655a622a172fa4b44f901b6c","sha512":"f6f2859b644b249cebe21b0af49c0efa046eedc95814ad4cac400b25d6fddbb7a155db420359ccfc8570eb18899cdc369dcbf5c137f4cb21f24b27f8f297be48","ssdeep":"96:3+bMojFkR0WIxWXATmnv5h8VatgNyyd2jMAp0:3zoa0WIcXATs8atgNyM6pp0","tlshash":"ec91b7783c1535b80d06237513bf668b7077bc567c865710b64cd998eb28c6b8316fe2","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-05-09T11:12:49.947101Z","times_seen":6128,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":86,"dns":1,"connect":45,"send":0,"wait":41,"receive":0,"ssl":83},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/exit-new/exit1.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.414Z","timestamp":1701941242414,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /media/exit-new/exit1.js HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:16 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 3473\r\nConnection: keep-alive\r\nContent-Security-Policy: block-all-mixed-content\r\nETag: \"625e5e2950612f771e246beb33c9ea61\"\r\nLast-Modified: Mon, 20 Feb 2023 09:32:43 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Request-Id: 179E81F67D93F15E\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nx-amz-meta-mc-attrs: atime:1676843279#623580037/gid:0/gname:root/mode:33279/mtime:1655385544#182688000/uid:0/uname:root\r\nx-amz-meta-mm-source-mtime: 2022-06-16T13:19:04.182688Z\r\nExpires: Fri, 06 Dec 2024 09:27:16 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3473,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (641), with CRLF line terminators","md5":"625e5e2950612f771e246beb33c9ea61","sha1":"e4fc251c6c000496c285f8dc3fa097040b031681","sha256":"618f345a156a0eda55177a1bf0e8a414104f9b6c6ff5cdbe71966f081ccb8a46","sha512":"655f0b373c605d0a464bedca4df204fb3aa12442c5b0aa3b8bf13e0604fd1e89480356e9c6cc9a432f81305bf1151caf4ac4ad9d8eb24eb78cbd11318e5b9657","ssdeep":"","tlshash":"ee81407c352d7579499a777c91efe94a207b6c53f001a2320808bc94e86ce4ce325df9","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-02-01T11:35:43.37734Z","times_seen":13050,"resource_available":true,"data":null}},"time_used":121,"timings":{"blocked":84,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/bb.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.412Z","timestamp":1701941242412,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /media/bb.js HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:16 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 639\r\nConnection: keep-alive\r\nContent-Security-Policy: block-all-mixed-content\r\nETag: \"0d553e4bac91c74bfee2dbabba61e99e\"\r\nLast-Modified: Mon, 20 Feb 2023 09:29:45 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Request-Id: 179E8212FA5C70DF\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nx-amz-meta-mc-attrs: atime:1676832256#258761277/gid:0/gname:root/mode:33188/mtime:1659030913#852764000/uid:0/uname:root\r\nx-amz-meta-mm-source-mtime: 2022-07-28T17:55:13.852764Z\r\nExpires: Fri, 06 Dec 2024 09:27:16 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":639,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (639), with no line terminators","md5":"0d553e4bac91c74bfee2dbabba61e99e","sha1":"5af71e2377c9c012a7826a695f2724901941b19b","sha256":"1be1304c675449b1bad38ea8c3da6c1da0763ed2fad339ee1aa461c7bf4e2a68","sha512":"105e5b23733e7bb443ba2080d606c2814b0acd2aaf228467d2ce532ff2f2ec0b292f8eb5189a24cd9f79b69a7e983b176dbd29e2d539dae7ca443821084f2894","ssdeep":"","tlshash":"23f02341bd5435f147cf3255861f2230903f08cd7206d583b9a85e916e3179d9e1bbd0","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-04-03T20:17:39.592645Z","times_seen":13211,"resource_available":true,"data":null}},"time_used":281,"timings":{"blocked":91,"dns":1,"connect":45,"send":0,"wait":45,"receive":0,"ssl":92},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/dating/toon2/css/animate.min.css","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.372Z","timestamp":1701941242372,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /media/dating/toon2/css/animate.min.css HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:15 GMT\r\nContent-Type: text/css\r\nContent-Length: 52789\r\nConnection: keep-alive\r\nContent-Security-Policy: block-all-mixed-content\r\nETag: \"178b651958ceff556cbc5f355e08bbf1\"\r\nLast-Modified: Mon, 20 Feb 2023 09:32:28 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Request-Id: 179E826A4D80A1F1\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nx-amz-meta-mc-attrs: atime:1676843394#511755078/gid:0/gname:root/mode:33279/mtime:1655387458#958597404/uid:0/uname:root\r\nx-amz-meta-mm-source-mtime: 2022-06-16T13:50:58.958597404Z\r\nExpires: Fri, 06 Dec 2024 09:27:15 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":52789,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (52592)","md5":"178b651958ceff556cbc5f355e08bbf1","sha1":"97afa151569f046b2e01f27c1871646e9cd87caf","sha256":"8fe3fa119255adb5e0c12479331f9e092e85bcff56ab6ecc0510bfa2056b898d","sha512":"4f251a31b62b28565f41fa7ef67406384b7ebc6bb89caccb93429a5779c589f2f72bc9fb9736fc0dac93ccb38ad29372cf1189cc6452c3bf1ef31a89854449dd","ssdeep":"768:KkZcIOIVjl2eIWInPywe1aAvkqDX3oyq5BrieD0OTbsysV:KkZ8Pywe1aAvkqDX3oyq5BrieD0OTq","tlshash":"253305ae5891129950274f67c7cc5ea8872dc7a714621cde33826c4b8b47fde33da607","first_seen":"2023-04-05T13:46:05Z","last_seen":"2026-05-15T13:03:32.386444Z","times_seen":14358,"resource_available":false,"data":null}},"time_used":225,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":179,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/dating/toon2/js/jquery-2.2.4.min.js","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.390Z","timestamp":1701941242390,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /media/dating/toon2/js/jquery-2.2.4.min.js HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:16 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 85578\r\nConnection: keep-alive\r\nETag: \"2f6b11a7e914718e0290410e85366fe9\"\r\nLast-Modified: Tue, 21 Nov 2023 12:30:01 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Id-2: dd9025bab4ad464b049177c95eb6ebf374d3b3fd1af9251148b658df7ac2e3e8\r\nX-Amz-Request-Id: 179E826A83497E05\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nx-amz-meta-mc-attrs: atime:1695223378#91689271/gid:0/gname:root/mode:33279/mtime:1655387458#954597395/uid:0/uname:root\r\nx-amz-meta-mm-source-mtime: 2022-06-16T13:50:58.954597395Z\r\nExpires: Fri, 06 Dec 2024 09:27:16 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":85578,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (32065)","md5":"2f6b11a7e914718e0290410e85366fe9","sha1":"69bb69e25ca7d5ef0935317584e6153f3fd9a88c","sha256":"05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e","sha512":"0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db","ssdeep":"1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2","tlshash":"1e83c6d9b2d6706297b734b850bf410bb17a98dab44c8c60f059d4e47eb4a8e507bf2c","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-05-15T13:11:35.246028Z","times_seen":279120,"resource_available":true,"data":null}},"time_used":389,"timings":{"blocked":109,"dns":2,"connect":45,"send":0,"wait":45,"receive":92,"ssl":92},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/dating/toon2/images/123.jpg","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.388Z","timestamp":1701941242388,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /media/dating/toon2/images/123.jpg HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 179176\r\nConnection: keep-alive\r\nContent-Security-Policy: block-all-mixed-content\r\nETag: \"a2d245e1c43c61ca34bea001510dd6d9\"\r\nLast-Modified: Mon, 20 Feb 2023 09:32:28 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Request-Id: 179E826AA0DC1E98\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nx-amz-meta-mc-attrs: atime:1676843394#511755078/gid:0/gname:root/mode:33279/mtime:1655387458#958597404/uid:0/uname:root\r\nx-amz-meta-mm-source-mtime: 2022-06-16T13:50:58.958597404Z\r\nExpires: Fri, 06 Dec 2024 09:27:17 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":179176,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1069, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=620], progressive, precision 8, 620x1032, components 3\\012- data","md5":"a2d245e1c43c61ca34bea001510dd6d9","sha1":"7a7e0dbf8bb132958fecd093e6741ffe49d060b5","sha256":"f6113b1f6bdd279404fd53c920f6ba411b66a897db4c67e16d2129af22370a57","sha512":"17df5e1fe22f607183b06c207a3c12a240a67d2ceaa1009dd74c4b9d7265e95594ead606a77c20add05df0966910166f3cff67606c3539c905e150645104382f","ssdeep":"3072:n4ncEWsLkLgz5nQ7ndaks0vtnNsveXEbugg+Cxb0YEK6VX5g975+HQyeZ2Wd/mx:n+hkLwQ7np9FninVjChmQlyeZ2A/mx","tlshash":"b404125c4a20dfd0e4d25c3ee09fc55017f5bca193636a8bba8c229c7b2e6611e1eb54","first_seen":"2023-11-25T10:07:36Z","last_seen":"2026-02-10T23:27:28.65982Z","times_seen":561,"resource_available":false,"data":null}},"time_used":1256,"timings":{"blocked":1072,"dns":0,"connect":0,"send":0,"wait":45,"receive":139,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i|Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i\u0026subset=cyrillic,cyrillic-ext,latin-ext","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:22.517Z","timestamp":1701941242517,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"CC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42","sha256":"9A:90:D4:1D:0C:D1:CA:9D:4D:19:37:44:C4:E6:E4:28:27:C0:F5:0A:9C:B4:56:89:C4:D1:8A:63:A7:01:28:54"}}},"request":{"raw":"GET /css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i|Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i\u0026subset=cyrillic,cyrillic-ext,latin-ext HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 07 Dec 2023 09:27:16 GMT\r\ndate: Thu, 07 Dec 2023 09:27:16 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":121195,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"gzip compressed data, max compression\\012- data","md5":"ad7924e0cc120092b0c43b5e12aeac38","sha1":"8bd5249c43d871835a6f1dd99177cc69552bd6b7","sha256":"6d185aa9573c3c8c4429c547d32fe167538134bf384ba2c61a654ba6cbaef356","sha512":"3be18b63d443a838b6b107603de51409f9acdc7b859bacfdb2f06205dfbeab8e5293d2955a1f3796918514b133af4618d12fc3e2ef599b18e8a467f2a2c8ff66","ssdeep":"3072:LLBloJYuwS6eVTM6TVgCt6nerT7MvaycW/:L4zwdeVT3TW0XyncA","tlshash":"35c3f13567963cd3d5c0587544c4a3939a104da92bd392a6fc5c2d807f2e2beacdce87","first_seen":"2023-11-25T14:24:27Z","last_seen":"2024-08-20T17:58:54.227695Z","times_seen":140,"resource_available":false,"data":null}},"time_used":1650,"timings":{"blocked":705,"dns":1,"connect":363,"send":0,"wait":237,"receive":0,"ssl":342},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:23.581Z","timestamp":1701941243581,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://honeygirlhere.life\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 23040\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 05 Dec 2023 21:36:52 GMT\r\nexpires: Wed, 04 Dec 2024 21:36:52 GMT\r\ncache-control: public, max-age=31536000\r\nage: 129025\r\nlast-modified: Tue, 02 May 2023 15:07:25 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":23040,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\\012- data","md5":"de69cf9e514df447d1b0bb16f49d2457","sha1":"2ac78601179c3a63ba3f3f3081556b12ddcaf655","sha256":"c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49","sha512":"4aebb7e54d88827d4a02808f04901c0d09b756c518202b056a6c0f664948f5585221d16967f546e064187c6545acef15d59b68d0a7a59897bd899d3e9dda37b1","ssdeep":"384:adpABC4a0HkBpR1HWtGu06B6lsoAKiwY0HcLKglV6Z+DVb35PJZDdiZeJ1vqYg:0AHa0Ezf2tZn6lsoABwTKK46ZQb3V7wD","tlshash":"fca2e1c05cc1e2d4ae02daf7fda5a4eab4e2f01123a8f65f8f114b75d505993640fe01","first_seen":"2023-04-05T13:28:45Z","last_seen":"2026-05-15T13:18:44.952915Z","times_seen":157855,"resource_available":false,"data":null}},"time_used":799,"timings":{"blocked":330,"dns":1,"connect":100,"send":0,"wait":101,"receive":37,"ssl":226},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/favicon.ico","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:24.150Z","timestamp":1701941244150,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 204 No Content\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:17 GMT\r\nConnection: keep-alive\r\nCache-Control: no-transform\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-15T13:20:41.686131Z","times_seen":15218079,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:23.583Z","timestamp":1701941243583,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://honeygirlhere.life\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 23580\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 07 Dec 2023 05:05:30 GMT\r\nexpires: Fri, 06 Dec 2024 05:05:30 GMT\r\ncache-control: public, max-age=31536000\r\nage: 15707\r\nlast-modified: Tue, 02 May 2023 15:17:22 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":23580,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\\012- data","md5":"e1b3b5908c9cf23dfb2b9c52b9a023ab","sha1":"fcd4136085f2a03481d9958cc6793a5ed98e714c","sha256":"918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537","sha512":"b2da7ef768385707afed62ca1f178efc6aa14519762e3f270129b3afee4d3782cb991e6fa66b3b08a2f81ff7caba0b4c34c726d952198b2ac4a784b36eb2a828","ssdeep":"384:dRkIAJ8pVwWTW5VVjdVn8+2yvAMdriCEOY0kfW9GkAPqpPHi2vUuUSzB8:dKIAJ8pVHTZ+riY9oCpPHiodUeK","tlshash":"91b2e1ce5d546e3a8028213785c17b488273572e9edf42c6dd83a6263a7092cfd3d96e","first_seen":"2023-04-05T13:28:45Z","last_seen":"2026-05-15T13:19:55.125419Z","times_seen":216480,"resource_available":true,"data":null}},"time_used":2229,"timings":{"blocked":457,"dns":0,"connect":112,"send":0,"wait":101,"receive":1214,"ssl":341},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"honeygirlhere.life/media/dating/toon2/images/bg.jpg","fqdn":"honeygirlhere.life","domain":"honeygirlhere.life","tld":"life"},"ip":{"addr":"185.155.184.85","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://honeygirlhere.life/?u=d0tpaeq\u0026o=vnak8q9\u0026m=1","date":"2023-12-07T09:27:23.509Z","timestamp":1701941243509,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"honeygirlhere.life","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 15:15:11 GMT","end":"Mon, 08 Jan 2024 15:15:10 GMT"},"fingerprint":{"sha1":"2C:64:EC:91:02:CD:BC:D5:8D:67:1F:5B:5D:0E:C3:A5:80:88:AD:DA","sha256":"3E:47:A9:0C:1C:9F:F4:D0:98:A2:E2:16:71:E2:91:F6:8F:96:E0:64:4A:2D:90:AF:0A:65:DF:D7:08:57:15:92"}}},"request":{"raw":"GET /media/dating/toon2/images/bg.jpg HTTP/1.1\r\nHost: honeygirlhere.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://honeygirlhere.life/media/dating/toon2/css/style.css\r\nCookie: sid=t9~1umqpozspavvwnt1t0e5t4yc\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 07 Dec 2023 09:27:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 119754\r\nConnection: keep-alive\r\nContent-Security-Policy: block-all-mixed-content\r\nETag: \"842a5629f17ec8342230aa12ea32291a\"\r\nLast-Modified: Mon, 20 Feb 2023 09:32:28 GMT\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nVary: Origin, Accept-Encoding\r\nX-Amz-Request-Id: 179E826AE7CC6972\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nx-amz-meta-mc-attrs: atime:1676843394#515755084/gid:0/gname:root/mode:33279/mtime:1655387458#958597404/uid:0/uname:root\r\nx-amz-meta-mm-source-mtime: 2022-06-16T13:50:58.958597404Z\r\nExpires: Fri, 06 Dec 2024 09:27:17 GMT\r\nCache-Control: max-age=31536000, no-transform\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":119754,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=660, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1279], progressive, precision 8, 1279x660, components 3\\012- data","md5":"842a5629f17ec8342230aa12ea32291a","sha1":"0f2390a3eda1a71d676f1cd1866956fef8e77090","sha256":"1c7361fcec43aecb4c517914dde9ecbf1fe1aaa0969411a7a383391236f335f4","sha512":"cadf7c3e7efab8d516c8a7afbeadc84700861af5606410237f3af9035e7e0f5c5c0897afbfa1341662f15acbddf0930c358118b8f8b3270c4655c40dea692973","ssdeep":"3072:5LBloJYuwS6eVTM6TVgCt6nerT7MvaycW/:54zwdeVT3TW0XyncA","tlshash":"89c3f135a7962cd3d5c0587444c4a2939a104dac2bd39696fd5c2d807f2e2feacdce87","first_seen":"2023-11-25T10:07:36Z","last_seen":"2026-02-10T23:27:28.656683Z","times_seen":548,"resource_available":false,"data":null}},"time_used":364,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":319,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-12-07","alert":"Sinkholed","trigger":"honeygirlhere.life","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}