{"report_id":"2082da2b-336c-4580-b00f-60e99d5d2945","version":0,"status":"done","tags":[],"date":"2026-06-24T14:33:58Z","url":{"schema":"http","addr":"risingpathconnection.cfd","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":0,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"final":{"url":{"schema":"https","addr":"risingpathconnection.cfd/","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"title":"Garda lawyer group","dom":{"size":104709,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (49516)","md5":"20657d2f2dd8db4f5e3a42e9602f23eb","sha1":"7b93e4a2af35e0b23e1d7474cbd7381c70a82316","sha256":"5fa7a960027d1168c2b816cc749e1d3b9de5e86e9bb6b70b8fba455a8cc5a0f0","sha512":"0846f4f6fc4badc33a74c39da9a55be038ceaaa73198f87adb09c1ac2c0d99532bfd68a600a3b29d0b0a57c4e75a45d3e3c173d6ddcbca89911add8e93b5e467","ssdeep":"1536:hq1bZRTksPS9I2IEBa4QuoRxTkTdDZcC5:Y13bJ9qTdDZcC5","tlshash":"74a38e33425935270137c2d520b95b37d29a9d6ffaa70a013eecd7f72beaca0715a019","dom_hash":"domhash6612e5e6221c1430e660188dab57cf97","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"risingpathconnection.cfd","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":0,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-29T14:33:58Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-21T22:22:12.048317Z","alert_count":0,"request_count":2,"received_data":10134,"sent_data":1193,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-06-21T22:46:13.623663Z","alert_count":0,"request_count":4,"received_data":384411,"sent_data":2177,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-21T22:19:08.810882Z","alert_count":0,"request_count":2,"received_data":63158,"sent_data":1158,"comment":"","tags":null,"fingerprints":null},{"fqdn":"risingpathconnection.cfd","ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"domain_registered":"2026-03-02","domain_rank":0,"first_seen":"2026-06-24T14:34:00.356517Z","last_seen":"2026-06-24T14:34:00.356517Z","alert_count":25,"request_count":25,"received_data":1546189,"sent_data":12987,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.4.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@18.2.1/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"66361e32c06f29cacc63c0648bf7f31e","sha1":"265b72ed843253c595ee629d0c9201dbe5328d7e","sha256":"7b8fa25cbe5eda2c2e19eb168b100fffd42d2f75a0dcafe808ac61d139cb626e","sha512":"de8ba753ba0a78bf79f88df466705be9b580612e11b57096ee406da7cfc93aa5cb76124d2c20e47a18bd7b43bc7308d607147a1cb0af02d0cab2501c962ba749","ssdeep":"3072:3PB30j8BAJjFs3OwPss3MwP2m9OOVS2x0T3TdxQgnGHIpUsW5jkmLNjoopuDs/vq:3PB3RyBu5x0T3Tdxsnbm","tlshash":"1444e0ebd63c9737a1d97b35968eb3cd5a8cbca3c848567826c3b54f52788e0706c205","size":254105,"data":"","first_seen":"2023-09-12T01:07:29Z","last_seen":"2026-07-02T03:09:58.681256Z","times_seen":1962,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/js/jquery-3.4.1.min.js","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","size":88145,"data":"","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-07-02T10:00:30.545029Z","times_seen":135372,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/js/swiper-bundle.min.js","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"224a3fa93e9d34580cba66055e98e28b","sha1":"e5bbc5bd8a0ab313ff92cdbe26173fc413de4adb","sha256":"73203b5c5f70f45b31428e9c82d30645ef407717ed84e732b32f96ab848f0a7f","sha512":"98ca98cb0a742c81920c57e3424ed0f0c0dc06d9e9c477ea5a41a48ad918cce3278c812d5fd83114e535b4adf7cc3d09044c4284a642f2a20b4c12c9533c49e6","ssdeep":"3072:SQc7nYNuja+847k2GX4G5PqTlc1C2mjj+Anq:SQEnnja+8gk2A4G5P8yPmjj+Anq","tlshash":"c9e309896120b57645e716cb93a8c65172b54804b40ec5f870fd4caf99bec9803bfef9","size":155178,"data":"","first_seen":"2026-02-18T19:33:54.476246Z","last_seen":"2026-07-02T03:22:33.565923Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/js/app.min.js","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"29d7fd648ff9e05c216ec908e06dc33d","sha1":"0a44205f445e9b326280ec0b706d17444abeca21","sha256":"81da9f4537aa1532083d49cc3979a64817f55d3f761e4ab4afbf1332d937c0e5","sha512":"ac256da2461abf663d38b2ea9772affc36513f9391932b4afe8f24126753f93e8daf9ff60911db6ddc43af0eac6bdc7489f09858d26a520c53666d72a7c5a2e5","ssdeep":"768:isFW0mw5zDXHVFBAvl99cbFu+G2qrm3ZvV+Cl:isFW0mwT0KbFuDc","tlshash":"11e2e9691240c8777cbf52e9ab5eb284f522166bd34ec61b3d3f85880f3596052a0ee7","size":31174,"data":"","first_seen":"2026-06-24T14:34:05.042411Z","last_seen":"2026-06-24T14:34:05.042411Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@18.2.1/build/js/intlTelInput.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5e243d9abb51d431ff2184d2a9a40c5b","sha1":"c4c2883bfc1614540d0955957ff6cfd3f873126f","sha256":"b80ed4d13bf572a788637e2e5e5d73519c4d65a2a9a70c27e41c893cc6fdc90e","sha512":"b99652f2bb044d72505fa272e7b65d73b3c098ff371828c2d45fcb5f4c548f5db06394a57d45fe0959d81445fcf5da2eb503de15b23d163502929b935aa941c2","ssdeep":"768:kqD7GRXOoS+D45YPI3QW6O2Eix0Pthyv4pII2iCJm1R:ZfRQWB2xothfIIZCO","tlshash":"74d22a9973512237a89ae0a1587f16476ebf34015684cc9cb8becdc80feced9a1b5734","size":31006,"data":"","first_seen":"2023-08-03T08:00:52Z","last_seen":"2026-07-01T06:12:22.255137Z","times_seen":2144,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"3dbab1232d9e9af7c8c198e770bfc025","sha1":"e791ecda963da1260af7e146d5c7a3c7f37b9873","sha256":"caa408c6e6f97f9531e0bf67eb3e9fa0148c6a33561ec94d559fa82ddc0ee224","sha512":"b690f5a208ad0dd6e707a75ee4f953a7624ba9b8bd62592746b96050a4b7e4d9a5b82c5b1ecf3de9d122b67f2aeca50e5d3701ec1e9965a97646c395fd912408","ssdeep":"","tlshash":"1f41fd1e27b311310767b0ad6bdf9b0171b1511b2c44c9463e1c47820fd9da9b7a6bdc","size":2428,"data":"","first_seen":"2026-06-24T14:34:05.082097Z","last_seen":"2026-06-24T14:34:05.082097Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"log","text":"","filename":"https://risingpathconnection.cfd/","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"risingpathconnection.cfd/js/swiper-bundle.min.js","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.602Z","timestamp":1782311614602,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /js/swiper-bundle.min.js HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a535d6-25e2a\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":155178,"size_decoded":53049,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65278)","md5":"224a3fa93e9d34580cba66055e98e28b","sha1":"e5bbc5bd8a0ab313ff92cdbe26173fc413de4adb","sha256":"73203b5c5f70f45b31428e9c82d30645ef407717ed84e732b32f96ab848f0a7f","sha512":"98ca98cb0a742c81920c57e3424ed0f0c0dc06d9e9c477ea5a41a48ad918cce3278c812d5fd83114e535b4adf7cc3d09044c4284a642f2a20b4c12c9533c49e6","ssdeep":"3072:SQc7nYNuja+847k2GX4G5PqTlc1C2mjj+Anq:SQEnnja+8gk2A4G5P8yPmjj+Anq","tlshash":"c9e309896120b57645e716cb93a8c65172b54804b40ec5f870fd4caf99bec9803bfef9","first_seen":"2026-02-18T19:33:54.476246Z","last_seen":"2026-07-02T03:22:33.565923Z","times_seen":627,"resource_available":true,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/2_1.webp","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.627Z","timestamp":1782311614627,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/2_1.webp HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 7696\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-1e10\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7696,"size_decoded":7937,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"dbce2209fdc71fec346aee150f86da12","sha1":"1fc8ee948250c79ab7eda94b48857269d9d74c7c","sha256":"14b12800af7c426d20718284146b4ed6bbbd1c51bb3ede630e292f315b468df2","sha512":"7b530c94bbee7522d9dcbff361b489e1931ce290e226a1ee9fc346bdb64cdaa3af50b3d0696b98367d61dd39c474d53ceab3b5d5acae4f5588df3c86b7afcaea","ssdeep":"192:Rc0S6x9hMj7S+z6FWW19nRcJavyWglwjTXBZ3x5/U:RcWCH+FWWDGdlwjTXBZ3Dc","tlshash":"9ff19ef9f881a93ed335f7f8164e6e2400418daa5a94c385d9ba1f18f3ed8d4a21c5d3","first_seen":"2026-05-23T08:19:25.814139Z","last_seen":"2026-06-24T14:34:05.034123Z","times_seen":2,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/icon2.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.636Z","timestamp":1782311614636,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/icon2.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1701\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-6a5\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1701,"size_decoded":1944,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9d96145bd6d5a8962f699904f9112898","sha1":"479b9c0f0b9a19d1fc1f30bae192215ccaafc830","sha256":"9d4dedcc47d6e0a227641090f419cae228e13911850498b2c2782298c0fe1847","sha512":"cf9ba55b61684cef36fd721cb3173cdb64e393053dfa904fbdcd4df63a7900a1f6e410d25b7774db68f26f3d08237e0d971c32edea74cfae890814c4286d8456","ssdeep":"","tlshash":"663142ea73d87052e142ebb04a45993b3a4638f72f228b5d26c85801fd5308e859ddd4","first_seen":"2026-05-23T08:19:25.826083Z","last_seen":"2026-06-24T14:34:05.036151Z","times_seen":2,"resource_available":false,"data":null}},"time_used":324,"timings":{"blocked":298,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/2_2.webp","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.643Z","timestamp":1782311614643,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/2_2.webp HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 34918\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-8866\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34918,"size_decoded":35160,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"65ce624352a225195af6d1f627bec689","sha1":"284bbcf7df0fa945810dfcab798fe403b6aac6e4","sha256":"c7f0f878419d14d5841281375ac326784989b0f2bc3a075763b79e9d044c956f","sha512":"27d862595d392ae8526144b9a64469816ef9a0738e746e18f6e37201ccd2fe55a5e52eab681db413fd72a9add6f8cd769b94a3b198d3bf4918f00543e760386f","ssdeep":"768:OhZdPlZLTy5shPsF6PS/SlvIPEmcHIasqYoXYxPmcGomf3t:OzZLCse76lSSIFqaS3f3t","tlshash":"12f2e1581b4bbf5590ce8065dac2dc566400bffee7c9879e01b9938b0043b68dd5d6b3","first_seen":"2026-05-23T08:19:25.873803Z","last_seen":"2026-06-24T14:35:05.000428Z","times_seen":3,"resource_available":false,"data":null}},"time_used":354,"timings":{"blocked":298,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=PT+Serif+Caption:ital@0;%201\u0026family=Unbounded:wght@200..900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.683Z","timestamp":1782311614683,"http_version":"HTTP/2","security_state":"","security_info":null,"request":{"raw":"GET /css2?family=PT+Serif+Caption:ital@0;%201\u0026family=Unbounded:wght@200..900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 400 \r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Wed, 24 Jun 2026 14:33:34 GMT\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T10:08:17.312169Z","times_seen":16908850,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/js/app.min.js","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.604Z","timestamp":1782311614604,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /js/app.min.js HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nLast-Modified: Mon, 02 Mar 2026 11:22:45 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a57305-79c6\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31174,"size_decoded":8857,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"29d7fd648ff9e05c216ec908e06dc33d","sha1":"0a44205f445e9b326280ec0b706d17444abeca21","sha256":"81da9f4537aa1532083d49cc3979a64817f55d3f761e4ab4afbf1332d937c0e5","sha512":"ac256da2461abf663d38b2ea9772affc36513f9391932b4afe8f24126753f93e8daf9ff60911db6ddc43af0eac6bdc7489f09858d26a520c53666d72a7c5a2e5","ssdeep":"768:isFW0mw5zDXHVFBAvl99cbFu+G2qrm3ZvV+Cl:isFW0mwT0KbFuDc","tlshash":"11e2e9691240c8777cbf52e9ab5eb284f522166bd34ec61b3d3f85880f3596052a0ee7","first_seen":"2026-06-24T14:34:05.042411Z","last_seen":"2026-06-24T14:34:05.042411Z","times_seen":1,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":27,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/css/swiper-bundle.min.css","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.596Z","timestamp":1782311614596,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /css/swiper-bundle.min.css HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: text/css\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a535d6-3858\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14424,"size_decoded":3720,"mime_type":"text/css","magic":"ASCII text, with very long lines (14166)","md5":"ea4ddaf01ede858dc0d4d922aeb49445","sha1":"022da3322fff84a5ed610820576458facb2a9260","sha256":"96ec55ae706747dcf60af4bb9e8c4e3dc50f5fd9edf30d25e0bb1c383526e7f9","sha512":"facd00352cce6f8db506080bf5b180ac86220d0033eedf16ae5d302b17c4e6fbfa719fe9fd5f3dbc48889cabf898ba752e40be6eb0e16c38dfe85e4cf9487a7e","ssdeep":"192:/KnJI8pXuCzSOepi5TJDdG2YaHXGT+2JOzEf77LODKtVTYDSeSBeZJMPPIx:/2JFpXr4pETJDk2YsXc8YT7uRvTx","tlshash":"7b5253945310282b96335f3a67a0cbbce17858814f939ae990c0ed58d3fadf9076f395","first_seen":"2026-02-18T22:30:55.554999Z","last_seen":"2026-07-02T03:22:33.576653Z","times_seen":610,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@18.2.1/build/css/intlTelInput.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.598Z","timestamp":1782311614598,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 22 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"65:D9:C4:7E:04:4C:FD:DD:60:E0:CC:18:B5:B7:01:68:B4:2D:C7:34","sha256":"50:6C:A4:F6:ED:74:C7:E9:68:DB:32:56:5A:68:4C:98:ED:01:28:36:F8:13:BA:CC:19:A7:FD:7A:0A:6E:E7:D4"}}},"request":{"raw":"GET /npm/intl-tel-input@18.2.1/build/css/intlTelInput.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Wed, 24 Jun 2026 14:33:34 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 2811\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 18.2.1\r\nx-jsd-version-type: version\r\netag: W/\"5fb8-WnSvB+yaygmg0DeJxvUEpIoK3s4\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-etou8220054-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nage: 5616238\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lDeQtCytbpsZ7lxpbqzzSmCCA7CPSuwRvmoSEZEHWH%2FbH6QDn9TruAKaSrzIMCd2ZYc3KLejse6qaImkg2iHn7ZFxB2JSYHsAPkxKcV0TCr7R5dWT9%2BNTratwNbNcbLt8Qw%3D\"}]}\r\nserver: cloudflare\r\ncf-ray: a10c72c769de8be6-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24504,"size_decoded":3910,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"6474cd50bf0031ad62305728a886c259","sha1":"5a74af07ec9aca09a0d03789c6f504a48a0adece","sha256":"69e8eadb82de98033b1ccfb0100f0d0bbcd34248f30e408df6e62530d677c1a2","sha512":"b39d530ec21c32a961d587506c5dd58f84ad714ff9b3ded5c8b104a643d6c0fd0225f8d9fc2e7301a1e71be0d9ae81839f551a8107b30c4cbad633f8ca88b8bd","ssdeep":"384:15oFjFgXku1imOgs2J9ZE+xfmYqFD1+vSE8k2eOYcyML:1KFjFgXkuzCFz","tlshash":"87b252674bb27914f92be1e13c6006a2373f5c03b81e5b3d66e63dbd66850e0a4f3691","first_seen":"2023-08-03T08:00:52Z","last_seen":"2026-07-02T03:09:58.698994Z","times_seen":1932,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":10,"connect":2,"send":0,"wait":8,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/2.webp","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.622Z","timestamp":1782311614622,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/2.webp HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 15900\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-3e1c\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15900,"size_decoded":16142,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f55730e106ab84e5fb0b125449b4dda6","sha1":"95428f6c66cf39ede1e145963bd1176ae0ffb45c","sha256":"e65a544e8b064b36b29b85519ea3ac2cc4dcdce991f0130ca39aebdc3e5a5683","sha512":"62a93cbe7ace3eb9e86bc6e613f075a9059abb4524c5c4c900c6d9f8a56415808863ff7a59c183025508750fc82ff47421ddd47cc3db801fecf1858c3c9307c4","ssdeep":"384:ZYgr1XIbnURXiuybPpe4Y9Iu1HDrbtCduTNCI:WchOnUdiuybPY4cVrbtCduBCI","tlshash":"0562d0ebdd04a47fd68d0c234c95d2a1b7ab8612656764dfb32056bbad57e08a30900e","first_seen":"2026-05-23T08:19:25.706356Z","last_seen":"2026-06-24T14:35:04.997937Z","times_seen":3,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":25,"send":0,"wait":50,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459W1hyyTn89ddpROi.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.091Z","timestamp":1782311615091,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459W1hyyTn89ddpROi.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://risingpathconnection.cfd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 23776\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 05:16:58 GMT\r\nexpires: Fri, 18 Jun 2027 05:16:58 GMT\r\ncache-control: public, max-age=31536000\r\nage: 551797\r\nlast-modified: Thu, 04 Sep 2025 17:11:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":23776,"size_decoded":24589,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 23776, version 1.0","md5":"61611e47a80abeae7bab6335b074c70b","sha1":"6902954d25cbd00a037f12421a0d25580a0a81f7","sha256":"6e310df94df0c3e75cd1c6ecd08e22cc559eb0667d54013afdc469671ef4614a","sha512":"8207ee33de460e5f705a53a54ed45f4ad921141672b995584b2718a9bee837ae3331647f0f8fa9b62b812e6b54f9397e1da11160f9b3bf51ae39fc1ec32bb07b","ssdeep":"384:uEEi3OYr7g0sF91UG3qkcKtr40D/w18XHu3Nr/UL2s+HSeSN/Z26s6A296:fEieY/gfj1UVKSow1TVs+HY/Z/a","tlshash":"d4b2e142401cf0b1e7c76f7daacf24c095d613bacf3f95981145db7855ad5932c9c88a","first_seen":"2025-09-05T05:16:31.285834Z","last_seen":"2026-07-02T04:59:44.482505Z","times_seen":8848,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":33,"dns":0,"connect":0,"send":0,"wait":22,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/css/style.css","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.313Z","timestamp":1782311614313,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /css/style.css HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: text/css\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a535d6-943d\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37949,"size_decoded":7972,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"50bbf59b4ec74acbf045e69716b2b152","sha1":"e161979dcd73fd487fe139a8a1b771fbb47a5d7c","sha256":"806af30bee271f0dc690a2b05df010c80078bd1a7a0f8a55268a09fcf4708611","sha512":"e6c33ba042815e9898ffc5243b48086199f4d2981a6004fa55bedaa3694c4371f21e71f130b7ceda3088cbc9cc2b296075190f426be704f8fab805166e9b11ef","ssdeep":"192:udcYoa90XpWYGCzPgZEmp/nOUrVM6+4NRylJI8mMGay2gWr6W1bippc8Ekz/NsP3:/8YbIIGPutfyLfynkJG","tlshash":"1903741c5620390471f7ebb4c7a766d1fa7a00aacb02005d7ae3d2c9afaf5d04565ecb","first_seen":"2026-06-24T14:34:05.050956Z","last_seen":"2026-06-24T14:35:04.9965Z","times_seen":2,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/logo.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.619Z","timestamp":1782311614619,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/logo.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 794117\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-c1e05\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":794117,"size_decoded":794364,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3a2c3735a47645a4a9dedd9e167b7c29","sha1":"c3397145f7fc4a37b91df5efb334d72a3f635fbb","sha256":"80c7d811e55c4ea43a5322bcb0194181401984322f43c86a10f65916e4f917e9","sha512":"5b5751ff165ad0ea72fddc7b383b49c8e0623a7d85958c35a3a055716b8bfa063ce005bc481578b57a342607f7b1e7cea126ee728226dfa379442ca38a453774","ssdeep":"12288:5A4ZzZce/rwC0QKXH9FDxYEYrPwL+7JjxIOFL6ebBit2xgQ/0B7yN6K1fJ:V9djz0xXH/DxYE4PLtIOoetS0GfKtJ","tlshash":"25f402f4a26afebd87b894d9eb280d157cc98c0fc241c7dea10483f557695a85f2ec60","first_seen":"2026-05-23T08:19:25.758589Z","last_seen":"2026-06-24T14:34:05.052545Z","times_seen":2,"resource_available":false,"data":null}},"time_used":242,"timings":{"blocked":-1,"dns":0,"connect":26,"send":0,"wait":51,"receive":127,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/2.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.070Z","timestamp":1782311615070,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/2.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:35 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1047\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-417\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1047,"size_decoded":1290,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"614372d05c8588530f301bbd240b6370","sha1":"44e02916dbfb8176f18426f219bfa800e2fdce44","sha256":"442c20d1210221c448c03d9f2e499d9b5329a2fec0664d3eddcba75121df457f","sha512":"b52d54a033bcf0e1877f8d3c75fd293b3b3ba866e1796af03901cdb0b839a2a7550458485f89dd2c1b28c143b0f5914b32ac57db32a72081430af126070562b7","ssdeep":"","tlshash":"d0118691937085ecf1060838a26dfc717b9818cb6612d5e9c3680e33768b84f65716b7","first_seen":"2026-05-23T08:19:25.777623Z","last_seen":"2026-06-24T14:34:05.053941Z","times_seen":2,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/3.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.073Z","timestamp":1782311615073,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/3.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:35 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1589\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-635\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1589,"size_decoded":1832,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1979317d40a34c3fe9fc1f05a83b27f7","sha1":"7d665e18a87df1ff924417e71923e8d080bb0067","sha256":"34f1f2c3c5b64b32ad7e85a8ad7c573c51f4a5dd87d377c0b1c73fb94707e5d6","sha512":"6a2c650df365c8d7e675395e226e55b651a21248a6b03f2232dfe5ef4ab6d06153cd3a82d6483088cb942b3e08fca980a808323771a4384c9a51b461731d5f7f","ssdeep":"","tlshash":"6231e0d07334e17cf801c0ad52182d75db4498aa672190a9e4e52a3b788fc0d9fb0ee7","first_seen":"2026-05-23T08:19:25.722918Z","last_seen":"2026-06-24T14:34:05.055383Z","times_seen":2,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.089Z","timestamp":1782311615089,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://risingpathconnection.cfd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37756\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 19 Jun 2026 18:05:53 GMT\r\nexpires: Sat, 19 Jun 2027 18:05:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 419262\r\nlast-modified: Thu, 04 Sep 2025 17:09:21 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":37756,"size_decoded":38569,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37756, version 1.0","md5":"8a6a885dd57e60ddd85f3190737fa209","sha1":"dbca56b7fe8ee5e4bfb648d639fc6a3bfc5c6e85","sha256":"b9b102f608e8252e3c1e7287309832b16af7dcc6e788651fa503a3faacd7fb2f","sha512":"2bd785869777dc57dbb5934d4c6915b66f89746dd79897820eb4bbd0d262b2612bafdfb07c1e092658ad819f582a97e6a196531f74187d8a0b0bbd07fcbba56a","ssdeep":"768:sqRKhgpCf9U72WeD4A/5IqtBr0ikGvEaQh38/LBu3Emdc043RpgZKMqjkEfO1m:jKgp+9U7Ve8A/7Ai9Et3EBKEUE3RqMMu","tlshash":"3e030130df5884edcc0ba371fdeea81fc7a332a594c0b3368297af1b80111499d99e49","first_seen":"2025-09-05T00:25:10.258656Z","last_seen":"2026-07-02T10:07:24.715146Z","times_seen":528359,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":4,"connect":35,"send":0,"wait":19,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/232.webp","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.198Z","timestamp":1782311615198,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/232.webp HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:35 GMT\r\nContent-Type: image/webp\r\nContent-Length: 12838\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-3226\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12838,"size_decoded":13080,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"07deee3047240f6b5211e95f7ece113b","sha1":"41195f6f42f372bc6c3196b0f417630a2d41abf3","sha256":"a364e330b6405f3044b246b207789bc36035be248eb5df0f5ceb70460f9ea095","sha512":"2b0f64fa6411a7e71c978e8b35809404396dac0106082287e66a12ec1f03d265f01b6e71fd5841f471d229525b2122967cfac900009540baf1f6126e6c48b57e","ssdeep":"384:PWiRnrlmid6f1BtAA94KJCSD/bgJffcDDI9J:nhwiiztAnSmcDDMJ","tlshash":"4342c03a4d69a911874e3970f7f61e8c4c660868d753b6bc0025518fefb44fc7d68d86","first_seen":"2026-05-23T08:19:25.862511Z","last_seen":"2026-06-24T14:35:04.997241Z","times_seen":3,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-24T14:33:33.540Z","timestamp":1782311613540,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:33 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 6249\r\nConnection: keep-alive\r\nLast-Modified: Mon, 02 Mar 2026 10:15:42 GMT\r\nETag: \"6348-64c07de84ef80-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.4.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}],"data":{"size":25416,"size_decoded":6561,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (413)","md5":"60ee9662806cc596c3c6f0b0385c87ff","sha1":"b903af812d9280c4347c66275e50595e6a6db13b","sha256":"fe58eb2225e468d7dac93eccebe03f5379324099e01856730dd13f69c02b4037","sha512":"17d38be71e1bfd1518ddc02efc629e680937139e953c3e82519fc2188a2b1343512b739b087c3311385a53afce9ad9b5933190f8d7a3f828132a5dd6970cef5c","ssdeep":"384:WjDB+/C38Ezb+SjVtmOtcwtdYpKtwjt4tcPzAPLjtPgjtibbjt+ajtOoVxfj/qgn:WlUNpWPt8TPNTeTdDZcCJ","tlshash":"8cb2a53055de5ceb110391dae9717b0a30af4d3bfe2282a175ff162a2fd2ca4c617259","first_seen":"2026-06-24T14:34:05.058521Z","last_seen":"2026-06-24T14:35:04.99985Z","times_seen":2,"resource_available":true,"data":null}},"time_used":384,"timings":{"blocked":-1,"dns":259,"connect":25,"send":0,"wait":32,"receive":0,"ssl":68},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/icon4.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.639Z","timestamp":1782311614639,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/icon4.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 2356\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-934\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2356,"size_decoded":2599,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bedfaffb9406b00fb5261212d55967d7","sha1":"9aff1bbeea7ded2ec295afdd17ce31317012f024","sha256":"3558a6e9edc7ed7cfc2b991e7c06a62383719620f3d784fe61a02af651e57612","sha512":"20485b2f18b8b761f10053cf35c816d2cc79fb8a17012e755b3ac722b318f8806c3b3adeda32db64a3761196b1b12fb7a1998e52d94b031a96f5878dc659631c","ssdeep":"","tlshash":"5b41e289e388e1e4d155a3d82749913e2b2f69f77d30caa50b798d0af5a202d8d589cc","first_seen":"2026-05-23T08:19:25.798761Z","last_seen":"2026-06-24T14:34:05.060121Z","times_seen":2,"resource_available":false,"data":null}},"time_used":324,"timings":{"blocked":297,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100..900;1,100..900\u0026family=PT+Serif+Caption:ital@0;1\u0026family=Unbounded:wght@200..900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.685Z","timestamp":1782311614685,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:19 GMT","end":"Mon, 17 Aug 2026 08:38:18 GMT"},"fingerprint":{"sha1":"4D:E0:8E:62:2F:B2:3D:28:5D:7D:B5:8D:C5:3A:72:E4:EE:AB:7D:93","sha256":"AE:0B:4F:B5:B7:41:E5:0C:70:C0:E1:2A:F9:DB:AD:A8:64:94:F3:70:6D:38:1C:8A:8A:CA:52:96:5C:D8:5C:87"}}},"request":{"raw":"GET /css2?family=Montserrat:ital,wght@0,100..900;1,100..900\u0026family=PT+Serif+Caption:ital@0;1\u0026family=Unbounded:wght@200..900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 24 Jun 2026 14:33:34 GMT\r\ndate: Wed, 24 Jun 2026 14:33:34 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8962,"size_decoded":1546,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"1e05b470a485229d07e7c312e8346248","sha1":"33cbc2e0c76c5608f78d070c99a23a2c5aefdc2f","sha256":"d5f978c3a0c878d9dac923cf3b06b2a42f166722788d5b2d91e24733b0eb54c2","sha512":"5aa506ad58dc2b007fef99217f821ebb2e4b6a3426eed1b7aa1bd3cc7676e7249f54d6aa9a507695b91dff119f9e7abcb8c4ba2b5a7b5738af4e13aebf843025","ssdeep":"192:AyYwyNFyuy3uySRk73vO6uJOPYOBOsSOqizgiNiiqioVmdX98Ic:AhwCFnbL8qKYm8kzxIAc0a","tlshash":"7e020f8204279504eb431cc623cf7e36ee4e62657055d5797ffe2ce8acaac265325b1c","first_seen":"2025-09-15T10:27:10.757026Z","last_seen":"2026-06-24T14:35:04.995581Z","times_seen":21,"resource_available":false,"data":null}},"time_used":324,"timings":{"blocked":-1,"dns":0,"connect":15,"send":0,"wait":34,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/1.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.067Z","timestamp":1782311615067,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/1.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:35 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 258\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-102\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":258,"size_decoded":500,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a141ba23bc8829d1465b1a1320bde8b9","sha1":"c5d245364fca37fe4dc4219f63b0f73632078d33","sha256":"347973d82f170130442db723bfc964b313ffa003ff91c0b0f6aeaf2e06192778","sha512":"5952c9a156421aa02c25f90f9e3ff9a856f2151af370c1c0e5c9cb022abd78c0f14efecc84889a1b40b6ed680e9c07e32f34b0ed12fb67912dccf796801ede2c","ssdeep":"","tlshash":"e4d097a8a1add485df004b2d52adb25a00f364c3928d43c9a9592502b0014a73a79ef4","first_seen":"2026-05-23T08:19:25.883527Z","last_seen":"2026-06-24T14:34:05.062707Z","times_seen":2,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@18.2.1/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.256Z","timestamp":1782311615256,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 22 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"65:D9:C4:7E:04:4C:FD:DD:60:E0:CC:18:B5:B7:01:68:B4:2D:C7:34","sha256":"50:6C:A4:F6:ED:74:C7:E9:68:DB:32:56:5A:68:4C:98:ED:01:28:36:F8:13:BA:CC:19:A7:FD:7A:0A:6E:E7:D4"}}},"request":{"raw":"GET /npm/intl-tel-input@18.2.1/build/js/utils.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Wed, 24 Jun 2026 14:33:35 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 59897\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 18.2.1\r\nx-jsd-version-type: version\r\netag: W/\"3e099-Jlty7YQyU8WV7mKdDJIB2+UyjX4\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-etou8220151-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=3,i=?0\r\nage: 3651825\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iQtxWHl8JYIqSsjH0rquB70zSziIUPejfXst1gUlQdO2OYGpXt%2FuqKzB%2FAVVgLBvoJpfPKMBTANm3TxRu%2BnlZWQfUgwtkR9GvYMVcDTUlRBN9sNf5vs8B7eIXk6BbZOB4Bc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: a10c72cb6e54c272-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":254105,"size_decoded":61039,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1454)","md5":"66361e32c06f29cacc63c0648bf7f31e","sha1":"265b72ed843253c595ee629d0c9201dbe5328d7e","sha256":"7b8fa25cbe5eda2c2e19eb168b100fffd42d2f75a0dcafe808ac61d139cb626e","sha512":"de8ba753ba0a78bf79f88df466705be9b580612e11b57096ee406da7cfc93aa5cb76124d2c20e47a18bd7b43bc7308d607147a1cb0af02d0cab2501c962ba749","ssdeep":"3072:3PB30j8BAJjFs3OwPss3MwP2m9OOVS2x0T3TdxQgnGHIpUsW5jkmLNjoopuDs/vq:3PB3RyBu5x0T3Tdxsnbm","tlshash":"1444e0ebd63c9737a1d97b35968eb3cd5a8cbca3c848567826c3b54f52788e0706c205","first_seen":"2023-09-12T01:07:29Z","last_seen":"2026-07-02T03:09:58.681256Z","times_seen":1962,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/js/jquery-3.4.1.min.js","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.315Z","timestamp":1782311614315,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /js/jquery-3.4.1.min.js HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a535d6-15851\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":88145,"size_decoded":36032,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-07-02T10:00:30.545029Z","times_seen":135372,"resource_available":true,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":26,"send":0,"wait":30,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/4.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.075Z","timestamp":1782311615075,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/4.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:35 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 288\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-120\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":288,"size_decoded":530,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a27cffa2d92f5e6ae36f9efbb71b6041","sha1":"a60598bed4d8f089570989d19afcfe8dbfc16122","sha256":"118392cf58b0ee70063b03848aac275672fe2aeb62afb79487954c2650dbe62d","sha512":"3d3ee1a28f7a65ff0997732c2c735b1036471999733cd64b68ca49430f616aceb61043a0178239d41e2420f7dd7684c5f575589605d44f08ffb48a6433e41068","ssdeep":"","tlshash":"0cd02b3461dfe854dd0091ac136e31b240a740df995a0251ba98662072404632ff1faa","first_seen":"2026-05-23T08:19:25.730801Z","last_seen":"2026-06-24T14:34:05.066844Z","times_seen":2,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/11.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.078Z","timestamp":1782311615078,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/11.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:35 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 283\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-11b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":283,"size_decoded":525,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"902658e2efa14542be95da737fae0744","sha1":"f0dae08ba53d2991e5818d62ea6ce0b0d2af93b9","sha256":"a7b57811eccdf6f75c6bdbbb549f8650a291120b474388fd50dd7a52fe1f1335","sha512":"85f6f109b186c7457e2877e28c48ddbf92110c288ab22e3b97cf681113c088767772c4382c3ce56b9f8ad1c915e3b391e43ac699639868279a48f07334fe508d","ssdeep":"","tlshash":"33d02b5957260b766224853a562ff4f74199a0973e45d18f9c842937308d0da3c338dd","first_seen":"2026-05-23T08:19:25.794792Z","last_seen":"2026-06-24T14:34:05.067929Z","times_seen":2,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":17,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@18.2.1/build/js/intlTelInput.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.606Z","timestamp":1782311614606,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 22 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"65:D9:C4:7E:04:4C:FD:DD:60:E0:CC:18:B5:B7:01:68:B4:2D:C7:34","sha256":"50:6C:A4:F6:ED:74:C7:E9:68:DB:32:56:5A:68:4C:98:ED:01:28:36:F8:13:BA:CC:19:A7:FD:7A:0A:6E:E7:D4"}}},"request":{"raw":"GET /npm/intl-tel-input@18.2.1/build/js/intlTelInput.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Wed, 24 Jun 2026 14:33:34 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 11528\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 18.2.1\r\nx-jsd-version-type: version\r\netag: W/\"791e-xMKIO/wWFFQNCVWVf/bP0/hzEm8\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-eddf8230072-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=3,i=?0\r\nage: 3570990\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6ry4POXoSJFjH5kKMJ0j8OPESZfDBTzHVL6sPR4FN420%2BcdHiR9SjXAdcHmWTW0eQhJRkgHdnSSDbYTZFdDfoy3ujVBAfRZ7%2BxBL5T6WjHXiE%2FLineEi1JiX%2FX%2FQYRzqCyc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: a10c72c8bcbbc272-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31006,"size_decoded":12673,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (27345)","md5":"5e243d9abb51d431ff2184d2a9a40c5b","sha1":"c4c2883bfc1614540d0955957ff6cfd3f873126f","sha256":"b80ed4d13bf572a788637e2e5e5d73519c4d65a2a9a70c27e41c893cc6fdc90e","sha512":"b99652f2bb044d72505fa272e7b65d73b3c098ff371828c2d45fcb5f4c548f5db06394a57d45fe0959d81445fcf5da2eb503de15b23d163502929b935aa941c2","ssdeep":"768:kqD7GRXOoS+D45YPI3QW6O2Eix0Pthyv4pII2iCJm1R:ZfRQWB2xothfIIZCO","tlshash":"74d22a9973512237a89ae0a1587f16476ebf34015684cc9cb8becdc80feced9a1b5734","first_seen":"2023-08-03T08:00:52Z","last_seen":"2026-07-01T06:12:22.255137Z","times_seen":2144,"resource_available":true,"data":null}},"time_used":237,"timings":{"blocked":-1,"dns":2,"connect":3,"send":0,"wait":9,"receive":2,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/icon1.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.634Z","timestamp":1782311614634,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/icon1.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 4221\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-107d\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4221,"size_decoded":4465,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a07f85cab3f6ce14e129faca1a35ffe7","sha1":"da6c7ad0c2e2619a788ecb91180355acdc4e4e66","sha256":"ecec3488312fea4aa4049d545c250092a3c869aa6b88f44080973b6122f37eed","sha512":"f75f7c1f5efb1bc1b88715a8f571835645db9802c35fd0b056449da74e4706f8847aa7eda06475427917f810eec9850f15fc891258a135a7c1b08b0c1a7288e1","ssdeep":"48:TtyMTCI2xKGQeB+Jf1oDF1AOZi5u1CwOFraIahhSXp6aLxyfn4uFiUp5iY35VBHt:4xP+51olU44WIGEMw44uF3riW21bzzA","tlshash":"5d9142d2a7dcd2f8f405b7f8080c90b67e7a6cf67a15ce854b826cb1b6a111e48ad4c5","first_seen":"2026-05-23T08:19:25.740632Z","last_seen":"2026-06-24T14:34:05.0701Z","times_seen":2,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/icon3.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.637Z","timestamp":1782311614637,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/icon3.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 490\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-1ea\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":490,"size_decoded":732,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0c74ac9528f14b17147b644073a2944c","sha1":"241d6def0b37a1e4115d6c4186062004557b504e","sha256":"3b396ee860291af0816898e605813ae5ff83ee5981e9ff35003aaf720d690192","sha512":"99e1bbe5a70d082ceb3e22709f5f867ae0193305a36b916fd89bb459b7d969d9685f7ac0e7bc20eac39b477f7d56f61a1a403beeb1243f77d13ec7d69360d60f","ssdeep":"","tlshash":"9df09ecb6a88910ce00126beba0966f5a45a6cf7466085d96d0a2503e4f306f0e51dde","first_seen":"2026-05-23T08:19:25.714142Z","last_seen":"2026-06-24T14:35:04.999218Z","times_seen":3,"resource_available":false,"data":null}},"time_used":324,"timings":{"blocked":298,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/fon.webp","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.065Z","timestamp":1782311615065,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/fon.webp HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:35 GMT\r\nContent-Type: image/webp\r\nContent-Length: 266476\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-410ec\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":266476,"size_decoded":266720,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d2775100a5f1be5ffadde1c2166d0d23","sha1":"2ee0860913aca36c8ceed6475d5518ba1a87c39a","sha256":"00482679f488367a71f08e5947a29f42a35d846f1d6e76cbdb21b8aeba3ef8be","sha512":"277985766c92080147574b7dac2e897a426f9bfdb4a3204d5d6e63808f4229a806a84eaeef942a698cf06d0c067ba3b2ec9f604518bf32edc12d4f1aab9a927c","ssdeep":"6144:/zE7RaI31Qx2mvVOlx11zY8D4+jxoAA+t/v4tqZiblg:/Y7RflWvslVYWFo1434tIX","tlshash":"5744125f227bbac0c619cbb8008da8d364df215163d24e460feecd1795b627a369cb5c","first_seen":"2026-05-23T08:19:25.858108Z","last_seen":"2026-06-24T14:34:05.074635Z","times_seen":2,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/22.svg","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.076Z","timestamp":1782311615076,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/22.svg HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:35 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 283\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-11b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":283,"size_decoded":525,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"10e590bf31738a0ad2fcb601ca38d84f","sha1":"7355ac191f7f7816c2906681d8aafa9882b2dade","sha256":"e1b6853c5b915cd4d384480c5a464896cd74b6b2c7d19c588f61b17a251efa8f","sha512":"0829750d0d5bc6e762726218660ac73bc4727258db0e1b280dd78177120a08944a929acf8aab4e937f5a910c132f0159b8b5e386a774513271ca6d805ed18bf2","ssdeep":"","tlshash":"fdd0eb1c821c4bbc5002c37b163eb0f3005a40cbb900c0d74904193ea08c4c61c3a7ce","first_seen":"2026-05-23T08:19:25.820315Z","last_seen":"2026-06-24T14:34:05.075799Z","times_seen":2,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@18.2.1/build/img/flags.png?1","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:35.202Z","timestamp":1782311615202,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 22 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"65:D9:C4:7E:04:4C:FD:DD:60:E0:CC:18:B5:B7:01:68:B4:2D:C7:34","sha256":"50:6C:A4:F6:ED:74:C7:E9:68:DB:32:56:5A:68:4C:98:ED:01:28:36:F8:13:BA:CC:19:A7:FD:7A:0A:6E:E7:D4"}}},"request":{"raw":"GET /npm/intl-tel-input@18.2.1/build/img/flags.png?1 HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/npm/intl-tel-input@18.2.1/build/css/intlTelInput.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Wed, 24 Jun 2026 14:33:35 GMT\r\ncontent-type: image/png\r\ncontent-length: 70325\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 18.2.1\r\nx-jsd-version-type: version\r\netag: W/\"112b5-tFG020MXScxAzCpfJx+YB8oh8dM\"\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-etou8220174-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=4,i\r\nage: 3737760\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ukXfGpDd8QJx9Gyqq%2B9Xm3mCIFqO4uZl2aGtAZL5YnKH2jBhqzHBoRLXh009owZX0bM1h1ltHGIGBwM6vGzdLc6Iepk4jeGf66GmqwisamhwqfIgrCsBrWW5BObZV8BwnWU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: a10c72cb0cb9c272-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":70325,"size_decoded":71410,"mime_type":"image/png","magic":"PNG image data, 5762 x 15, 8-bit/color RGBA, non-interlaced","md5":"0b1ca148890222235a0f9903636ca21a","sha1":"b451b4db431749cc40cc2a5f271f9807ca21f1d3","sha256":"54dc5bc49fbe41359681fa0af8add039fa1383a4f4eade34f7a0a5a257dd1caa","sha512":"37553ab4cecdb30b631d883dc0a1afe4b5e81b921fa2fb8054a63fa054c2f57954dddebfee1a5b676f97a392b954aaa553a803e6e9abeedd56f87da0b58a8475","ssdeep":"1536:3Cc3jdCcCx1zjonyR5/Gm5mwoKVehnITl1G/Ghdfal4pMy9c:SczdzCx9jonyT5mwo1hIp1hQ4pMOc","tlshash":"966302b241c2a627f87cb972b955522b673bfb30d280780a00cf15b6979517f04e3a3a","first_seen":"2023-09-16T21:00:24Z","last_seen":"2026-07-02T08:30:50.097628Z","times_seen":6015,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/1.webp","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.630Z","timestamp":1782311614630,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/1.webp HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 14640\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-3930\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14640,"size_decoded":14882,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"bf7df115a2297fa9edc776d1d7f94f7e","sha1":"933ccac3e9b5329a7c46cbfbacb9d545747ac43b","sha256":"ea008a0732f7c082e3cff14ff8ff07a62189a69e9d4584cd07ccd19a788e43ab","sha512":"f314e9a788fb44c8a549baaf033b7a48a91938d8ebba34f918e41d8115900ca571b72452c4787d2866b0c9eb84c14d0a2c8a708048e9a05610a9b500638f3c31","ssdeep":"192:HSQGwD5Z2Wtt6Jth9MciFO042SPmeI+VGtPDSkriD8Trufzps2oXXi7QgoWQSjp:HSZwDRfQic0WmkGJDSMiwTroTosKKp","tlshash":"5362c0bac7bf2acb9f78566413dda70c4983cd60b596446b4681e3bd00931e27247dc5","first_seen":"2026-05-23T08:19:25.844472Z","last_seen":"2026-06-24T14:35:04.998582Z","times_seen":3,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":25,"send":0,"wait":49,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/3.webp","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.632Z","timestamp":1782311614632,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/3.webp HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 11398\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-2c86\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11398,"size_decoded":11640,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4638978d4b6bc8a0309abcfad894fd11","sha1":"9718a5547ccda41357428451ac662974d124ee05","sha256":"0f872531669b037de2768eed40b794ec85319700d1373b9f04cbd4f7a619a65b","sha512":"0c146bc9cc6ce5256f802c50dc5f289853ed50752644c19af68633225cd3394dadd74209cdd9d2ae39daa12c854dadfcb8fb6a8b403be38a6aa615628a503ad8","ssdeep":"192:MgOoU8hI+0wLeNjydERcBNz9EnXQSl60Js/EKdTSbhEw0/2frYrNIkmG52cN:X37h10pNWdEGBBqnfRs/Dd02H/2frYrf","tlshash":"e332d01f83f4b24a66f63400266950715678cf780b3c49dd78ba12aa4fe4e31a32ed73","first_seen":"2026-05-23T08:19:25.763313Z","last_seen":"2026-06-24T14:34:05.078827Z","times_seen":2,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":13,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"risingpathconnection.cfd/images/logo.webp","fqdn":"risingpathconnection.cfd","domain":"risingpathconnection.cfd","tld":"cfd"},"ip":{"addr":"185.253.46.46","port":443,"asn":204957,"as":"Green Floid LLC","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://risingpathconnection.cfd/","date":"2026-06-24T14:33:34.645Z","timestamp":1782311614645,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"risingpathconnection.cfd","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 01:40:46 GMT","end":"Fri, 31 Jul 2026 01:40:45 GMT"},"fingerprint":{"sha1":"45:2E:33:7A:E9:EA:CA:ED:85:23:C1:B2:DA:64:92:EC:80:08:0A:81","sha256":"3C:E4:2F:94:34:54:FC:EC:9C:D4:1C:54:D6:B2:1A:4C:FA:BC:B3:35:B7:0C:10:33:EB:09:76:67:0C:89:9C:9E"}}},"request":{"raw":"GET /images/logo.webp HTTP/1.1\r\nHost: risingpathconnection.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://risingpathconnection.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.0\r\nDate: Wed, 24 Jun 2026 14:33:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 17148\r\nLast-Modified: Mon, 02 Mar 2026 07:01:42 GMT\r\nConnection: keep-alive\r\nETag: \"69a535d6-42fc\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17148,"size_decoded":17390,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"69804377711287c60b62d460dd97bc11","sha1":"943cd94818dff3b5d57585684f0cb18f52a3d0ad","sha256":"9f759d728aa6b7bbf81369301a10f823f813e59e30e3b616b946f54e3f6718a0","sha512":"67f7bf395fb7d18a700866617876b692e5d53e83f69e9a31de3d0b693f583d753ca78528df6cdc9a680e7a6aa2019207e86460131f71fb59c42a5f0ab78abc8e","ssdeep":"384:2gn3XpggxoAE0epx4X62C4PTnpfscKkulkU77SSW5Z:2iWgWAzepDF4PTpUd5Di","tlshash":"e772c08dc5e9e498f7029491ba9f66405a7b4340b4e429a0a9127eb2fbc325cc7074db","first_seen":"2026-05-23T08:19:25.852607Z","last_seen":"2026-06-24T14:35:05.001087Z","times_seen":3,"resource_available":false,"data":null}},"time_used":353,"timings":{"blocked":297,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-24","alert":"Sinkholed","trigger":"risingpathconnection.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}
