{"report_id":"210e6772-e2de-4311-8632-ba757dbf06a3","version":6,"status":"done","tags":[],"date":"2026-05-04T13:24:32Z","url":{"schema":"http","addr":"raf-pro.net","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"172.67.133.225","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"raf-pro.net/#/empty","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"title":"Robo Advisor Fund","dom":{"size":6658,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (5215)","md5":"66b12058da478d827c58104cf4e62bc2","sha1":"8d867c7878b521f45d880b94317cb07bb00948d4","sha256":"a35942878082dd44508795087e0baa46019ac08fa36166162c47661b473bc227","sha512":"74a427ea5d53d0f989350e8e2ec2e22c51e33245bc029e73bb51dd3af9619c4233f79c21d16c2317a78ef38444e6c3b9686b008661eedeef88e0953f57577881","ssdeep":"192:JkC2WszNVIHD18+C7VdX9kXjLMAOghqI/1K9f/6pfE:lxsVSjLtOhI/1K9f/6pfE","tlshash":"05d1322f416213298027dd6c4bf4a7138178d8267d6d77fa2513672ad7cbb8215e338b","dom_hash":"domhash9e21a81fea794427ee3656bd1645c260","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"raf-pro.net","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"172.67.133.225","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-08T13:24:32Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"wchat.freshchat.com","ip":{"addr":"172.66.0.145","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2001-07-05","domain_rank":87520,"first_seen":"2017-09-20T07:05:21Z","last_seen":"2026-05-01T13:01:20.78079Z","alert_count":0,"request_count":1,"received_data":71176,"sent_data":416,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"accounts.livechatinc.com","ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2005-10-31","domain_rank":44666,"first_seen":"2017-07-31T05:50:56Z","last_seen":"2026-04-27T14:30:23.983406Z","alert_count":0,"request_count":1,"received_data":1797,"sent_data":534,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"raf-pro.net","ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-26","domain_rank":0,"first_seen":"2026-05-04T13:24:36.180233Z","last_seen":"2026-05-04T13:24:36.180233Z","alert_count":120,"request_count":30,"received_data":3719557,"sent_data":13600,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Freshchat","description":"Freshchat is a cloud-hosted live messaging and engagement application.","website":"https://www.freshworks.com/live-chat-software/","common_platform_enumeration":"","icon":"Freshchat.svg","categories":["Live chat"]}]},{"fqdn":"secure.livechatinc.com","ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2005-10-31","domain_rank":8212,"first_seen":"2012-08-20T19:27:12Z","last_seen":"2026-04-27T16:45:19.259927Z","alert_count":0,"request_count":1,"received_data":2002,"sent_data":710,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.livechatinc.com","ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2005-10-31","domain_rank":36142,"first_seen":"2012-06-22T08:37:34Z","last_seen":"2026-04-27T14:30:23.799808Z","alert_count":0,"request_count":15,"received_data":1065793,"sent_data":7198,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"api.livechatinc.com","ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2005-10-31","domain_rank":29526,"first_seen":"2013-12-20T14:27:35Z","last_seen":"2026-04-28T03:10:46.276645Z","alert_count":0,"request_count":4,"received_data":22024,"sent_data":2453,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"wchat.freshchat.com/js/widget.js","fqdn":"wchat.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"172.66.0.145","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b1a55d3ebad1494c749dcdaf72eb01f4","sha1":"f98c9eb073b21b287fbe86f0c2f449f18f3bc629","sha256":"6607ab800398ec282b840ee10d0c08f70611ebfb04565182d162145024798bfc","sha512":"8be71b338234ebd5d822284687e60cc520e9d52fabf7117f33107c8795f5b5580600a68e4d72d8da52758f5a764b082cc397c7b5613d67763bca6777423e34c3","ssdeep":"768:N+3uaJhHtCt6HeqVNONkfbVEPFqKjDH1FSi3X4Gl8vL6L:03VOCDON6VEdqKjDVEi3XFv","tlshash":"4463185eb282743505f3d465a2af32067132358aa426c8107a6edde96f60ecf5233f7d","size":69894,"data":"","first_seen":"2026-01-27T16:56:58.900648Z","last_seen":"2026-05-04T15:47:58.603258Z","times_seen":1748,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/js/app.1770526937000.js","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7fb0577bfa4c08e0f7f62b7f31825255","sha1":"3f5b4dc9527ab54c08c82ad344b085f7028b1f39","sha256":"b7658ee7dbba04fdf8dd22cbbf9422423e0d8438dafc8240d86ac1f3b2f0c8a4","sha512":"3a51357fe1d059fc7eba83cbe8b33f63b836026537d32e9deb2befb8769112c56d451ec44aec2c19e2a87a555f3ca7006635a405c8e7b2104823dc7129d1e18b","ssdeep":"12288:mUV+GEUfFdcud8Nnaek/SJJvvRtyYoozwiDa6VHEl4wwS0UGf:gpNnar0","tlshash":"6b948d2a67c9740d089e364df94e3e79b0d80db6f7a7c0e20dcc593412e1c59968bbb9","size":410644,"data":"","first_seen":"2026-03-08T05:01:23.598123Z","last_seen":"2026-05-04T13:31:51.537064Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/7.qYTqns9Q.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"d541ce2d754402b833cc65b76eaea2c6","sha1":"c36a92a0f5cef497ce42b1e8b4c72c8d9bd3786b","sha256":"80353503e48ebf6c2ae9f70184d3e758f64bacf48afe147e039df807509200cb","sha512":"f8cd5cc49f9276c580419958bf312ee0a311194fd41d116ee709e56401d769511700031ec9f3e6151f8da6b7e13b16e374a231e31cb00b92413ce5c751c2a0b6","ssdeep":"","tlshash":"f090044530d334753111111c453f5c0551144c4c05d55730c010d5551f514f4571fc4c","size":40,"data":"","first_seen":"2024-07-04T09:32:22Z","last_seen":"2026-05-04T17:01:27.151687Z","times_seen":26959,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/3.BkPmegIK.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"3fb8103b1c47a3c17730d845e4e1e7fc","sha1":"4a04ad85e28141b7706ee724ec3eff494475e372","sha256":"b236405a130bf73e46ed9bb149600b23ff1652a570be15d3b217a64c801ae024","sha512":"dfd21d15f709896004a6e88fbdce600685f3fce824de8c16618ef9aeb2042bef64c722b48e79612ecd355505bb5e5f6f3426220d8429f1c87d22df2f1887f37f","ssdeep":"1536:VL9gUh9CvquGSVD7dfXkQAXB30qOFex8nHHvDZECnjMWWAGYUhWd:VLqUh9CSu38QZnvFvQWFpUhWd","tlshash":"14d3f8e83951f9616bf302a710af5807733c292b680d4960a211fdddb9b841eb17bf9d","size":133258,"data":"","first_seen":"2026-04-09T11:23:51.32121Z","last_seen":"2026-05-04T16:51:38.626257Z","times_seen":2286,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/js/915.1770526937000.js","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8a68a8b28f4d07277c652654a4055f25","sha1":"3fc2ce3289c6cd83ef351915d0613317d2873839","sha256":"000089a91a1bcbcb09048768d075d6222dfd1a2746bedc27ebbdf2e4d7116ba5","sha512":"c00576ec6a7c80e6d1d0ad9d0a04b038e2b48cd98b764ab01f3321d8ceb98dd4a55fa71b3c5a40e6067492fd553ba4635d76a5b1753a8aa6705ff06461e556c0","ssdeep":"","tlshash":"782103cce261b638513b47cc094a0454f9313dd05b198876beecc559016ec7c672feac","size":1133,"data":"","first_seen":"2026-03-08T05:01:23.585731Z","last_seen":"2026-05-04T13:31:51.529184Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/12.DJPUQwQu.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"640caab52100a1e9dfe618aaeb79838f","sha1":"4654776a82e5405614a595d40cb33ca2b5bae0b5","sha256":"fb8eb817d7251014c136b441bd4004fa6567908059013edbb938925f23b67ceb","sha512":"17d605182be517c5e797b2fd823b9ab7b6bd73d97bd2c3d11c5eb29d108cd350d789116528e351abaebdf3654cc65100b9e3353064ba38c9ab9008126c6a3061","ssdeep":"","tlshash":"00e08cbdfca8d92152f5e9f8c0b60822cb593b0e502382b0f60e6f4a9519199a552826","size":300,"data":"","first_seen":"2024-08-27T15:26:59Z","last_seen":"2026-05-04T17:01:27.41907Z","times_seen":26109,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/10.D78zweil.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"9f75ce0e17e065960cac59beb91343b7","sha1":"6235aa9b9c0381828dd535e5e49d6880d909739e","sha256":"caf56683070e0e5abd41ff8785d49a7fa5193981e1300c0805a7a49a778c78f4","sha512":"af0405c74d27ad71f815b2ba7c1b8d9d7dd5665209103d0c1c0555cffba5147124c191d42dce9fd80364c542798b44ff6a5142e7aca1a53c15705960104cab60","ssdeep":"3072:YVhDgNPrdOVsu0JBel8flxkC8GMQSiHopjW/j6/jrjK1rzAf7BSLE8:4hgpxOe28flxkC8GMQSiHopjpjK1rzA0","tlshash":"42d35cd43282f57087e39097a87f530bf2b92d48b409d970e4b8f4e975e0546e1a3fa9","size":136272,"data":"","first_seen":"2026-04-28T11:41:36.234064Z","last_seen":"2026-05-04T16:51:38.616863Z","times_seen":705,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/#/empty","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"8cbafc64a28cbf122cc148300a4cb29a","sha1":"93fc188442ccb178d25e6e2294979e7613646ab6","sha256":"184718f30b7b2866f017ed6a89d17366c789d259ecd98660640e41a6905c905d","sha512":"27eb5c0d34cc8c778ec69e595009124351353ca9ff2ee3a818e254ef29ade418f060393b9bb108cd82923f430331a0af1eff04aca3f2f36060f650ba9790dcb8","ssdeep":"","tlshash":"1dc08cc8a1d22e106602661420bf3df49038442675491b128dd4d8582e331f08233edc","size":152,"data":"","first_seen":"2023-11-26T14:32:04Z","last_seen":"2026-05-04T13:31:51.536328Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/11.al-9NYxR.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"4a073c5805819d74eabd3e843372d502","sha1":"cb12e953dbee2d3ea08d35d86bcd2476a490bda9","sha256":"0cb3247cac5de8fcdfb226ebe2dc4960b6ed473966359f73ca13ca286309122b","sha512":"036da8fb3959ebbef26b546019535a9edb7a99227a28252878247a756d3a7ea693f48e9ffdaf5886faa7fb2cbe56292bbf9552db5dd1d26e6574d8034ee183ba","ssdeep":"","tlshash":"ebd0a78cb643b0b16276b138853f801fb035e984a44404f0d13ad9c03d7c1a97597c5d","size":236,"data":"","first_seen":"2025-11-04T08:39:27.95245Z","last_seen":"2026-05-04T15:56:35.133143Z","times_seen":13362,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/0.C6eYItes.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"a779fa53bf0e3ae4724a9a7cbb2ee3eb","sha1":"8177cfb5795cb0941c04216d6ec254205812f2f1","sha256":"356341a23797e09ba6ba33dc37dc03488cab0e760e725f73c73110c452b75c9c","sha512":"68e5ade29e732f14be44d05009f9d2295c8eaeb0410646cdab3da968b0304adc1ae730911b4d3927487d87adcc43c89eb21db973287843c36710a399de09e92b","ssdeep":"1536:P1wMp0aK1rYGa7owY3iwHq1jjMw33wj7APvzl+sarFiW:P141Ba7nQu/MhPAsDrFiW","tlshash":"417318d2f295f4398bd7a8e551355003fa3a7918782c8170f32cce24319a686b177fab","size":79626,"data":"","first_seen":"2026-05-04T10:56:08.826291Z","last_seen":"2026-05-04T13:31:51.525455Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/2.CHb8ObV-.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"0a9c56a43235e2f6c2468188e91e6502","sha1":"e3a6842fd4dc2eb4dcaabbfb9bbc3b1915e5b939","sha256":"e929d26528ff087fce745113bf953ca3acf4bdcde9b94bae6ccda481f383fd9f","sha512":"a1e66ffcd98acb70b4b7c07882ce54ce2e214d83e52cea7d50a41549945b17b1a5ad7d643b0199d53919f72da610513b7a33b706057707f4cd15294f2a3a650f","ssdeep":"6144:ZCMSB80VUJ7OdtRHoslOjfbe6o0KoS27qlphNoTqe41q9wNBzF4/ZhMHjL9ZGjT5:aB8G+7OdtRHoslOjfFoXoSUqlphNoueN","tlshash":"56544ce4b352ba3cd7e7c29790ba1608f33c3d19b42a5764f1ae9c0e33955488376b64","size":304945,"data":"","first_seen":"2026-05-04T10:56:08.758271Z","last_seen":"2026-05-04T13:31:51.51454Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/8.CJnRQ8s0.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"e1358389d293d812eb0fe2ea7e872d8a","sha1":"9121b1de1055012bae2f7f42001c7f31ced02f5e","sha256":"d509b89eee3b3ab1e934b0d9116238e744568e7cda66be21151c55045f2c7d3a","sha512":"d92cbb2354b908d0718c22ab3f606b6cb2c4d9d13d13a3ed69c8aecdd812dc2531dad4d8fd6f4f06d202c89b6497040fcf7629054e73cc5b1e730f3545314a10","ssdeep":"192:Be7LbrRc33jyJyCKxI/reXURFK5fDwxlcz7X5tXjjdEUyf/h3q/LZ+UF4f:g7SjyJyCYceXURszztddEUyfp3qjE44f","tlshash":"43f1f8bff381e471e3eb54f09a290013b9390655756d8070f62c8e14a16e6c4a277feb","size":7900,"data":"","first_seen":"2026-05-04T10:56:08.885656Z","last_seen":"2026-05-04T13:31:51.517404Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/livechat.CwMXpMCe.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"71eae22f1a657117d2500f98fc2cbd28","sha1":"f2427fe85c6f8b58c1d8df341f588ca837a82c18","sha256":"acc4ea4085bdf7f496f3a3ce7ebce560e9f9d44ab1fd171a8725ef9166baea89","sha512":"609af961b30595c277f1f6c2ee5adb3b13f4df9dbb6e4d8d6eee10a45ffeaf6d854a826c2104793f267d3c168933f573417784eeface48dca50206e03f0a870c","ssdeep":"","tlshash":"97e09bdaa708bcd6f5998cf8d455e0a21af7539607f08760c0de13318320561df21502","size":432,"data":"","first_seen":"2026-05-04T10:56:08.822943Z","last_seen":"2026-05-04T13:31:51.520802Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/1.B_Qbu6jX.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"b48d7b729fa8f8261a2d43fbcd5f76df","sha1":"4fd45b1d763f5931eca8a8d70aade33c89e2f6df","sha256":"eb2f70d51af5053459929b6c81fc61df6e16e6002e57cf9aadcc474af99d1367","sha512":"25d5924c49d3fa873ad60ed180c57fe94c93eed71ded7169c33f6f9d3932f3b151ab30d9a678cfa31a605b9a43f8caaf34ab2376169b919e86e7649e05d3cf67","ssdeep":"1536:GTlWNZF5MIvShyiBl+PfHhsdCiGSgz3iZzKP:yWNahl8HjibgzM8","tlshash":"ed433bdef140743167e315f2b06f9106b73a2a2d385c80b0f629dd9925da04ba26bf7d","size":55647,"data":"","first_seen":"2026-05-04T10:56:08.832672Z","last_seen":"2026-05-04T13:31:51.529702Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/5.DJcbRjaI.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"be1cfc036978a2fd3ef1fdff8328e38a","sha1":"8902286e76d612895b91451b9e4e44ff757b81f4","sha256":"a6da1e1a48790b35a4577d75bc7140e5c9820fe2fe4600a053e360ce7d56920a","sha512":"ebc035447b9fad27a52664cb4a0c434758a95f50995a08ecd74ec90b6645d3bfdbd7d8aded6df240c3aab58d9a615660097815e5e7d97eb5cadd0b13e45f55c1","ssdeep":"384:cdR7Dn6xESgD3oZvE3eEyCaQJ8cJff+Hv5rvC6PaTPX/JMsTB:cf7Dn6VgD344UQJDV+Hv5wv/JtB","tlshash":"b892e8ed3192b038476b4874406f5127f22eb9b4b88d4840a166e1e07df8efd9763bd6","size":20144,"data":"","first_seen":"2026-04-27T13:34:11.598311Z","last_seen":"2026-05-04T16:51:38.602021Z","times_seen":782,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/#/empty","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"eaab08f2a2085e8dfac9b69949f2ff06","sha1":"60209a2772806a7bf309584971b85099cc1f0bab","sha256":"c67ba92f0ec01c86a13a2d2d204b54bc2832bdac5e68faa93498c0995ff3df50","sha512":"d05378cbe7b7cf4b3daa3eb146584034b12003ce2ce7eff4c231d677d7e7d956a4c7c2e335cf0d56101bfdf092ad61fdbd997dfe56b951c9cc3f469728936a32","ssdeep":"","tlshash":"74c08cc4a0c22e106602651050bf38f49034442675481b128dd4d8582e230f08233edc","size":147,"data":"","first_seen":"2023-11-26T14:32:04Z","last_seen":"2026-05-04T13:31:51.539368Z","times_seen":61,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/#/empty","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"96113aef8dffd6b1a72c27119dc6d52a","sha1":"24acbef206cb8f3e17846b82965b437830a6fb07","sha256":"feef163106b1511f4694458c09e58ea9062bd90f4a7403a69588cb1b079ca542","sha512":"86b22a9d72744d60b9b1b8774cbca73001ec18ed491a85da089608274319df0aa4670af0f54259045f869381c44be9e43e41ab8f8245feb328f80ccfbde373f7","ssdeep":"","tlshash":"aac012caa1c26d101606656554af65e4a034402e75491b439ee4d8593a520f8d323e9c","size":182,"data":"","first_seen":"2023-11-26T14:32:04Z","last_seen":"2026-05-04T13:31:51.54035Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=19282140\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Fraf-pro.net%2F%23%2F\u0026channel_type=code\u0026jsonp=__hjh96n3r9bc","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"e79eeda35867a56cb8853c1fab5f4008","sha1":"3cdbcf4502960dfdcc77704950dc05c4d34316e8","sha256":"7be320f263a0bcdabf1c99a462b5535afd61fbc238b4391e5059d3828fd6b585","sha512":"77e587f573b50444427603073be97db169c3fbc5ae7fd6882e063e0af1a91efd053929a31ae3630e51803fd34e7d8bbcab2880bdedf2f312f7405c3a4140a0db","ssdeep":"","tlshash":"bae026a7f72599369ac6e3e95c046e026e7427a2a109287d74992241a20fbdca336207","size":348,"data":"","first_seen":"2026-05-04T13:24:40.44547Z","last_seen":"2026-05-04T13:24:40.44547Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/6.DoTVWiIk.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"51631d2332e1df22d82571c7e946e0c0","sha1":"17dc0cfb8cc2f12c0af7317249f76d7bd42a1d98","sha256":"0c00564efc472ac5256d4ecd6da6b6160b3e5caf3df20225417e0f3a55fbbfe6","sha512":"eadad76d853cc88d81c9172cb859270862192812b48731d6871fa3d2722e266936cfd9c40578f0cf2ec6bd4903b599597f7407e7d04e03e94b79d017e7b9eda5","ssdeep":"96:HHW1MDMDY5x1pnq9kuOxmPkkXFcQCux3MpfR9xllUSvnVDtPVWFt6ida+Kq92rSb:nW1MDMDY5x1pn/mPkkVcQCFNl+SdDtGr","tlshash":"52b164cd37c170b756b7a0e5087f9006722db5403cadd410c224f8e57e6aceaa1dbe2a","size":5298,"data":"","first_seen":"2026-04-09T11:23:51.371548Z","last_seen":"2026-05-04T16:51:38.697428Z","times_seen":2286,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/9.xhyEK0_l.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"c96a39460d2b0a92409b2b92f3da88f9","sha1":"c1ad7e3c7f38743ebadf589676726dad6799a9d5","sha256":"af2012b0cdfa449f186df2f8dc9b3e64b48b8c5c630cc8d3c4df61973499e7c4","sha512":"c6a642b4f09c7dc0b2679c972cc99e4c1e00e268d309aae062883d3eeeb7d3e39bef53388dd20aae7f733da57ed2374c1b12ded0997cbca2762b4b03c332cbfd","ssdeep":"","tlshash":"27a022ca38ca32ae020230300f0f20c0e0b8c02c030e0328800a0200b2300a002ffc3c","size":74,"data":"","first_seen":"2024-06-24T12:34:03Z","last_seen":"2026-05-04T15:56:35.146262Z","times_seen":15582,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_configuration?organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026version=168.0.1.1.1.11.1.1.4.1.3.7.3\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_static_config","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"6ba2a39cff18164ebe7a91ead1b68573","sha1":"56a46022c68a8d7497b51bdcaca4b62137e3fe78","sha256":"f0d980a9f9a76082fc936c8fbe3ae5b164ba560745ecc78787dbd400f21cf0b0","sha512":"5f369c7358845be1a7de66e6dc75f1b220fed4cd2a4d616fb1233138f29df7825bc6b45013a1c98998fe7d96c50eba4557eed34cc1c9c2c30736ab3b5baf554f","ssdeep":"96:qhUsXhUA4ShUwhUXhQ0Ot01oTKur3KXPJwPtJKNpQFVG3HmTp3PJvCLq:qGsXGAvGwGXin9aRMiXmtxK2","tlshash":"82b13229834fc4bb7377d14a62cbb70e3418517cb4f8593be4a0c670a2961d7d206eaa","size":5261,"data":"","first_seen":"2026-04-13T15:38:56.91609Z","last_seen":"2026-05-04T13:31:51.535724Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f27dc86650776c25ec0ebbf30c76da26","sha1":"4cfc75326d18d72e55ffa59a35f376571b4e320b","sha256":"0f52e13fe14a7d8611f959153d37ea77630cd6c9ebb64ac203bc66770fd0cf51","sha512":"d648638b951c472467dbfdd001c30eb1637824e6057645246f04c087356c515ed5cad9a001d201ba5c8ae97baf8fc2e4dd980a81a258c80555cd02743a1a01bc","ssdeep":"","tlshash":"a2e0e56a13770001382b9777174e1175781e81db0c0ca914f935d93b4f957f50294f89","size":434,"data":"","first_seen":"2026-04-13T15:38:56.933883Z","last_seen":"2026-05-04T13:31:51.537819Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"43ba215f9fabe244b3abfd2c287874f1","sha1":"7c7210df03c39c1b040db6a31e1a158d82f962a8","sha256":"90bb2efbf60878439257296a72797921380eee30c9015574a5bded64d8117907","sha512":"9a98c7473ea7d3745f86650873f7e21130b195b5c76213c77398530c8b418da171b8b5f62f407ef563228f0cbae86b4a55cba271aff3102518025a1d8d71436d","ssdeep":"","tlshash":"0531f13d17b8483041bbf22d775fa7807935209b3146ae00b95d8ed86f609784aa2dc9","size":1848,"data":"","first_seen":"2025-03-08T17:47:43.576686Z","last_seen":"2026-05-04T13:31:51.539882Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/js/chunk-vendors.1770526937000.js","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f53cfcce6078bf70e46ca18561b80204","sha1":"ba8a08d08c97291c1329cb146c481d3ea8943cda","sha256":"fbe2f7b87e2e7fc0cccf9540db6c23efb673fc02c6a97134753f8c0343d57d69","sha512":"8457600ff95479b6411320c4c7ed352583314f6e2b61b8201f59914d288b03bd7252728f3b62ffcb6197c4a206f1e643d957f5decffb18194cb4237de95d773b","ssdeep":"49152:38YFrTgnH76dNuDcSC14gE53NFpnnOUEwfQZP6BiXqb:AMItvt/","tlshash":"abb53bd43190b061c3f61ae9406f400ae33d6a68784d40a5f76bece72da9e895277f3d","size":2429124,"data":"","first_seen":"2025-07-22T19:11:53.866615Z","last_seen":"2026-05-04T13:31:51.538778Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/tracking.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"39013d7d0197773161932d8a47a93e13","sha1":"7468b6ad5b38d8cd70b4aef9b08d2797d7d8dc0e","sha256":"d10c17a04ddccf652efdf59c06c44d2893c6e2a9fd00249c649f73b08d71ef6f","sha512":"99fe827735ba6a9cfeae80217ea19245744586111142fc8b306a28a7cecb87612c68f4e247cf7a7a1638403ac89c006cde1137f79b6a6f54703b57655b7c4725","ssdeep":"1536:E5CeuRri7nC45XfcjbueujYBDzjhQ9wpYQ9BfIVv4cALuE:EoeuRu7CtbdujaDdEv4Vn","tlshash":"cfa338d67282b03493f785e7a0bf6212b739191c740d8420f17ced6a395a9879177f2e","size":103475,"data":"","first_seen":"2026-05-04T10:53:48.720767Z","last_seen":"2026-05-04T13:38:41.944738Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/global-mapper/lc_license_id/19282140/region?jsonp=__lc_region","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b17346aced6298b7e1cadcd62f40003c","sha1":"c28b849fff4b4d9d006d803bc4d18368446ddce4","sha256":"a379b1707064386da00957301b6eb053249cfb462047d44e4fb6d52898f5b78b","sha512":"93be3c00856eedc8cedd0c7bd2b2a5873aa85dcf9e893d9e972421d122c568cbb1c9b4ca633497bc80900f688898040a218616dc69a4716fcd3d5a2dc93fb928","ssdeep":"","tlshash":"8080000e20002ae30a20ef3e8023ec0cb03e033223008288c302208228002b0822ae0b","size":35,"data":"","first_seen":"2025-05-16T12:26:33.454661Z","last_seen":"2026-05-04T17:01:27.490534Z","times_seen":24752,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/js/853.1770526937000.js","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c198fd2ceeaf842d40dc932862425ef4","sha1":"7dd3cd0fd50876a2fac101f9a99920a77da06147","sha256":"5a66a8697d66c4d7b12c20458dd5c6f4a99dd9d8a415be950e7bdb2faa4fa597","sha512":"981c06f55586b4898d7ad166202d8a40e051f2d58fcd223ab2ac30dabc7dc24295e2c6aa6d640a694af4e9adb0079859d21baf8bde2b6847d35a20bb596163b9","ssdeep":"","tlshash":"1751b996744079b42f613be8852505a8f11139f4f10d8ce2f2ecd465611aebd136ebf9","size":2580,"data":"","first_seen":"2025-07-22T19:11:53.860472Z","last_seen":"2026-05-04T13:31:51.516819Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/4.P6-us_-U.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"05098c388b36c226cbe843b34622c433","sha1":"911f93340370715c16e2a54c201deb965f37e05a","sha256":"959d234506e6c93a11ec36d4f824b8e9ad0ccea07f2132cd6b970afb75f7b4ce","sha512":"4f48a30df7048004b7745f439d54ff2289c715ed3bbe65da403745da5d566635710c64026db6fc565f5c05a687dab25b4012f551f4179c9c786b951786f939bb","ssdeep":"3072:0dtHW7Y1nFGFKReK57zkZCq1Kt2fpQKQQozu0HNrV1AQ+RLDk5O06:2g0nmekZVot2fpQvQhqrraDk556","tlshash":"82146cc4f18ab93587eb34e258be1002f63d6d18b44cc160fb5cdea639a518a9177f2d","size":205676,"data":"","first_seen":"2026-05-04T10:56:08.821258Z","last_seen":"2026-05-04T13:31:51.510622Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4d6495c186ca52b4e4dae8a5bebff471","sha1":"17952e27fc37bc90e184ff16330ca0893569d078","sha256":"110543c8896802504b63e7942d8598a8176023032ef5ca8f5918042b1132f0e0","sha512":"b5849198298308f360caf26d39baf3a68bb20da84dc2208c94b12bddb001c3aabaf0044b6c8cfcf6f0b583ac7ba16a275379e19a071ba238d3c0761141a5148b","ssdeep":"","tlshash":"e4800030000080a0802030003eeaf3c038220022bc8220280e280080ac288f3c2c0ae2","size":30,"data":"","first_seen":"2023-03-07T12:27:18Z","last_seen":"2026-05-04T13:31:51.541437Z","times_seen":96,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_localization?organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026version=e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0\u0026language=en\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_localization","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"2432a8dba595b068bce1e76bb7961b5a","sha1":"74ca8d03f5b1d3bb13047f89e767fcb6c4facc90","sha256":"0174b96d8a5e1000824939f5ba2a0abea42909561a7ac2b94253b672e43d83e0","sha512":"28923e6ec052f828bebfc836124d58bc7d2d6f7a8855835ed1dec782db802ec27cbec5224cb62e2ade3b638bca2e0999f65334b81eef0db0b717729911b37f28","ssdeep":"384:smaZMXVmGOHnFcC9rizQHoK/pfi3z80CITo5JDsPw:NaHngsTfilCIToQPw","tlshash":"f362e91acb126e7e079365c2b48ff956b5a550986ac00437fccc807c5364bcb73afa99","size":15187,"data":"","first_seen":"2026-04-23T08:03:00.312596Z","last_seen":"2026-05-04T15:56:35.033104Z","times_seen":157,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","fqdn":"secure.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"d30bfddcdb3764a782b7c8584021d1d6","sha1":"64ed02149d0db57e6c1d68992361d7c1330a663a","sha256":"5a8894efd9ef253bc344f5587ea4fb4f4b8da39d4dbd49a390c2302898411623","sha512":"7f7061097e172e659abcf34d29c148da0bc746fde1307cefa2bcc88ee94db292ba498b3f287a8436b39f9e6d44d5e145350896e447ac7c3cfb281a91a5bc6c97","ssdeep":"","tlshash":"79b09222c200942a24ba8118239fa6073110537a80660c1b143c64a436e610f80a239f","size":105,"data":"","first_seen":"2025-03-02T06:33:06.481005Z","last_seen":"2026-05-04T17:01:27.494474Z","times_seen":23571,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"f1257a15c9ec8d13de7be5af8607b959","sha1":"d1a935dd0cc9ea05fb5a2f63f65a63a6a588e325","sha256":"4a2a54ff5a0053918a42bd5231db784814e93f7bf28fe69357813f757a18f940","sha512":"64db5d4f0b4c414cdee19e2b87f3b8b4f202231a4b26360546865b660ce34eb1cd6673b15632fc40541d6724f3e5509238260cce72515bccc0f9c31e2b8a9285","ssdeep":"192:lkC2WszNVIHD18+C7VdX9kXjLMAOghWHlI/12HzTHif/6pfM:JxsVSjLtOLI/1i2f/6pfM","tlshash":"63e1422f416213298027dd684bf4a7138168e8267d6d77fa2513672ad7cbf4205e338f","size":6964,"data":"","first_seen":"2026-05-04T13:24:40.489468Z","last_seen":"2026-05-04T13:24:40.489468Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"raf-pro.net/static/img/strategy_icon1.386857a4.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/strategy_icon1.386857a4.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=W%2F2Jy585I552GVjCaEmJ9xH51dYWdJFCUmMd4tZoTVtL8dB8S9gGmJzB9eJ%2BDhg9SHC03aR45IFcHy4KT0BtCz5AYXhlv3x4bWb76GihvSkUAFGuw4kRe1Vy0f4Lmg%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-3ce\"\r\ncf-ray: 9f67d315995ba0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":974,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1c1cd6ae1595aefe1df2d9165aea1fc2","sha1":"64065a995892ee53a5c54099b706d12943e4ad90","sha256":"6d613ebe655b34b8091006acd0f9b14131c6ff41608766763b14adf3ecef4a26","sha512":"806663ae2253692c1dd6c40cbe768c783ec0ec7e86e13132d12cc933f8322c383714e7a823031faa81b035047e5923e967cabfb98a17fe809b18d114007afaac","ssdeep":"","tlshash":"b111a3999b0a1d7cba734a30e315363170771b23570cb255d83231b52b1aa4c7a7f9d8","first_seen":"2025-06-22T10:40:26.716003Z","last_seen":"2026-05-04T13:31:51.5101Z","times_seen":34,"resource_available":false,"data":null}},"time_used":474,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":474,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","fqdn":"secure.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:13.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1 HTTP/1.1\r\nHost: secure.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=utf-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\ncontent-length: 757\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1776,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1776), with no line terminators","md5":"ac93d4beac42af1be519f1b0f639c34c","sha1":"baa6d762cbb53794a709fd52116a165c692e07ae","sha256":"206f1bd73b09d3bbbd4db6b2736f86b6917516f8541c89d3d7abb91c3b956c96","sha512":"3f30a938f26c828245e0d01aba13382865ba3bdbbf1661b2031bee21173a55715b337438d16f47aa5d8aa53867b8a5df3bab1afa930c9aa17ee7bb13fc9dd8a1","ssdeep":"","tlshash":"24314173aa00c91d71748221b98bb08e895d534e8654acf6b29512fe0ae0ed98173e29","first_seen":"2026-05-04T10:56:08.824338Z","last_seen":"2026-05-04T13:31:51.508377Z","times_seen":14,"resource_available":false,"data":null}},"time_used":426,"timings":{"blocked":19,"dns":0,"connect":0,"send":0,"wait":407,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/logo.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:13.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /logo.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=s8qZidCVjClNQQ06Khq6CJ07bMf%2FXNAvAtNFcEnn193pEbmYkHHt4QeBReIr50%2Bo348F7n8nXAabDBL2K9DqQBTWVxFwnkCRL%2F3IPOmTBsPQNN4ksnf8nnmFvxZAZg%3D%3D\"}]}\r\nlast-modified: Thu, 20 Nov 2025 06:12:19 GMT\r\npriority: u=6,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"691eb143-3a3\"\r\ncf-ray: 9f67d31288c4a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":931,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0424990c08a6bf7e0c0359b157e04112","sha1":"1b19778fd50bdc802aade427acc567cb16c9e139","sha256":"34b0361d9228b344ee877a32292837aa1009c3a04fe3f34c57e4ff819df1ca46","sha512":"74162858e91a83675b5c018088ee5a905fa08c8d7a56bb86c5560d564c7da5451df9dc254c40bd71c4cc5c4f448f8c812064dd916585e3946ce9b779c87e5495","ssdeep":"","tlshash":"f311bdecf27951e3a200eba187166038a90f1dd21790039d80da6d336541bafc9388eb","first_seen":"2026-01-31T09:25:02.591815Z","last_seen":"2026-05-04T13:31:51.532584Z","times_seen":20,"resource_available":false,"data":null}},"time_used":484,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":484,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/livechat.CwMXpMCe.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/livechat.CwMXpMCe.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://secure.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEji149aFb29BCQe14xZqhrb8iD1hLxDlk5s2uk5kEpj9yDFRqs27J9DDo9ygWKj5oq3AWabAg\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\netag: \"71eae22f1a657117d2500f98fc2cbd28\"\r\nx-goog-generation: 1777891804299820\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 432\r\nx-goog-hash: crc32c=Vh/l+g==, md5=ceriLxplcRfSUA+Y/Cy9KA==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-length: 432\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":432,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (431)","md5":"71eae22f1a657117d2500f98fc2cbd28","sha1":"f2427fe85c6f8b58c1d8df341f588ca837a82c18","sha256":"acc4ea4085bdf7f496f3a3ce7ebce560e9f9d44ab1fd171a8725ef9166baea89","sha512":"609af961b30595c277f1f6c2ee5adb3b13f4df9dbb6e4d8d6eee10a45ffeaf6d854a826c2104793f267d3c168933f573417784eeface48dca50206e03f0a870c","ssdeep":"","tlshash":"97e09bdaa708bcd6f5998cf8d455e0a21af7539607f08760c0de13318320561df21502","first_seen":"2026-05-04T10:56:08.822943Z","last_seen":"2026-05-04T13:31:51.520802Z","times_seen":14,"resource_available":true,"data":null}},"time_used":41,"timings":{"blocked":18,"dns":0,"connect":1,"send":0,"wait":4,"receive":1,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/9.xhyEK0_l.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/9.xhyEK0_l.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEiQA4169R9z2Vb3-XVEmCOBZTlNxUrK8Lv3yvz65EvxuouZ8jF4IQDdoQ_tWx9uPbwYkEk52XM\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\netag: \"c96a39460d2b0a92409b2b92f3da88f9\"\r\nx-goog-generation: 1777891804265481\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 74\r\nx-goog-hash: crc32c=pjIEnA==, md5=yWo5Rg0rCpJAmyuS89qI+Q==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-length: 74\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":74,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"c96a39460d2b0a92409b2b92f3da88f9","sha1":"c1ad7e3c7f38743ebadf589676726dad6799a9d5","sha256":"af2012b0cdfa449f186df2f8dc9b3e64b48b8c5c630cc8d3c4df61973499e7c4","sha512":"c6a642b4f09c7dc0b2679c972cc99e4c1e00e268d309aae062883d3eeeb7d3e39bef53388dd20aae7f733da57ed2374c1b12ded0997cbca2762b4b03c332cbfd","ssdeep":"","tlshash":"27a022ca38ca32ae020230300f0f20c0e0b8c02c030e0328800a0200b2300a002ffc3c","first_seen":"2024-06-24T12:34:03Z","last_seen":"2026-05-04T15:56:35.146262Z","times_seen":15582,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/logo.5290a4d5.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/logo.5290a4d5.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uD6tj%2BWUPzBRtrnB6fGPEFn4312q36DN0xQFe3DrEAiW8tnlabw%2B%2FK9WvRdIcjjaLzkwLTTwo0CbFXhl0d5futLLDmoVa6wfetcykRCm%2F5qY%2FZ3P4ec8OGK3txXJbA%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-345\"\r\ncf-ray: 9f67d315895aa0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":837,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eebc9cd4ef9c7f7e417cdf3a2d26fbb3","sha1":"afd308982769797a3439af7fb8eed7802d691d47","sha256":"e845ca552365de818738faaa36838ead5a371fab963d592fd507dc992170a58b","sha512":"bcb840fa555cecc67b55e2e69e00e16328e664b7f46f1a44fc049f56dde472758bcfc5cf3b42cd3335abaef7852d4685ab030125ea8cca7c5f16c069e9e3835f","ssdeep":"","tlshash":"550152f1914c4be0d30abb00ee3a162131ab69e72b14cbddd412360575944f64e48c44","first_seen":"2025-07-22T19:11:53.852259Z","last_seen":"2026-05-04T13:31:51.530202Z","times_seen":32,"resource_available":false,"data":null}},"time_used":476,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":476,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/arrow-right.c815b06d.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.363Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/arrow-right.c815b06d.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oKYrr9KM2fyWCrU8nOAl2rANvS82pbxdQZfPvwFrndSCtgQud4teD2Avo08dFKRs%2F2FZBI6VHhq5bOsHNrlydnxMU7rlV2d9aIs4%2Fd2TxOFmHqXGGE5XLNKW2sxhlA%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-284\"\r\ncf-ray: 9f67d315995fa0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":644,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ad4017b169d600b2ad48dc8615f9546e","sha1":"6bb9ccfa3e72be17e61275dbdf8ad31390ca34c1","sha256":"237cac875711d9cf1c415ce80b2743e71f66b25437eededda1010f8c4b3093ef","sha512":"9f3e7e27f60aa5dd999ce0c063d1a833db461a7c21d766debe3d4807abef0715469a8fd7e64de4a2bc51e9719200f68fe7483f387de10e9c31b08bb16439015d","ssdeep":"","tlshash":"27f023fdb101d1c0c29fcf80d50848852497a0daba4e43eba651e152f2320d6dce44e8","first_seen":"2025-06-22T10:40:26.687996Z","last_seen":"2026-05-04T13:31:51.531133Z","times_seen":34,"resource_available":false,"data":null}},"time_used":449,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":449,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/4.P6-us_-U.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/4.P6-us_-U.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEiOpczSk5c2wCUSCYNPrJT1JUcBK2HU0jEdxtgN3uKvrDC6cHZP-rWyPKSJR91WRdt9FBuNZEE\r\nx-goog-generation: 1777891804267583\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 205676\r\nx-goog-hash: crc32c=a/U/7Q==, md5=BQmMOIs2wibL6EOzRiLEMw==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 63438\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":205676,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65500), with no line terminators","md5":"05098c388b36c226cbe843b34622c433","sha1":"911f93340370715c16e2a54c201deb965f37e05a","sha256":"959d234506e6c93a11ec36d4f824b8e9ad0ccea07f2132cd6b970afb75f7b4ce","sha512":"4f48a30df7048004b7745f439d54ff2289c715ed3bbe65da403745da5d566635710c64026db6fc565f5c05a687dab25b4012f551f4179c9c786b951786f939bb","ssdeep":"3072:0dtHW7Y1nFGFKReK57zkZCq1Kt2fpQKQQozu0HNrV1AQ+RLDk5O06:2g0nmekZVot2fpQvQhqrraDk556","tlshash":"82146cc4f18ab93587eb34e258be1002f63d6d18b44cc160fb5cdea639a518a9177f2d","first_seen":"2026-05-04T10:56:08.821258Z","last_seen":"2026-05-04T13:31:51.510622Z","times_seen":15,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/5.DJcbRjaI.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/5.DJcbRjaI.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEgid1aLL3Stro3LOXDXSeITHLQt_x7uX3lyD_V-v6PSarYkgcBBEaoCH6_QCpdkryxJ2vbDRJ8\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\nx-goog-generation: 1777891804219415\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 20144\r\nx-goog-hash: crc32c=2aFj3Q==, md5=vhz8A2l4ov0+8f3/gyjjig==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 7148\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":20144,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"data","md5":"be1cfc036978a2fd3ef1fdff8328e38a","sha1":"8902286e76d612895b91451b9e4e44ff757b81f4","sha256":"a6da1e1a48790b35a4577d75bc7140e5c9820fe2fe4600a053e360ce7d56920a","sha512":"ebc035447b9fad27a52664cb4a0c434758a95f50995a08ecd74ec90b6645d3bfdbd7d8aded6df240c3aab58d9a615660097815e5e7d97eb5cadd0b13e45f55c1","ssdeep":"384:cdR7Dn6xESgD3oZvE3eEyCaQJ8cJff+Hv5rvC6PaTPX/JMsTB:cf7Dn6VgD344UQJDV+Hv5wv/JtB","tlshash":"b892e8ed3192b038476b4874406f5127f22eb9b4b88d4840a166e1e07df8efd9763bd6","first_seen":"2026-04-27T13:34:11.598311Z","last_seen":"2026-05-04T16:51:38.602021Z","times_seen":782,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-04T13:24:09.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 May 2026 13:24:10 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Mon, 13 Apr 2026 03:24:32 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xw%2By%2F%2FRsNQT%2BSuP9ujs1VEEh1c7gsRXsT%2BgfQJbCxJA7g9nPZIyNUvhXPslNiPHw2VkCJaxQkFuSJcZYB1w5L1LwcG0JfJQKLcsMz4UHn44lrYH%2BwpQOxaOBLGKv3A%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9f67d2f92da58be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Freshchat","description":"Freshchat is a cloud-hosted live messaging and engagement application.","website":"https://www.freshworks.com/live-chat-software/","common_platform_enumeration":"","icon":"Freshchat.svg","categories":["Live chat"]}],"data":{"size":3997,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1080), with CRLF line terminators","md5":"e155be66a4a77c162bb99f5025049bfc","sha1":"b1e0bb6f09cacb32f294854e15fe92002a5d12db","sha256":"85d40dcf222728147667f66f412aa9b3c5564ae4cb9959a5cf989e17d9e8430c","sha512":"c54b606136adbb5590934b6f88221e672b6adc36c4934d35d58e65a72c4c1dda72c1ee8edb698b4178751d833e58c44b784b7eb566408636e01aa960491a4d6d","ssdeep":"","tlshash":"d381816a9a1488355476b338776fb34cf93a106b55021844baad48ec1fb0bf84ab2dc9","first_seen":"2026-04-13T15:38:56.926564Z","last_seen":"2026-05-04T13:31:51.511746Z","times_seen":16,"resource_available":true,"data":null}},"time_used":565,"timings":{"blocked":21,"dns":1,"connect":1,"send":0,"wait":522,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/css/915.b2767451.css","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:12.910Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/css/915.b2767451.css HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:13 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"698818ea-40c\"\r\nexpires: Tue, 05 May 2026 01:24:13 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Jyye5YvoHgGhUjkOe75nnck%2FGfJtQm8kH1Vb5GsE2cwhFciYSOyAT53D1jWQHCj3%2FJQeRegpShjR%2Bny%2FGdj4ivwn%2B2BgcoqnlVNh8YX4xgTcdxVE3b482AkfsWiJIA%3D%3D\"}]}\r\ncf-ray: 9f67d30c8fc8a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1036,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1036), with no line terminators","md5":"57b2348a783df9a1e216bbeeb28a9b52","sha1":"c9d5c3c604aa1505016b1c4643b4c60eede50d8a","sha256":"a722abc349e9c791052d98c74067f041643831fc574f405e486283ba2a232c8b","sha512":"6b67b719b790f4c8ae02d7cd7420a96eeb1ac18ee337f20a1e7e21e0df01cbf186bf001d175860048f87e88497ed0483ea5b883c75072d329531dd6d4d8a2844","ssdeep":"","tlshash":"b1112431d624b81ff57a8e623a507dd82a049265d367a1648b132d17e9c71a32771319","first_seen":"2026-03-08T05:01:23.597246Z","last_seen":"2026-05-04T13:31:51.507387Z","times_seen":19,"resource_available":false,"data":null}},"time_used":485,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":485,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_configuration?organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026version=168.0.1.1.1.11.1.1.4.1.3.7.3\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_static_config","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:13.400Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.6/customer/action/get_configuration?organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026version=168.0.1.1.1.11.1.1.4.1.3.7.3\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_static_config HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\ncontent-length: 1460\r\ncache-control: public, max-age=600\r\nexpires: Mon, 04 May 2026 13:34:13 GMT\r\ndate: Mon, 04 May 2026 13:24:13 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5261,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (5261), with no line terminators","md5":"6ba2a39cff18164ebe7a91ead1b68573","sha1":"56a46022c68a8d7497b51bdcaca4b62137e3fe78","sha256":"f0d980a9f9a76082fc936c8fbe3ae5b164ba560745ecc78787dbd400f21cf0b0","sha512":"5f369c7358845be1a7de66e6dc75f1b220fed4cd2a4d616fb1233138f29df7825bc6b45013a1c98998fe7d96c50eba4557eed34cc1c9c2c30736ab3b5baf554f","ssdeep":"96:qhUsXhUA4ShUwhUXhQ0Ot01oTKur3KXPJwPtJKNpQFVG3HmTp3PJvCLq:qGsXGAvGwGXin9aRMiXmtxK2","tlshash":"82b13229834fc4bb7377d14a62cbb70e3418517cb4f8593be4a0c670a2961d7d206eaa","first_seen":"2026-04-13T15:38:56.91609Z","last_seen":"2026-05-04T13:31:51.535724Z","times_seen":16,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":168,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_localization?organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026version=e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0\u0026language=en\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_localization","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:13.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.6/customer/action/get_localization?organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026version=e5f6a7b8c9d0e1f2a3b4c5d6e7f8a9b0\u0026language=en\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_localization HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=600\r\nexpires: Mon, 04 May 2026 13:34:13 GMT\r\ndate: Mon, 04 May 2026 13:24:13 GMT\r\ncontent-length: 5124\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15187,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (15170), with no line terminators","md5":"2432a8dba595b068bce1e76bb7961b5a","sha1":"74ca8d03f5b1d3bb13047f89e767fcb6c4facc90","sha256":"0174b96d8a5e1000824939f5ba2a0abea42909561a7ac2b94253b672e43d83e0","sha512":"28923e6ec052f828bebfc836124d58bc7d2d6f7a8855835ed1dec782db802ec27cbec5224cb62e2ade3b638bca2e0999f65334b81eef0db0b717729911b37f28","ssdeep":"384:smaZMXVmGOHnFcC9rizQHoK/pfi3z80CITo5JDsPw:NaHngsTfilCIToQPw","tlshash":"f362e91acb126e7e079365c2b48ff956b5a550986ac00437fccc807c5364bcb73afa99","first_seen":"2026-04-23T08:03:00.312596Z","last_seen":"2026-05-04T15:56:35.033104Z","times_seen":157,"resource_available":true,"data":null}},"time_used":148,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":147,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/3.BkPmegIK.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.117Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/3.BkPmegIK.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEipifxiazWgu-63HLK46Oz3NvT20Gx1sKwc7PcPflfphI0l06cjqPIKRahN-yczHac9UAgromc\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\nx-goog-generation: 1777891804250001\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 133258\r\nx-goog-hash: crc32c=PVER1Q==, md5=P7gQOxxHo8F3MNhF5OHn/A==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 41717\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":133258,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (50683)","md5":"3fb8103b1c47a3c17730d845e4e1e7fc","sha1":"4a04ad85e28141b7706ee724ec3eff494475e372","sha256":"b236405a130bf73e46ed9bb149600b23ff1652a570be15d3b217a64c801ae024","sha512":"dfd21d15f709896004a6e88fbdce600685f3fce824de8c16618ef9aeb2042bef64c722b48e79612ecd355505bb5e5f6f3426220d8429f1c87d22df2f1887f37f","ssdeep":"1536:VL9gUh9CvquGSVD7dfXkQAXB30qOFex8nHHvDZECnjMWWAGYUhWd:VLqUh9CSu38QZnvFvQWFpUhWd","tlshash":"14d3f8e83951f9616bf302a710af5807733c292b680d4960a211fdddb9b841eb17bf9d","first_seen":"2026-04-09T11:23:51.32121Z","last_seen":"2026-05-04T16:51:38.626257Z","times_seen":2286,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/icon_strategy1.c2229412.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.337Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/icon_strategy1.c2229412.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Sy6zjZQ5l5BNMrONwkckHOgAWagRc0T1vGzSEFhOfk%2BLBJruWzK3bjQB5mjyz%2BfkseSpkc%2BAF5cYtSiUJAGgI36I6CuaeLT9Kham6ggsIWHLcBBKQ4krCHLeUlLWQA%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-a8c\"\r\ncf-ray: 9f67d3158957a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2700,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d27e083773c9e301ad9da6231a5e62cd","sha1":"1525c48863fc87cce299221adb2dba7998f2afee","sha256":"157a8510abf8ed90fe00fb28542c18db779eeda08bfce1755a24eccfa2d6b3ff","sha512":"e76b95e81ebdb71424805bb3fbdf680fe994f48d2f628db55c1e3ff1caedcc570c636970043e92acba23361a6eec3c0507b1a7cc28af52c18bf172e9edcd97c9","ssdeep":"","tlshash":"60515bc697885afcb13177acd741b330317b197b3b2af706856221b09a0619c9dbf8d8","first_seen":"2025-06-22T10:40:26.727946Z","last_seen":"2026-05-04T13:31:51.519112Z","times_seen":34,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/js/chunk-vendors.1770526937000.js","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:10.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/js/chunk-vendors.1770526937000.js HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"698818ea-2510c4\"\r\nexpires: Tue, 05 May 2026 01:24:10 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Lsf72u%2F5X0yGlWjjnsMGSsrg3KnIqFdjvgb1GJcF5EVlVFAsxdvPYsc41bdnuw3qpXgtAXurZP0BFLyIRai3BCiVHufHYfb2IH3bylv8Chlm9AVOtG%2F6Cm7LMfUzsQ%3D%3D\"}]}\r\ncf-ray: 9f67d2fd4d39a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2429124,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (21067)","md5":"ea497d9edabfc7c96b3a3dd86767023c","sha1":"5010c7ad542a7d209a629b015b25a938f1790e3c","sha256":"099a968a63396f408e11f44df0eb90d933107c8e75864e4ed10a86b5791246dd","sha512":"9ba944ed4aafe9cfdbf29b339d87af202dd8ada3fc7e176c6b0ef7dad1a981af171465678f87a0c14ced5059f29000b66c4d1e45d880bf4b27388d699ef29dad","ssdeep":"12288:JN8Y5jrTl89nH76dNuU+NaGkSCWKiams2VcV:38YFrTgnH76dNuDNZkSCWKi5VcV","tlshash":"2425d7d47291b065c3a21ee1407fd00ae33dfda87c4c5169bb1bece72ca5a49512af39","first_seen":"2025-08-11T13:45:18.7035Z","last_seen":"2026-05-04T13:24:40.434344Z","times_seen":9,"resource_available":false,"data":null}},"time_used":1780,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":479,"receive":1301,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/js/app.1770526937000.js","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:10.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/js/app.1770526937000.js HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:10 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"698818ea-64414\"\r\nexpires: Tue, 05 May 2026 01:24:10 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZPhulf1xKIz%2FGWLjTT6JJUf0JKgp2qcqbkh764P4ewkeO3rvqnc57XMIhbCmKsjKDq%2BCNg8iTYmZTpp22tzCzu%2FWW93qXCXDDAcfmv4FwWR8KA%2FbxKFRUB1X2ENdpw%3D%3D\"}]}\r\ncf-ray: 9f67d2fd4d3aa0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":410644,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (58268), with no line terminators","md5":"c95360f3378a7de6da830b7d8df0ba7a","sha1":"69dfb937b2523a2c7f576230442043543227c7ee","sha256":"59a5a6edb1a8a0f7cab460147e378061078f596a54ef7d5777e0110d46cfa510","sha512":"1524f93a555a47956eb938e4d1eecbea20b6a57b6a7ad46a6847ccea6b4dce7cb63630424142c9fa6334d9424643e59f66efbcb1af472629ebc2e90962b272d5","ssdeep":"6144:/JIzN+VfnWGICcr110+sC/G1z0BBJ9JxvnSSkfW/g3hT243JwPpwPxD8xxLdcpUA:mUV+GEVSS1/jfFdcud8Nna0GHk","tlshash":"e5a43a70d297931d0ad931987d4a3bb5a3e48af7c3df805f0f8cdd7411caca4624a6a9","first_seen":"2026-05-04T13:24:40.435405Z","last_seen":"2026-05-04T13:24:40.435405Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":468,"receive":681,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/css/853.e513c17e.css","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:12.895Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/css/853.e513c17e.css HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:13 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oO6b1Q4aMwJTQYWNNUQSvdbwAmJS2qc562m%2F%2FRB3OLViIFB6viIBcMc%2BsnBVAPmzZbQSAwYgWFbeHwEgZBCVjDZBDmytMvRY%2FVHIJ1uUI0hekXQyb8JoPjnwT5XHGg%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Tue, 05 May 2026 01:24:13 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-3d2\"\r\ncf-ray: 9f67d30c7fc4a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":978,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (978), with no line terminators","md5":"0cf832f6c4c199c6416e4449c96b1b0a","sha1":"e6e06aaba87092ac0eab5ac84d1b3d89ad09ebc9","sha256":"e4e674693a919504668a7e3d6f262fe82e26aee2649c81798bebcba2de2f6487","sha512":"6ea0e78cfe8cad702a8773adb0dee9c7d78d9b78dcec565d882c2a11ed975fe0c11e51cfceabe9f1bb34096026b2716f274c3fd0d013b59f2874c3a273f65c55","ssdeep":"","tlshash":"ac1129732426a06ba6f3f51666fabb88120e9207c712b194129b5d1d35e732331a1f70","first_seen":"2023-11-26T14:32:04Z","last_seen":"2026-05-04T13:31:51.534096Z","times_seen":35,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":450,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/js/915.1770526937000.js","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:12.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/js/915.1770526937000.js HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:13 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"698818ea-46d\"\r\nexpires: Tue, 05 May 2026 01:24:13 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Xp2QrWywxV0bocam%2BWItPbIEeDryIX%2BASGqmgsHBNFyHmnRybQzdRVNGOo9p4uDDkYQa5Hyxs%2FzdR1DBujOFsd1lfYhfvnYQAFtotsTp%2FqEvlrsn9jAzrI3cdrARAA%3D%3D\"}]}\r\ncf-ray: 9f67d30cafcca0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1133,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1133), with no line terminators","md5":"8a68a8b28f4d07277c652654a4055f25","sha1":"3fc2ce3289c6cd83ef351915d0613317d2873839","sha256":"000089a91a1bcbcb09048768d075d6222dfd1a2746bedc27ebbdf2e4d7116ba5","sha512":"c00576ec6a7c80e6d1d0ad9d0a04b038e2b48cd98b764ab01f3321d8ceb98dd4a55fa71b3c5a40e6067492fd553ba4635d76a5b1753a8aa6705ff06461e556c0","ssdeep":"","tlshash":"782103cce261b638513b47cc094a0454f9313dd05b198876beecc559016ec7c672feac","first_seen":"2026-03-08T05:01:23.585731Z","last_seen":"2026-05-04T13:31:51.529184Z","times_seen":19,"resource_available":true,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"raf-pro.net/wss","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:12.915Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /wss HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://raf-pro.net\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: l35PKuYxmSyjLB1vkUjWKQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Mon, 04 May 2026 13:24:13 GMT\r\nConnection: upgrade\r\nupgrade: websocket\r\nsec-websocket-accept: FaTW9TOK6aSwQhmCqLBeFF6iXEU=\r\ncf-cache-status: DYNAMIC\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=HA46qnTLi4yceXNWv71cLA50%2Fqtxn4WzpivrLiX564ZK4Bz1ivF7c9sg6JYoqRLZdHki6Lv%2BSE9rMFbZTdGmU6Awxed9Nd7G04KRRCIzjNB1gm3T0N74sEdSQVgiJw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9f67d30d298656a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=506\u0026min_rtt=460\u0026rtt_var=168\u0026sent=5\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=3111\u0026recv_bytes=1153\u0026delivery_rate=7074918\u0026cwnd=53\u0026unsent_bytes=0\u0026cid=d3bde9b95ade13a4\u0026ts=483\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":594,"timings":{"blocked":-1,"dns":56,"connect":52,"send":0,"wait":461,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/0.C6eYItes.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/0.C6eYItes.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEh4uf_ZRPXF8eXB0R-orYl0VxI-VWFn_4UDxpt4nazPJt3ABwBUpjSNEazeszGBK-g\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\nx-goog-generation: 1777891804079128\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 79626\r\nx-goog-hash: crc32c=ZNEYQA==, md5=p3n6U78OOuRySpp8uy7j6w==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 24772\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":79626,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a779fa53bf0e3ae4724a9a7cbb2ee3eb","sha1":"8177cfb5795cb0941c04216d6ec254205812f2f1","sha256":"356341a23797e09ba6ba33dc37dc03488cab0e760e725f73c73110c452b75c9c","sha512":"68e5ade29e732f14be44d05009f9d2295c8eaeb0410646cdab3da968b0304adc1ae730911b4d3927487d87adcc43c89eb21db973287843c36710a399de09e92b","ssdeep":"1536:P1wMp0aK1rYGa7owY3iwHq1jjMw33wj7APvzl+sarFiW:P141Ba7nQu/MhPAsDrFiW","tlshash":"417318d2f295f4398bd7a8e551355003fa3a7918782c8170f32cce24319a686b177fab","first_seen":"2026-05-04T10:56:08.826291Z","last_seen":"2026-05-04T13:31:51.525455Z","times_seen":14,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/7.qYTqns9Q.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/7.qYTqns9Q.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEh2QrkgZwPYU5D0NDkjYn8UtVO4BFUYDRWNIIT3Qw2iKN6RRb3ZjetGHFlYXmXh-vumC_pWoEo\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\netag: \"d541ce2d754402b833cc65b76eaea2c6\"\r\nx-goog-generation: 1777891804237199\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 40\r\nx-goog-hash: crc32c=jQQqwg==, md5=1UHOLXVEArgzzGW3bq6ixg==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-length: 40\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":40,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"d541ce2d754402b833cc65b76eaea2c6","sha1":"c36a92a0f5cef497ce42b1e8b4c72c8d9bd3786b","sha256":"80353503e48ebf6c2ae9f70184d3e758f64bacf48afe147e039df807509200cb","sha512":"f8cd5cc49f9276c580419958bf312ee0a311194fd41d116ee709e56401d769511700031ec9f3e6151f8da6b7e13b16e374a231e31cb00b92413ce5c751c2a0b6","ssdeep":"","tlshash":"f090044530d334753111111c453f5c0551144c4c05d55730c010d5551f514f4571fc4c","first_seen":"2024-07-04T09:32:22Z","last_seen":"2026-05-04T17:01:27.151687Z","times_seen":26959,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wchat.freshchat.com/js/widget.js","fqdn":"wchat.freshchat.com","domain":"freshchat.com","tld":"com"},"ip":{"addr":"172.66.0.145","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:10.453Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wchat.freshchat.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 02 Apr 2026 13:26:55 GMT","end":"Wed, 01 Jul 2026 14:26:36 GMT"},"fingerprint":{"sha1":"C5:65:79:A5:62:BE:D2:21:02:D1:BC:2E:06:A8:0B:BE:10:C8:47:93","sha256":"DD:40:5E:5B:BE:5F:A8:CF:4B:60:61:FB:3E:C3:A4:8C:7E:10:C0:94:21:EB:60:33:D2:2A:A4:8D:D6:17:33:17"}}},"request":{"raw":"GET /js/widget.js HTTP/1.1\r\nHost: wchat.freshchat.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 May 2026 13:24:10 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 20 Apr 2026 06:33:06 GMT\r\nx-xss-protection: 1; mode=block\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncache-control: public, max-age=900\r\nx-server: db782\r\ncontent-encoding: gzip\r\nx-envoy-upstream-service-time: 3\r\nx-trace-id: 00-988614b4c19d7004924317a162c1d66d-4921c3feb28e117b-00\r\nnel: { \"report_to\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true}\r\nreport-to: { \"group\": \"nel-endpoint-freshchat\", \"max_age\": 2592000, \"include_subdomains\": true, \"endpoints\": [{\"url\": \"https://nel.us-east-1.freshedge.net/nelreports/freshchat\"}]}\r\nx-server-processing-time-ms: 5\r\nx-fw-ratelimiting-managed: false\r\nx-request-id: e14c5381-cacc-4c1a-a881-34eeee99348c\r\nvary: accept-encoding\r\nage: 152\r\nexpires: Mon, 04 May 2026 13:39:10 GMT\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=_1tICdIaAbCWnhzEElswTQd0o7ifS2j9kIgqdvYDMAw-1777901050.4757078-1.0.1.1-fP1ZAsQmsrxZXhYbj6LFHTDnnzdFlv_OmPV83s8tG_2NSnt0MH7CDopMACyCj1ibkFVs6msZ0LYfs9YLcbQ_MxjEjp68GxXCNXzFLy8MPA7HOzboqKoQb5O0BExRHnJ3; HttpOnly; Secure; Path=/; Domain=freshchat.com; Expires=Mon, 04 May 2026 13:54:10 GMT\r\ncf-ray: 9f67d2fd7f3d56ca-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":69894,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b1a55d3ebad1494c749dcdaf72eb01f4","sha1":"f98c9eb073b21b287fbe86f0c2f449f18f3bc629","sha256":"6607ab800398ec282b840ee10d0c08f70611ebfb04565182d162145024798bfc","sha512":"8be71b338234ebd5d822284687e60cc520e9d52fabf7117f33107c8795f5b5580600a68e4d72d8da52758f5a764b082cc397c7b5613d67763bca6777423e34c3","ssdeep":"768:N+3uaJhHtCt6HeqVNONkfbVEPFqKjDH1FSi3X4Gl8vL6L:03VOCDON6VEdqKjDVEi3XFv","tlshash":"4463185eb282743505f3d465a2af32067132358aa426c8107a6edde96f60ecf5233f7d","first_seen":"2026-01-27T16:56:58.900648Z","last_seen":"2026-05-04T15:47:58.603258Z","times_seen":1748,"resource_available":true,"data":null}},"time_used":56,"timings":{"blocked":18,"dns":12,"connect":1,"send":0,"wait":12,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/css/app.0f603e87.css","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:10.452Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/css/app.0f603e87.css HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"698818ea-1318\"\r\nexpires: Tue, 05 May 2026 01:24:10 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cLSuihtaImXNkN6l%2BOzAWkyIoWuIdKKHINhdtZuTi2%2BRicbDGQqxOI07EKkTPDV7%2BmZ8LV1dJzUz7GBSi25IH4BVVV4giCFlXq2TLCmVYOpwKus9CA2fo2RPW45DRQ%3D%3D\"}]}\r\ncf-ray: 9f67d2fd4d3ca0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4888,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4888), with no line terminators","md5":"914af4b816e9398659889fe46d4e522f","sha1":"4aa9fb0596298e4d74e4a8b33c87ad0bbbf0290f","sha256":"44352323c364266d7cede1909da0aa7963bbc2bb0b55345683d44d0facd4a8cb","sha512":"710cf868dd59835e912b18881ed34c57c3543368dd2b947b0c8a976492e4adc15e29a9c329f2fcb08063ace3567a3982ceb48b0b0a27b0180102af412b522b69","ssdeep":"48:bsRA9Tc1al0LErJip2J0jLuHojufB9r7aWKCyBm7EAX9CuE2m6ajK+kdK+6X4lYJ:wRAN5l0Y9pJ0YxB1avG3MUFvy","tlshash":"20a1245b79e3100bd8b2c767a4d13b787c69e43543578a6ae1123f29ce543920ea09ed","first_seen":"2025-06-22T10:40:26.734656Z","last_seen":"2026-05-04T13:31:51.512294Z","times_seen":34,"resource_available":false,"data":null}},"time_used":457,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":457,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/js/853.1770526937000.js","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:12.909Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/js/853.1770526937000.js HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:13 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"698818ea-a14\"\r\nexpires: Tue, 05 May 2026 01:24:13 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SUyHedIoAGiE5aRXEOfm1rgJcwt%2BOWjOk%2Fq3QY8Z5Fcclj0J7MXbtjwzlZC0KWpBwEoa9Ul43124yK3boT%2B5vcgOhQHWaAesabyZQFuClp%2FSVJMFa3Wc3CGhn5G%2Bpg%3D%3D\"}]}\r\ncf-ray: 9f67d30c8fc7a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2580,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2580), with no line terminators","md5":"c198fd2ceeaf842d40dc932862425ef4","sha1":"7dd3cd0fd50876a2fac101f9a99920a77da06147","sha256":"5a66a8697d66c4d7b12c20458dd5c6f4a99dd9d8a415be950e7bdb2faa4fa597","sha512":"981c06f55586b4898d7ad166202d8a40e051f2d58fcd223ab2ac30dabc7dc24295e2c6aa6d640a694af4e9adb0079859d21baf8bde2b6847d35a20bb596163b9","ssdeep":"","tlshash":"1751b996744079b42f613be8852505a8f11139f4f10d8ce2f2ecd465611aebd136ebf9","first_seen":"2025-07-22T19:11:53.860472Z","last_seen":"2026-05-04T13:31:51.516819Z","times_seen":32,"resource_available":true,"data":null}},"time_used":465,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":465,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=19282140\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Fraf-pro.net%2F%23%2F\u0026channel_type=code\u0026jsonp=__hjh96n3r9bc","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:13.225Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=19282140\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Fraf-pro.net%2F%23%2F\u0026channel_type=code\u0026jsonp=__hjh96n3r9bc HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-security-policy: frame-ancestors https://raf-pro.net/;\r\ncontent-type: application/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\nx-frame-options: allow-from https://raf-pro.net/\r\ncontent-length: 348\r\ndate: Mon, 04 May 2026 13:24:13 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":348,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (348), with no line terminators","md5":"e79eeda35867a56cb8853c1fab5f4008","sha1":"3cdbcf4502960dfdcc77704950dc05c4d34316e8","sha256":"7be320f263a0bcdabf1c99a462b5535afd61fbc238b4391e5059d3828fd6b585","sha512":"77e587f573b50444427603073be97db169c3fbc5ae7fd6882e063e0af1a91efd053929a31ae3630e51803fd34e7d8bbcab2880bdedf2f312f7405c3a4140a0db","ssdeep":"","tlshash":"bae026a7f72599369ac6e3e95c046e026e7427a2a109287d74992241a20fbdca336207","first_seen":"2026-05-04T13:24:40.44547Z","last_seen":"2026-05-04T13:24:40.44547Z","times_seen":1,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":168,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/icon_home1.5eb73990.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.329Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/icon_home1.5eb73990.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jJ82EKTa44QrhMcCj4aYocjOKWJRscZo%2BOf4onwF7mH%2BzwzvYuwsmKlN0DuMLSgZpQtQLZOTj%2B%2FAgW%2BF8T872gdLRYRDF8Z%2Fz3GzIZhE1RH%2Fp4tF2jW3BTgJljYowg%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-3a3\"\r\ncf-ray: 9f67d3158953a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":931,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3d89b3c65b3b8de0ab02378026906c1a","sha1":"a172b3634b1c883c1d22d41f8746c4fde605e7f2","sha256":"19f3cfcc2a9727c72a3d1242d97933fdd6c58d339533b5a6b6c2047c5ee769af","sha512":"1078266cb30df68632310431795af4c3a28107c1c148af5ffc9f2483fa3870cfb0a46ce3572a4501e1bd2f3361182e778c5e57eb4b563164fa790f2d7afc80b3","ssdeep":"","tlshash":"7911259e97080c3cb6234b60d7463771b1370e632a09f764d83232316a11a0db47f9e8","first_seen":"2025-06-22T10:40:26.740997Z","last_seen":"2026-05-04T13:31:51.515087Z","times_seen":72,"resource_available":false,"data":null}},"time_used":473,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":473,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/icon_market1.5fc008d1.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.335Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/icon_market1.5fc008d1.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uS4X0BPgVIPU4F7ThLhHK3d64x7F8RMaTvL8Add8JPIu1WnFULqyDEN9Rinfq3euEtFOou4iNvn7sD24uY3Acy2BsyEFVA2aEProEhRUuTVb04gmEjkTKuuXYNy2Xg%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-285\"\r\ncf-ray: 9f67d3158955a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":645,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"91f8ffdea4e7a983f50a99e889ec6a8e","sha1":"1ee8a5038c340090185409bfb5ba16b64ee94d9f","sha256":"1cad609656f6588c789c0391cd8b93484842bb4427ff2a1ebbc7e47418e002d3","sha512":"00c31cd761817b915a7e20b0146eb99b1d5ced8aafd105ee38e9e50780dfc2f7d8ce5c83e4384bf990bf42eed47833ecdb038985072e19b002635c43c1c67942","ssdeep":"","tlshash":"93f0a49aeb490d3cbb728a30e314337550a31b23570c3254c8323176165aa4c7a3f9d8","first_seen":"2025-06-22T10:40:26.68215Z","last_seen":"2026-05-04T13:31:51.517959Z","times_seen":34,"resource_available":false,"data":null}},"time_used":465,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":464,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/strategy_icon3.c4093d50.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.360Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/strategy_icon3.c4093d50.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5%2BVq0%2FJkDnajBAQar7AGm4OF3mvErzZmoq9tW5XTXuSeynv1yC5L2PDPzRf6zg%2B7Y0UOJfBT45zjxI2nC4V8pifqGtGOClMiTG%2FNiQ3SRHK3HwMT7C9jS0fljtPkCQ%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-2ef\"\r\ncf-ray: 9f67d315995da0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":751,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8c3412ed707378abdb1a38491252010c","sha1":"653f7fa46363d4111dd7b9ec52a2c43d770c2008","sha256":"1c6bc3277924d52359f89df7c688bacddd3b3e38303916afe0fafb4e38879853","sha512":"92d837b6e5c552fe9b3d9fa935fba8fee91c709373b950557e12d2d301f15bf03080078d9d64c16975fa6a5d84f9720143cae19cea8b131cf5bfc6e2dbc67d99","ssdeep":"","tlshash":"f601d489a3095d7c7a764620e384b270616b1a23970c3308e8363075660da9d79bfde8","first_seen":"2025-06-22T10:40:26.683392Z","last_seen":"2026-05-04T13:31:51.520268Z","times_seen":34,"resource_available":false,"data":null}},"time_used":489,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":489,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.livechatinc.com/v2/customer/token","fqdn":"accounts.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.386Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"POST /v2/customer/token HTTP/1.1\r\nHost: accounts.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 225\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://secure.livechatinc.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":225,"data":"{\"response_type\":\"token\",\"grant_type\":\"cookie\",\"client_id\":\"c5e4f61e1a6c3b1521b541bc5c5a2ac5\",\"organization_id\":\"af65700e-b9f3-491e-baf9-c7b4f990c92c\",\"redirect_uri\":\"https://secure.livechatinc.com/customer/action/open_chat\"}"}},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://secure.livechatinc.com\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\ncontent-type: application/json\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\npragma: no-cache\r\ncontent-length: 201\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\nset-cookie: __lc_cid=27929903-397a-4801-bae0-b1a07279868a; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Thu, 04 May 2028 13:24:14 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned\n__lc_cst=2990abcd1631ec09cc67089d4be556c176ce7fee2e6853f56eaa675defa1675e481fa96fc2b09fe9bc3c2e6fbf4060d947430766bb77b492ebec9fc3250c; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Thu, 04 May 2028 13:24:14 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned\n__lc_cid=27929903-397a-4801-bae0-b1a07279868a; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Thu, 04 May 2028 13:24:14 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned\n__lc_cst=2990abcd1631ec09cc67089d4be556c176ce7fee2e6853f56eaa675defa1675e481fa96fc2b09fe9bc3c2e6fbf4060d947430766bb77b492ebec9fc3250c; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Thu, 04 May 2028 13:24:14 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned\n__oauth_redirect_detector=counter=1\u0026t=1777901084\u0026tag=81da9442fe3ad6310223c19ea01416ce98bd8940; Path=/; Expires=Mon, 04 May 2026 13:24:44 GMT; HttpOnly; Secure; SameSite=None\r\nstrict-transport-security: max-age=86400 ; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":201,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"d70ff445dd5e14e65a5aa9b0ac66c753","sha1":"81aaaab0d4097dc79f47bbd6599a87f1b3e083b5","sha256":"2a2a22816ce1c9519815ccd1f4811afe860b20abc064d0af6f11b4b88aa9e669","sha512":"9e7a7b838f1ce17155e65ff96699023fba2510e2e0560da067f69e1db9249126035f3a7d00d82e067d00f9c42cf0c50ca42ace1c5da8a7722b5b49df29c3c109","ssdeep":"","tlshash":"dbd0a9caa7b228a809e85a870e020a466ca1306092c904af00bfd0b58928a30230a220","first_seen":"2026-05-04T13:24:40.450137Z","last_seen":"2026-05-04T13:24:40.450137Z","times_seen":1,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":18,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/2.CHb8ObV-.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/2.CHb8ObV-.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEhraPavd1auC5LYuIFtwPmmTh24ov1JZILpf_-RA9-zrng9KwcL-OTyhuswQETB4FQQ0WHSJvw\r\nx-goog-generation: 1777891804263130\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 304945\r\nx-goog-hash: crc32c=VCNQoA==, md5=CpxWpDI14vbCRoGI6R5lAg==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 86410\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":304945,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65461), with no line terminators","md5":"0a9c56a43235e2f6c2468188e91e6502","sha1":"e3a6842fd4dc2eb4dcaabbfb9bbc3b1915e5b939","sha256":"e929d26528ff087fce745113bf953ca3acf4bdcde9b94bae6ccda481f383fd9f","sha512":"a1e66ffcd98acb70b4b7c07882ce54ce2e214d83e52cea7d50a41549945b17b1a5ad7d643b0199d53919f72da610513b7a33b706057707f4cd15294f2a3a650f","ssdeep":"6144:ZCMSB80VUJ7OdtRHoslOjfbe6o0KoS27qlphNoTqe41q9wNBzF4/ZhMHjL9ZGjT5:aB8G+7OdtRHoslOjfFoXoSUqlphNoueN","tlshash":"56544ce4b352ba3cd7e7c29790ba1608f33c3d19b42a5764f1ae9c0e33955488376b64","first_seen":"2026-05-04T10:56:08.758271Z","last_seen":"2026-05-04T13:31:51.51454Z","times_seen":15,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/11.al-9NYxR.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/11.al-9NYxR.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEj2gsenJUoS9b_REZ0wSoRAjJaaDeRdS02G7PLIvqlxFo72Hi51MsX1fn4HiX-WO7FBjgPD45I\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\netag: \"4a073c5805819d74eabd3e843372d502\"\r\nx-goog-generation: 1777891804111683\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 236\r\nx-goog-hash: crc32c=6eM7Vg==, md5=Sgc8WAWBnXTqvT6EM3LVAg==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-length: 236\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":236,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"4a073c5805819d74eabd3e843372d502","sha1":"cb12e953dbee2d3ea08d35d86bcd2476a490bda9","sha256":"0cb3247cac5de8fcdfb226ebe2dc4960b6ed473966359f73ca13ca286309122b","sha512":"036da8fb3959ebbef26b546019535a9edb7a99227a28252878247a756d3a7ea693f48e9ffdaf5886faa7fb2cbe56292bbf9552db5dd1d26e6574d8034ee183ba","ssdeep":"","tlshash":"ebd0a78cb643b0b16276b138853f801fb035e984a44404f0d13ad9c03d7c1a97597c5d","first_seen":"2025-11-04T08:39:27.95245Z","last_seen":"2026-05-04T15:56:35.133143Z","times_seen":13362,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/icon_account1.28bc5249.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/icon_account1.28bc5249.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B0K8pnE9g9yj7RlqVJZ8Y06DT6rQ47nTM%2BEAxWd3jdCqotSAbZp9WxxMDMImT1cd%2FiwKYlHdlWy%2FqiMJE2YEF%2F9XC35tje3Ahp5toY7Zm4UDHXkUp3LaIEDpuNpS5g%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-44a\"\r\ncf-ray: 9f67d3158959a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1098,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"90d81833cbf351c818bf8db1b5be18e1","sha1":"d391dc2af36b65a3686ef9ecc14a20f1a588d621","sha256":"ef2ce818b01b11a8557d5402c0e28aff7556b23dfe34c35d4a831b03ebfd7752","sha512":"746dc60ce72df2094b581c27c7a94e14621bb518cfae73f8f4f725eef894517614aba2d9c82952279112311ded399dbc351cb61e8163891e869983be9cdfa94f","ssdeep":"","tlshash":"eb1129cd97089d7cba324730e31177b0712b2a536b297264c83634722719a4d797fdd8","first_seen":"2025-06-22T10:40:26.721289Z","last_seen":"2026-05-04T13:31:51.519727Z","times_seen":34,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/arrow_up.4af92010.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.364Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/arrow_up.4af92010.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nRwcRhv5EWgFMiu6ZaJkEi%2BKYxXiFvDH3EE0wfMRJJLbRfVvtOwFAJRaDMJmmUpAo8VmNLaIrRI40%2F4FkO66vOhUCsWk6w7UPPg%2BSAmqZle69gB7FJHbV4nEYINVsg%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-19f\"\r\ncf-ray: 9f67d3159960a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":415,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3542069ee5dd103e7d12782d32db381f","sha1":"21ecb04b52a26dd98fe83d336a8b5587053a6803","sha256":"da9ef4039a29bf82a596621543dd24bdf0008001c9a0ade1d64b1923174b94b2","sha512":"d95acab9ca613dbb8e26a4c6f49e022753985386c1d1a0aa779bb40240abd11cfd046a6cda248cae9a93307b6c85e0b9fb11035bf20679907a3c3263a9ff52e4","ssdeep":"","tlshash":"23e02b5e03cc1dbc7a238b30fb093676902551335b5c2154c4b23572654009d393f9ec","first_seen":"2025-06-22T10:40:26.732717Z","last_seen":"2026-05-04T13:31:51.522432Z","times_seen":34,"resource_available":false,"data":null}},"time_used":452,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":452,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/trading.60cebfaa.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.368Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/trading.60cebfaa.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3oIKB%2Bb2JuLnkMnAwLoUQF5MCiv2z7CLXYbPLmC%2F30NWbh3p%2F3%2BEF%2BE1npPfdE0tfMuv1rDgVft25mEdhg6NnjPW64uPlEBIXdksXfSSQ9PoBfFc8XTjND3oEoV4MQ%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-1483\"\r\ncf-ray: 9f67d3159962a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5251,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c09653cd93809763ce4dc98df2bee863","sha1":"155c00eee5898ce6572a77fd64bd4cde2d0fd1fe","sha256":"71c912fd81224d8b9dc6c0794776fa28e34d3b255f3ac909b19dde4cc3271cab","sha512":"a16abec40e6bc560b22daefad7707f320e01acfa253da657be9b061e0b13ca99dc3813ce97c2e7fb0ceddac49fc9d313cdbe30a4b270b0a14d928b523ffec6cd","ssdeep":"96:bchxctRABchxctRAQXytqAc+fRiGnOPjBTX0ZXqZls6v:bchxctMchxctEFtOVX0Zcl5","tlshash":"3bb140e563d8b3a86506c3b5c67a89aab77335fa7e80c08887e42c5ed50212d2984d87","first_seen":"2025-06-22T10:40:26.738044Z","last_seen":"2026-05-04T13:31:51.523505Z","times_seen":42,"resource_available":false,"data":null}},"time_used":229,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"api.livechatinc.com/v3.6/customer/rtm/ws?organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026x-region=us-south1","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.83","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.395Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.6/customer/rtm/ws?organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026x-region=us-south1 HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://secure.livechatinc.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: F2FDrXRpyLsdYpbCDYHOGg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nsec-websocket-accept: cgRcprntyEDv3YGF+243H11o07k=\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://secure.livechatinc.com\r\nDate: Mon, 04 May 2026 13:24:14 GMT\r\nUpgrade: websocket\r\nConnection: Upgrade\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-04T17:05:16.84953Z","times_seen":14645188,"resource_available":true,"data":null}},"time_used":164,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":144,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/css/chunk-vendors.d574b523.css","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:10.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/css/chunk-vendors.d574b523.css HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"698818ea-7c895\"\r\nexpires: Tue, 05 May 2026 01:24:10 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6bdXP3HXgjpTYeuEKt9Nl%2BLt%2FXGhUxW9br73k065SBjfx04AzE8HdIoAblwcuWUqeCuHkS6mWe5ErlsbBMiYFFDR2V%2F%2B3CWUgofbxD8mUxKimE%2BBNTo8pOooPDLjGw%3D%3D\"}]}\r\ncf-ray: 9f67d2fd4d3ba0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":510101,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"dedfa9f170209492a0d3e744e24480ad","sha1":"4003eda9e5ebddac28f448cf939ecb66dcdc5e5b","sha256":"0beda5218c247a516d3b7af15b5dcc8d0b3bd243101d5e012d1dc5751aeefb18","sha512":"cbb623d60db20c490d9055f39576b92f397b71676a447a101a5bc4f115a1d59bf9d2ee6878515e9a5bcecc78504f11c97719bbf963c8267f813ab21704f24131","ssdeep":"6144:s3WGR8SVEAB6dW5TBIZtiTtXB4i3rWig/5AvldEuQwStFsUpCWuHKi4MAobHSNAm:sGG0AB6dW51rWAjEuQPsUR","tlshash":"9eb4b659e753613b1e17e63d7fc5e5c8aa28ee60dd01cba5f601a40849c7bf102a3d2b","first_seen":"2025-06-22T10:40:26.707068Z","last_seen":"2026-05-04T13:31:51.506388Z","times_seen":34,"resource_available":false,"data":null}},"time_used":1095,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":449,"receive":646,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/tracking.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:12.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /tracking.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEg-JiW36ZQrRAyIWQpnc8DSaYbjGEQI9BhDghhaez9brs0K-DIZ2y2T2eqL76nvQvgs\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\nx-goog-generation: 1777891804372615\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 103475\r\nx-goog-hash: crc32c=jdjC4Q==, md5=OQE9fQGXdzFhky2KR6k+Ew==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 33374\r\ncache-control: public, max-age=28800\r\nexpires: Mon, 04 May 2026 21:24:12 GMT\r\ndate: Mon, 04 May 2026 13:24:12 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":103475,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"data","md5":"39013d7d0197773161932d8a47a93e13","sha1":"7468b6ad5b38d8cd70b4aef9b08d2797d7d8dc0e","sha256":"d10c17a04ddccf652efdf59c06c44d2893c6e2a9fd00249c649f73b08d71ef6f","sha512":"99fe827735ba6a9cfeae80217ea19245744586111142fc8b306a28a7cecb87612c68f4e247cf7a7a1638403ac89c006cde1137f79b6a6f54703b57655b7c4725","ssdeep":"1536:E5CeuRri7nC45XfcjbueujYBDzjhQ9wpYQ9BfIVv4cALuE:EoeuRu7CtbdujaDdEv4Vn","tlshash":"cfa338d67282b03493f785e7a0bf6212b739191c740d8420f17ced6a395a9879177f2e","first_seen":"2026-05-04T10:53:48.720767Z","last_seen":"2026-05-04T13:38:41.944738Z","times_seen":18,"resource_available":true,"data":null}},"time_used":161,"timings":{"blocked":68,"dns":31,"connect":1,"send":0,"wait":17,"receive":2,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/1.B_Qbu6jX.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/1.B_Qbu6jX.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEjgj--fh7Jck29aEXcSQbgKGVkBEr4YH1aeDL_si7w_e6aBYd-1VFaQjSXjOzMhfgDTD3CH5LU\r\nx-goog-generation: 1777891804089029\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 55647\r\nx-goog-hash: crc32c=zbatRg==, md5=tI17cp+o+CYaLUP7zV923w==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 20009\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":55647,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (55646)","md5":"b48d7b729fa8f8261a2d43fbcd5f76df","sha1":"4fd45b1d763f5931eca8a8d70aade33c89e2f6df","sha256":"eb2f70d51af5053459929b6c81fc61df6e16e6002e57cf9aadcc474af99d1367","sha512":"25d5924c49d3fa873ad60ed180c57fe94c93eed71ded7169c33f6f9d3932f3b151ab30d9a678cfa31a605b9a43f8caaf34ab2376169b919e86e7649e05d3cf67","ssdeep":"1536:GTlWNZF5MIvShyiBl+PfHhsdCiGSgz3iZzKP:yWNahl8HjibgzM8","tlshash":"ed433bdef140743167e315f2b06f9106b73a2a2d385c80b0f629dd9925da04ba26bf7d","first_seen":"2026-05-04T10:56:08.832672Z","last_seen":"2026-05-04T13:31:51.529702Z","times_seen":15,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/balance.0dce5020.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/balance.0dce5020.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sPZUXezaDNZAsJJNuaSJ9wums0grk5%2FKATtau7L8s18Jmx83PP6S0evRm1wY5Ekw7QlAPhb7pY3%2BSFGPpxaFy9xoT2NRHidlW9HwVtPTAwWFKIq50rE%2BZ9jkG3bdnQ%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-2bb\"\r\ncf-ray: 9f67d315995ea0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":699,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"201730b8a0fd886253a73647d57ddcb2","sha1":"532ded48073d5e161220f32f80c4fca29d3d5984","sha256":"d095e268ad87ad2b5d62626bbb96eb61fcd568d9f6874ad708f3e687207f8e2a","sha512":"875ed5e7a369d650ad50eb2c6d1c76796b249004c25d72545ac1131718cad71f0b2ee03d05d8e57f6b3e68675ad011f2cb2ded9799da964eacb804ae80c5c374","ssdeep":"","tlshash":"db01a2f44484a325a5002b79f438f5b9148d34f87fe82de891c32cf760b61ea4c29d87","first_seen":"2025-06-22T10:40:26.728926Z","last_seen":"2026-05-04T13:31:51.52188Z","times_seen":44,"resource_available":false,"data":null}},"time_used":472,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":472,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/fonts/Inter-Regular.1b761fdd.ttf","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:11.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/fonts/Inter-Regular.1b761fdd.ttf HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/static/css/app.0f603e87.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:12 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 303504\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\netag: \"698818ea-4a190\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zDIjvHKMJOAM3uJEqQkBXIuFnOnsfjDqECDPXiV%2Fy3FWhNym4QDcENvYxrXJ68fRyBQZiNfb%2FaxiHuTEtEK%2F7efrKJWMVHGPkc0Guenv3a23HlPgbsYhNF26BnoNlQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d3048e8fa0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":303504,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", 11 names, Microsoft, language 0x409, Copyright 2020 The Inter Project Authors (https://github.com/rsms/inter)InterRegular3.019;RSMS;I","md5":"a4a7379505cd554ea9523594b7c28b2a","sha1":"c2767d146c3c10fe6c9b8ac0f181ef907c111f19","sha256":"eeab48280aacd4fc83c1c7e735681df9edd1b59588dde23d0339bcf6552fb788","sha512":"469b0c4390daeac176eb9d5ef5b709e00d6957137a8eb61e1a82f70b8920ced5cce7ad33ff94410e74f27d36cd33a7d73a97f7eeff8caa390195ceeebfab60af","ssdeep":"6144:sgicNAygxZJ64wgVROEODznIw8SV17avLkh6w/yOjKf:sHcNAygxZJ6/gVROEODDI9SmvZw/Gf","tlshash":"14545a27f363c35cc6172e3687d2c7a07763b8517a12e10bbb243a95da9b0f4499b4d4","first_seen":"2023-05-31T15:42:11Z","last_seen":"2026-05-04T13:31:51.531645Z","times_seen":334,"resource_available":false,"data":null}},"time_used":1383,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":465,"receive":918,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/10.D78zweil.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/10.D78zweil.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEi_bIJ6cfU3rnyRujtxwGp2NTQG5W3Y6K15ZOvoAvXPllhjyEZqT4lyx4Tlpik1_jOEXArh3ZU\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\nx-goog-generation: 1777891804173705\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 136272\r\nx-goog-hash: crc32c=Dqgqpg==, md5=n3XODhfgZZYMrFm+uRNDtw==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-length: 40326\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":136272,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (51478)","md5":"9f75ce0e17e065960cac59beb91343b7","sha1":"6235aa9b9c0381828dd535e5e49d6880d909739e","sha256":"caf56683070e0e5abd41ff8785d49a7fa5193981e1300c0805a7a49a778c78f4","sha512":"af0405c74d27ad71f815b2ba7c1b8d9d7dd5665209103d0c1c0555cffba5147124c191d42dce9fd80364c542798b44ff6a5142e7aca1a53c15705960104cab60","ssdeep":"3072:YVhDgNPrdOVsu0JBel8flxkC8GMQSiHopjW/j6/jrjK1rzAf7BSLE8:4hgpxOe28flxkC8GMQSiHopjpjK1rzA0","tlshash":"42d35cd43282f57087e39097a87f530bf2b92d48b409d970e4b8f4e975e0546e1a3fa9","first_seen":"2026-04-28T11:41:36.234064Z","last_seen":"2026-05-04T16:51:38.616863Z","times_seen":705,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/icon_home.efc1304f.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.325Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/icon_home.efc1304f.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qqrkMolHTrtW5xoWUIiBiVrsExb%2BIKiZzhz7swEToWEX9X08GNSZTW%2FSF06WbhwHla9tOJh8c1XaXJHwpRBJ%2BA2x5mQWnFkjl6qQRs73sRLauhiVpzjG00Vts0Z1ig%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-399\"\r\ncf-ray: 9f67d3158952a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":921,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c3a072b95fd3e59325aa9f5e0da45133","sha1":"6ffb5f200f017dce2b633405e8e0c1ddb30110a2","sha256":"12dfa3e7e7f7a6df1472bec512cf182d6906f5e256fec06ad90c997317bcd4de","sha512":"4a6105c35d31715a925c0dd75ff2fccfeb4936fd9f1241bbe0eb3731ec660b54f42ec33498d85c57fe130d122b5ef4f036471505c357d7a26b2b6187942cf6db","ssdeep":"","tlshash":"261188ae57084c3cb6234f60eb563671b53721635e0ce724c9322633711190db47f9d4","first_seen":"2025-06-22T10:40:26.70491Z","last_seen":"2026-05-04T13:31:51.521333Z","times_seen":34,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/icon_strategy.de961571.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.336Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/icon_strategy.de961571.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FGP87L%2FWSe%2F5PrDPFpPKFtFqVRgyQCLHQcMZcNa%2BWFdK4ZVoJ8qZA1qcWwlVPlvIwYcvodXLb9T1BJlugLBQC7NDgTzuvgRFvDmvQsm2%2FBHBrqfKT%2Fz7a77O%2Fp0%2FxQ%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-a7a\"\r\ncf-ray: 9f67d3158956a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2682,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a77c689dbeaaca629e58dd31b6bf9312","sha1":"ce499209c8e6062f0d0c57fc825d554708b9affc","sha256":"ac4ec25fde7152c7da4440bbdfab441cea966b9f25629590a9516cb8a89d1203","sha512":"54492a3c6da4287a6af9127df8c96d1195a0d27b534e3f7e88fc979101de4353c51bff0eecde99909afa423f9596b2a2664a08c778f5419369f407506f8b7ce5","ssdeep":"","tlshash":"b2517cd657889afcf13177acdb11b230317b247b3a2af706852225b1a90619c9dbf8c4","first_seen":"2025-06-22T10:40:26.73605Z","last_seen":"2026-05-04T13:31:51.518541Z","times_seen":75,"resource_available":false,"data":null}},"time_used":476,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":476,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/icon_account.191ff45f.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.346Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/icon_account.191ff45f.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4cSsdzyYClhQN3lUycJwFCyXenlKjsfGuSTARGL7%2B0ZX%2Bvde%2FLC4UG81eWIMXg5BIrhn4sGUFTRtVjBucXfwEWj%2BxfBK2nEZk%2FRlJvJsSJRYRcz9Nxv8XK0hlrFMGg%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-43e\"\r\ncf-ray: 9f67d3158958a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1086,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2694870b6edfbd5f34c3f0d8bb4c306b","sha1":"053e4cc8443effe6fc5ee5ec67e5fedae92778a0","sha256":"e76e7ef6a7cb3a9eb7afa7ea01edae6816d143b52ba89463be628d973f33fc61","sha512":"ce482963a56cd2b202ebe8abfe960a37f053a4ca92a0053c0b7d96217d67dfa81b8ef535d8a11acd118ebb0ba9a822faf58780334f006a4242556aafafa057ba","ssdeep":"","tlshash":"911129dd57089d3cba324734f72176b0a12b32435f6d6264c93a28732219a4d797fdd8","first_seen":"2025-06-22T10:40:26.719187Z","last_seen":"2026-05-04T13:31:51.509537Z","times_seen":75,"resource_available":false,"data":null}},"time_used":471,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":471,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/strategy_icon2.176fcbb7.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/strategy_icon2.176fcbb7.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ShAHxYCyDkwMjdSW1aQnX53%2By2TF63EDKK%2Fq1R%2FqBdZOtLspx41evYJkXyonuAo%2BU90UsLqZbkEnJ2ocaX%2BXhNaZbIo5l%2FN4DqIhddDDZ%2BazVJMmxnbsyhLApL8DIQ%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-9bb\"\r\ncf-ray: 9f67d315995ca0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2491,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d4e7610aa21b9ea0995e2338b9abef87","sha1":"feca79ecfbfb7bcad3e6866f94033e2db8e9826c","sha256":"a1adbde509f47c160248d3b5784bb37e228cb149fa3db0af8e06b3c651c5424e","sha512":"c37fbe2163f3e70a249127c35e700828d371900225213f73da2fa05bcd4388582fafa39df386ed8acacee2ba8d1a4130ff70be8f26f2a1de64bd5ab40fe05bcb","ssdeep":"","tlshash":"cc51158beb442ebcb2724ba0d7017331352729776b0ab714c9326671670661ca97fce8","first_seen":"2025-06-22T10:40:26.717502Z","last_seen":"2026-05-04T13:31:51.530656Z","times_seen":34,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/up_arrow.05a4c908.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.366Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/up_arrow.05a4c908.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tgkAPVi6aa73JrySX7wxMitokg6RLzlSfDjLyPGIMYvNQShdmYttEYwuA81EQU2UlE0azwf9WHw2M6YNKrNNcSGb6HYI8yy6Eb4pMCCJIxSPLOzOTDJbKGZNZX4rhg%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-389\"\r\ncf-ray: 9f67d3159961a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":905,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"633c3388784942c92bc9afaa96bdfd2a","sha1":"55d19e96535e41c1caa02b4723d543547aa54766","sha256":"32913ec40708e001a94dd3831c001274c92eaa5ab47ff7f3f86b3e5bd9071e95","sha512":"00a7a7d16fa934d91c006396bc6903a6f826253e77e5faa0418aee5dc0a1872f5d7becb1ec4c5b895b3d8c4490e763dd4e77b7f22e5b295fc881d9f6238549a8","ssdeep":"","tlshash":"b7112ff76148b01cca8bd37cc2369e92619fa4f0becb23805244ab57f54a4d90c6cec8","first_seen":"2025-06-22T10:40:26.696345Z","last_seen":"2026-05-04T13:31:51.522982Z","times_seen":34,"resource_available":false,"data":null}},"time_used":471,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":471,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/wallet.f9d50a11.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:13.383Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/wallet.f9d50a11.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:13 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3PIpfxtMpjS3imQZ%2FGvavyWt8NY7OdsKuXD64ApVQ2aURwl%2F0dv5FNgUmfQgzbeTXB0LY8FhO1ZzaNRU4KvvhQ0t78YPXT9KzS8LX6c5LGKoehQJN%2Fe3uD0UHZ1r0Q%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-17b9\"\r\ncf-ray: 9f67d30fa828a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6073,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"133aeaeec9927fd4c79b761c9a9ece45","sha1":"eddfe13974ecef507ff537917590fbb917d5a93c","sha256":"4c2c33554135a0cc3350aad487e20edc0f559e25ceb5ac10695f263de88c7218","sha512":"06f89e23016ac8812ff6343c0a7b1de3907b0e0d5ddc723d9b9230590367c609ff4be7721449c30a9781eb2530adf67574f81543ec9551ed246f809d9f604168","ssdeep":"48:5+HfkXG39xLYiUSXGMkhtb6W/wzkoQLpH5NnNF/Rkz6rw476dEXAoCnR6pE5iYev:GW5NwILxzgo+5icK9z","tlshash":"3fc15b8e67880ebcbb728a7ce3093375502a45d76a497254cd33213a115a35dbe7fec8","first_seen":"2025-07-13T10:39:08.750413Z","last_seen":"2026-05-04T13:31:51.534668Z","times_seen":50,"resource_available":false,"data":null}},"time_used":485,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":485,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/6.DoTVWiIk.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/6.DoTVWiIk.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEipMxWWB-ypZEUiTSWJzeAx_3hQJvBAP8-qZz2Cezq2eoHuNkocF5XToXjIp2dH2KcdQ74tIuw\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\nx-goog-generation: 1777891804230562\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 5298\r\nx-goog-hash: crc32c=5HPR3Q==, md5=UWMdIzLh3yLYJXHH6UbgwA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 2153\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":5298,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5297)","md5":"51631d2332e1df22d82571c7e946e0c0","sha1":"17dc0cfb8cc2f12c0af7317249f76d7bd42a1d98","sha256":"0c00564efc472ac5256d4ecd6da6b6160b3e5caf3df20225417e0f3a55fbbfe6","sha512":"eadad76d853cc88d81c9172cb859270862192812b48731d6871fa3d2722e266936cfd9c40578f0cf2ec6bd4903b599597f7407e7d04e03e94b79d017e7b9eda5","ssdeep":"96:HHW1MDMDY5x1pnq9kuOxmPkkXFcQCux3MpfR9xllUSvnVDtPVWFt6ida+Kq92rSb:nW1MDMDY5x1pn/mPkkVcQCFNl+SdDtGr","tlshash":"52b164cd37c170b756b7a0e5087f9006722db5403cadd410c224f8e57e6aceaa1dbe2a","first_seen":"2026-04-09T11:23:51.371548Z","last_seen":"2026-05-04T16:51:38.697428Z","times_seen":2286,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/8.CJnRQ8s0.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/8.CJnRQ8s0.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEhu7KxTMV8iA2TZo9bbVio5oUwhrV2A7pfqdhMSsw5obS0YKSqjYDuhzaYakq5ROr6XEnq6p3c\r\nx-goog-generation: 1777891804236310\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 7900\r\nx-goog-hash: crc32c=PjIvrA==, md5=4TWDidKT2BLrD+Lqfoctig==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\ncontent-length: 3020\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":7900,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (7899)","md5":"e1358389d293d812eb0fe2ea7e872d8a","sha1":"9121b1de1055012bae2f7f42001c7f31ced02f5e","sha256":"d509b89eee3b3ab1e934b0d9116238e744568e7cda66be21151c55045f2c7d3a","sha512":"d92cbb2354b908d0718c22ab3f606b6cb2c4d9d13d13a3ed69c8aecdd812dc2531dad4d8fd6f4f06d202c89b6497040fcf7629054e73cc5b1e730f3545314a10","ssdeep":"192:Be7LbrRc33jyJyCKxI/reXURFK5fDwxlcz7X5tXjjdEUyf/h3q/LZ+UF4f:g7SjyJyCYceXURszztddEUyfp3qjE44f","tlshash":"43f1f8bff381e471e3eb54f09a290013b9390655756d8070f62c8e14a16e6c4a277feb","first_seen":"2026-05-04T10:56:08.885656Z","last_seen":"2026-05-04T13:31:51.517404Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/12.DJPUQwQu.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.169","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19282140\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=af65700e-b9f3-491e-baf9-c7b4f990c92c\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2026-05-04T13:24:14.144Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/12.DJPUQwQu.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AAVLpEjwW-81gfUdddzIFWlmefFeRZa-93RqFNKMeLgs5vp_DDrJ8qaqDORWvLRpJleDkW6u8UJBljg\r\nlast-modified: Mon, 04 May 2026 10:50:04 GMT\r\netag: \"640caab52100a1e9dfe618aaeb79838f\"\r\nx-goog-generation: 1777891804127458\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 300\r\nx-goog-hash: crc32c=IuJCUg==, md5=ZAyqtSEAoenf5hiq63mDjw==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Tue, 04 May 2027 13:24:14 GMT\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-length: 300\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":300,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"640caab52100a1e9dfe618aaeb79838f","sha1":"4654776a82e5405614a595d40cb33ca2b5bae0b5","sha256":"fb8eb817d7251014c136b441bd4004fa6567908059013edbb938925f23b67ceb","sha512":"17d605182be517c5e797b2fd823b9ab7b6bd73d97bd2c3d11c5eb29d108cd350d789116528e351abaebdf3654cc65100b9e3353064ba38c9ab9008126c6a3061","ssdeep":"","tlshash":"00e08cbdfca8d92152f5e9f8c0b60822cb593b0e502382b0f60e6f4a9519199a552826","first_seen":"2024-08-27T15:26:59Z","last_seen":"2026-05-04T17:01:27.41907Z","times_seen":26109,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raf-pro.net/static/img/icon_market.1027b756.svg","fqdn":"raf-pro.net","domain":"raf-pro.net","tld":"net"},"ip":{"addr":"104.21.5.218","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://raf-pro.net/","date":"2026-05-04T13:24:14.333Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"raf-pro.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 26 Mar 2026 21:15:34 GMT","end":"Wed, 24 Jun 2026 22:14:00 GMT"},"fingerprint":{"sha1":"4F:78:60:25:86:88:06:CD:F8:07:11:E1:17:71:0F:3D:E2:81:68:6D","sha256":"8A:F9:20:2F:A5:D8:29:F9:DD:D5:6F:3A:9C:96:0A:34:64:A7:C8:53:E5:82:E1:07:0E:03:8B:A4:8B:E6:89:C5"}}},"request":{"raw":"GET /static/img/icon_market.1027b756.svg HTTP/1.1\r\nHost: raf-pro.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://raf-pro.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:24:14 GMT\r\ncontent-type: image/svg+xml\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BLdEC8h6xSSSqPcKIYm0ulKQhfMvecseMA6Sw4T7fbq07JVBQCE1rXHaKLwhK3uPuxNyVaF%2B2CQL%2BqhkfQx396nkXTecB4OWeU%2Frz%2BxcT2mphB8EZWtPM%2FYaYZdlbA%3D%3D\"}]}\r\nlast-modified: Sun, 08 Feb 2026 05:02:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"698818ea-27d\"\r\ncf-ray: 9f67d3158954a0f0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":637,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0854c8cbcd9bb2cce30d026266c77bac","sha1":"bd98513e424906e91ee8cdd1a3e0330a84c625e6","sha256":"39466386a593c19beb0a9372e3160c06fa17febfd84ee665a043609e7977f390","sha512":"b5814fab90a2148cd9813e37ed32ff34f288ffdaa7d027bf80372e11acee0d35c578b3d05ed6b0a310359948f1015866352156cdbab4fdf7cb8fc50ae3aa022c","ssdeep":"","tlshash":"edf0c2eaab480d3cbb738b34f724327590b272138b4c2158c9363977265a54c7a3f9c8","first_seen":"2025-06-22T10:40:26.695148Z","last_seen":"2026-05-04T13:31:51.528685Z","times_seen":75,"resource_available":false,"data":null}},"time_used":441,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":441,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-04","alert":"Phishing Block","trigger":"raf-pro.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"raf-pro.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}